OTL logfile created on: 2014-08-20 23:39:43 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\B i W\Pulpit\Naprawa
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,00 Gb Total Physical Memory | 2,07 Gb Available Physical Memory | 68,97% Memory free
4,84 Gb Paging File | 4,00 Gb Available in Paging File | 82,57% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 4,83 Gb Free Space | 9,89% Space Free | Partition Type: NTFS
Drive D: | 249,26 Gb Total Space | 230,43 Gb Free Space | 92,45% Space Free | Partition Type: NTFS
Drive F: | 29,27 Gb Total Space | 28,67 Gb Free Space | 97,98% Space Free | Partition Type: FAT32
Drive H: | 931,28 Gb Total Space | 867,96 Gb Free Space | 93,20% Space Free | Partition Type: FAT32
 
Computer Name: BIW | User Name: B i W | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2014-08-20 23:21:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\B i W\Pulpit\Naprawa\OTL.exe
PRC - [2014-08-07 23:55:45 | 002,682,880 | ---- | M] () -- C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\qtdycm.exe
PRC - [2014-08-07 05:20:57 | 000,860,488 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2014-06-21 17:12:53 | 000,230,792 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
PRC - [2014-04-30 20:28:45 | 002,199,840 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014-04-30 20:28:32 | 001,617,696 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2014-03-11 10:13:24 | 000,022,216 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2014-03-11 10:13:14 | 000,951,576 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2008-06-04 10:36:32 | 002,177,576 | ---- | M] (Gainward Co.) -- C:\Program Files\EXPERTool\TBPANEL.exe
PRC - [2008-04-14 23:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-06-29 16:03:08 | 000,036,864 | ---- | M] (IGN Entertainment Inc.) -- C:\Program Files\GameSpy\Comrade\Comrade.exe
PRC - [2007-03-06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
PRC - [2007-03-03 13:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2014-08-07 23:55:45 | 002,682,880 | ---- | M] () -- C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\qtdycm.exe
MOD - [2014-08-07 05:20:55 | 000,353,096 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.143\ppgooglenaclpluginchrome.dll
MOD - [2014-08-07 05:20:53 | 008,537,928 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.143\pdf.dll
MOD - [2014-08-07 05:20:46 | 001,732,936 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
MOD - [2014-05-20 04:32:37 | 000,682,272 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\nView\nvShell.dll
MOD - [2014-03-04 08:09:09 | 003,391,488 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_aa00a882\mscorlib.dll
MOD - [2014-03-04 08:09:08 | 000,843,776 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_f433c773\system.drawing.dll
MOD - [2014-03-04 08:09:07 | 001,470,464 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.design\1.0.5000.0__b03f5f7f11d50a3a_5808efc4\system.design.dll
MOD - [2014-03-04 08:09:05 | 002,088,960 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_840fbc02\system.xml.dll
MOD - [2014-03-04 08:09:03 | 003,035,136 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_29b6ff58\system.windows.forms.dll
MOD - [2014-03-04 08:08:59 | 001,966,080 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_e8a7b17a\system.dll
MOD - [2014-03-04 08:08:54 | 001,269,760 | ---- | M] () -- c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll
MOD - [2014-03-04 08:08:54 | 001,232,896 | ---- | M] () -- c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll
MOD - [2014-03-04 08:08:54 | 000,471,040 | ---- | M] () -- c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll
MOD - [2014-03-04 08:08:52 | 002,064,384 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll
MOD - [2014-03-03 07:55:58 | 001,339,392 | ---- | M] () -- c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll
MOD - [2014-03-03 07:55:58 | 000,323,584 | ---- | M] () -- c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll
MOD - [2014-03-03 07:55:54 | 001,703,936 | ---- | M] () -- c:\windows\assembly\gac\system.design\1.0.5000.0__b03f5f7f11d50a3a\system.design.dll
MOD - [2014-03-03 07:55:54 | 000,573,440 | ---- | M] () -- c:\windows\assembly\gac\system.web.services\1.0.5000.0__b03f5f7f11d50a3a\system.web.services.dll
MOD - [2014-03-02 17:18:21 | 000,007,680 | ---- | M] () -- c:\windows\assembly\gac\accessibility\1.0.5000.0__b03f5f7f11d50a3a\accessibility.dll
MOD - [2009-02-27 20:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL
MOD - [2008-04-14 23:50:38 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007-06-29 16:03:30 | 000,221,184 | ---- | M] () -- c:\Program Files\GameSpy\Comrade\156\GPNET.dll
MOD - [2007-06-29 16:03:30 | 000,021,504 | ---- | M] () -- c:\Program Files\GameSpy\Comrade\156\NetDetect.dll
MOD - [2007-06-29 16:03:28 | 000,434,176 | ---- | M] () -- c:\Program Files\GameSpy\Comrade\156\GameSpy.VEngine.dll
MOD - [2007-06-29 16:02:42 | 000,057,344 | ---- | M] () -- c:\Program Files\GameSpy\Comrade\156\DetectLib.dll
MOD - [2007-01-31 11:56:56 | 000,032,768 | ---- | M] () -- C:\Program Files\EXPERTool\TBPanelExt.dll
MOD - [1998-10-31 11:55:56 | 000,005,120 | ---- | M] () -- C:\Program Files\EXPERTool\TBMANAGE.DLL
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2014-04-30 20:28:32 | 001,617,696 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2014-03-11 10:13:24 | 000,022,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2007-03-06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service)
SRV - [2007-03-03 13:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\VBoxNetFlt.sys -- (VBoxNetFlt)
DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\BIW~1\USTAWI~1\Temp\pxtdqpow.sys -- (pxtdqpow)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2014-08-20 23:24:07 | 000,039,464 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft\Microsoft Antimalware\Definition Updates\{1D691B18-79E9-43BE-9F18-FF350A5B9FC3}\MpKsl7176e85a.sys -- (MpKsl7176e85a)
DRV - [2014-07-13 00:32:39 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2014-02-23 17:27:58 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2014-02-23 17:27:57 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2012-05-22 15:08:34 | 000,104,792 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - [2008-10-21 12:16:58 | 000,465,152 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73)
DRV - [2007-03-16 11:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\TBPanel.sys -- (TBPanel)
DRV - [2007-03-16 11:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TBPanel.sys -- (Cardex)
DRV - [2006-11-23 18:20:06 | 000,018,432 | ---- | M] (SIA Syncrosoft) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\synasUSB.sys -- (SynasUSB)
DRV - [2006-07-05 14:55:58 | 000,043,392 | R--- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\jraid.sys -- (JRAID)
DRV - [2006-06-15 10:02:22 | 000,142,464 | R--- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\adidts.sys -- (ADIDTSFiltService)
DRV - [2006-05-23 09:56:00 | 000,245,248 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2006-02-08 10:26:00 | 000,011,264 | R--- | M] (ASUSTeK Computer Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\EIO.sys -- (EIO)
DRV - [2006-02-07 13:52:58 | 000,006,912 | R--- | M] (JMicron ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\JGOGO.sys -- (JGOGO)
DRV - [2005-11-03 19:12:10 | 000,010,368 | R--- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2004-08-13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2001-04-13 19:16:38 | 000,187,992 | ---- | M] (Roland) [Kernel | Auto | Running] -- C:\Program Files\Roland\Virtual Sound Canvas DXi\RVIEg01.sys -- (RVIEG01)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.bing.com/search?q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.bing.com/search?q={searchTerms}
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = 
 
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = 
 
IE - HKU\S-1-5-21-602162358-1637723038-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKU\S-1-5-21-602162358-1637723038-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-602162358-1637723038-725345543-1004\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-602162358-1637723038-725345543-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-602162358-1637723038-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-602162358-1637723038-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
 
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider:  (Enabled)
CHR - default_search_provider: search_url = 
CHR - default_search_provider: suggest_url = 
CHR - homepage: 
CHR - plugin: Widevine Content Decryption Module (Enabled) = C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\WidevineCDM\1.4.1.377\_platform_specific\win_x86\widevinecdmadapter.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\36.0.1985.143\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\36.0.1985.143\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft® DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft® DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - Extension: Dokumenty Google = C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: Dysk Google = C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Szukaj w Google = C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: AdBlock = C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.12_0\
CHR - Extension: Google Wallet = C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2004-08-04 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [JMB36X Configure] C:\WINDOWS\System32\JMRaidTool.exe (JMicron Technology Corp.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvBackend] C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe (InterVideo Digital Technology Corporation)
O4 - HKU\S-1-5-21-602162358-1637723038-725345543-1004..\Run: [ChomikBox] C:\Program Files\ChomikBox\chomikbox.exe ( )
O4 - HKU\S-1-5-21-602162358-1637723038-725345543-1004..\Run: [Comrade.exe] C:\Program Files\GameSpy\Comrade\Comrade.exe (IGN Entertainment Inc.)
O4 - HKU\S-1-5-21-602162358-1637723038-725345543-1004..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKU\S-1-5-21-602162358-1637723038-725345543-1004..\Run: [GAINWARD] C:\Program Files\EXPERTool\TBPanel.exe (Gainward Co.)
O4 - HKU\S-1-5-21-602162358-1637723038-725345543-1004..\Run: [qtdycm] c:\documents and settings\b i w\ustawienia lokalne\dane aplikacji\qtdycm.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\CodecPackUpdateChecker.lnk = C:\WINDOWS\system32\C2MP\UpdateChecker.exe ()
O4 - Startup: C:\Documents and Settings\B i W\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\B i W\Menu Start\Programy\Autostart\qtdycm.lnk = C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\qtdycm.exe ()
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-602162358-1637723038-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.225.70.229 62.233.128.17
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FAC1B180-D1EC-4ED7-8B0F-008B9ACF3601}: DhcpNameServer = 195.225.70.229 62.233.128.17
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013-12-26 16:18:53 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2014-08-20 23:32:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\B i W\Pulpit\Naprawa
[2014-08-20 23:31:29 | 000,000,000 | ---D | C] -- C:\FRST
[2014-08-20 21:17:43 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\B i W\Recent
[2014-08-16 14:07:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\B i W\Pulpit\muzyka z karty
[2014-08-14 10:10:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\RABCMNOYZ0AKL45F
[2014-08-13 18:42:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\B i W\Moje dokumenty\Harry Potter i więzień Azkabanu
[2014-08-13 18:41:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\EA GAMES
[2014-08-13 01:00:10 | 004,575,232 | ---- | C] (Google Inc.) -- C:\WINDOWS\System32\GPhotos.scr
[2014-08-01 19:22:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\B i W\Pulpit\zdjecia z aparatu
[2014-07-25 19:26:35 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xp_eos.exe
[2014-07-25 19:26:35 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xp_eos.exe
[2014-07-23 01:25:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\B i W\Pulpit\list
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2014-08-20 23:41:25 | 000,947,095 | ---- | M] () -- C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\qtdycm.gss
[2014-08-20 23:41:09 | 000,000,972 | ---- | M] () -- C:\Documents and Settings\B i W\Menu Start\Programy\Autostart\qtdycm.lnk
[2014-08-20 23:35:58 | 000,834,560 | ---- | M] () -- C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\qtdycm.gdb
[2014-08-20 23:17:00 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014-08-20 22:48:55 | 000,297,707 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\Z FENZO.ses
[2014-08-20 22:10:28 | 000,006,792 | ---- | M] () -- C:\WINDOWS\System32\nvAppTimestamps
[2014-08-20 21:08:18 | 000,000,406 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2014-08-20 21:02:22 | 000,569,168 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2014-08-20 21:02:22 | 000,505,554 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2014-08-20 21:02:22 | 000,112,038 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2014-08-20 21:02:22 | 000,089,400 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2014-08-20 20:58:02 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014-08-20 20:58:02 | 000,000,222 | ---- | M] () -- C:\WINDOWS\tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job
[2014-08-20 20:57:40 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014-08-20 02:00:04 | 000,000,342 | ---- | M] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-BIW-B i W.job
[2014-08-17 00:03:31 | 000,047,063 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\karetka.jpg
[2014-08-17 00:03:26 | 000,060,300 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\motocykl.jpg
[2014-08-15 02:20:56 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
[2014-08-13 23:39:32 | 000,033,664 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\utwór 1.jpg
[2014-08-13 23:34:31 | 000,031,550 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\utwór.jpg
[2014-08-13 23:32:28 | 000,007,680 | ---- | M] () -- C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014-08-13 18:41:46 | 000,000,799 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Harry Potter(TM) i więzień Azkabanu.lnk
[2014-08-13 01:00:10 | 004,575,232 | ---- | M] (Google Inc.) -- C:\WINDOWS\System32\GPhotos.scr
[2014-08-11 20:42:54 | 003,179,991 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\(gronex) Sad RapPiano Instrumental.mp3
[2014-08-11 01:50:20 | 004,009,222 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\"Look at Me Now"  Happy Hopeful Guitar Piano Beat.mp3
[2014-08-10 22:36:05 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014-08-08 03:36:33 | 000,069,828 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\motocykleeeeeee.jpg
[2014-08-07 23:55:45 | 002,682,880 | ---- | M] () -- C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\qtdycm.exe
[2014-08-07 02:55:01 | 000,056,893 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\ja.jpg
[2014-08-05 23:30:55 | 000,118,694 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\my.jpg
[2014-08-05 23:30:45 | 000,057,919 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\motocyklista xD.jpg
[2014-08-03 23:00:26 | 002,252,099 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\malwina.JPG
[2014-07-26 19:37:09 | 000,000,216 | ---- | M] () -- C:\WINDOWS\tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job
[2014-07-23 11:43:18 | 000,276,042 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\listy.jpg
[2014-07-23 01:25:27 | 000,304,563 | ---- | M] () -- C:\Documents and Settings\B i W\Pulpit\MIX list.ses
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2014-08-20 01:01:08 | 000,297,707 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\Z FENZO.ses
[2014-08-17 00:03:30 | 000,047,063 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\karetka.jpg
[2014-08-17 00:03:21 | 000,060,300 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\motocykl.jpg
[2014-08-13 23:39:32 | 000,033,664 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\utwór 1.jpg
[2014-08-13 23:34:31 | 000,031,550 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\utwór.jpg
[2014-08-13 18:41:46 | 000,000,799 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Harry Potter(TM) i więzień Azkabanu.lnk
[2014-08-11 20:42:51 | 003,179,991 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\(gronex) Sad RapPiano Instrumental.mp3
[2014-08-11 01:50:14 | 004,009,222 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\"Look at Me Now"  Happy Hopeful Guitar Piano Beat.mp3
[2014-08-08 03:36:33 | 000,069,828 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\motocykleeeeeee.jpg
[2014-08-07 23:55:46 | 000,947,095 | ---- | C] () -- C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\qtdycm.gss
[2014-08-07 23:55:46 | 000,834,560 | ---- | C] () -- C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\qtdycm.gdb
[2014-08-07 23:55:46 | 000,000,972 | ---- | C] () -- C:\Documents and Settings\B i W\Menu Start\Programy\Autostart\qtdycm.lnk
[2014-08-07 23:55:45 | 002,682,880 | ---- | C] () -- C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\qtdycm.exe
[2014-08-07 02:55:00 | 000,056,893 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\ja.jpg
[2014-08-05 23:30:55 | 000,118,694 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\my.jpg
[2014-08-05 23:30:45 | 000,057,919 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\motocyklista xD.jpg
[2014-08-05 23:13:26 | 002,252,099 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\malwina.JPG
[2014-07-26 10:28:59 | 000,000,222 | ---- | C] () -- C:\WINDOWS\tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job
[2014-07-26 10:28:59 | 000,000,216 | ---- | C] () -- C:\WINDOWS\tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job
[2014-07-23 11:43:17 | 000,276,042 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\listy.jpg
[2014-07-23 01:25:21 | 000,304,563 | ---- | C] () -- C:\Documents and Settings\B i W\Pulpit\MIX list.ses
[2014-07-12 01:58:47 | 000,000,503 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2014-07-12 01:57:26 | 000,006,144 | ---- | C] () -- C:\WINDOWS\update.exe
[2014-07-12 01:57:26 | 000,002,048 | ---- | C] () -- C:\WINDOWS\conf.dll
[2014-07-11 21:25:51 | 003,774,821 | ---- | C] () -- C:\WINDOWS\System32\nvcoproc.bin
[2014-07-11 21:25:09 | 001,154,792 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2014-07-11 21:25:09 | 001,154,792 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2014-07-11 21:25:09 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2014-07-11 21:17:47 | 002,421,152 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2014-07-11 21:05:23 | 002,293,286 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2014-06-23 01:33:03 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2014-06-10 12:46:51 | 000,000,066 | ---- | C] () -- C:\WINDOWS\BBW_INFO.INI
[2014-04-29 15:56:06 | 000,210,456 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2014-04-29 15:56:06 | 000,206,360 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2014-04-29 15:56:06 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2014-04-29 15:56:06 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2014-04-29 15:56:06 | 000,194,072 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2014-04-29 15:56:06 | 000,026,136 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2014-03-19 19:10:49 | 000,218,200 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2014-03-03 07:52:58 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2014-03-02 17:08:39 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2014-03-02 17:08:39 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\B i W\Dane aplikacji\PnkBstrK.sys
[2014-03-02 17:08:27 | 000,103,736 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2014-03-02 17:08:27 | 000,066,872 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2014-03-02 17:08:24 | 000,669,184 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2014-02-23 17:27:58 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2014-02-23 17:27:57 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2014-01-29 21:40:08 | 000,007,680 | ---- | C] () -- C:\Documents and Settings\B i W\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014-01-26 11:09:25 | 000,305,216 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2014-01-22 14:18:47 | 000,000,163 | ---- | C] () -- C:\WINDOWS\Reimage.ini
[2014-01-14 21:40:58 | 000,238,736 | ---- | C] () -- C:\WINDOWS\System32\libbluray.dll
[2014-01-10 09:51:01 | 000,000,074 | ---- | C] () -- C:\Documents and Settings\NetworkService\Dane aplikacji\WB.CFG
[2014-01-09 21:51:03 | 000,000,091 | ---- | C] () -- C:\Documents and Settings\B i W\Dane aplikacji\WB.CFG
[2013-12-27 17:45:23 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2013-12-27 00:07:06 | 000,022,047 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2013-12-27 00:06:36 | 000,021,724 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2013-12-27 00:06:35 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2013-12-27 00:06:32 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2013-12-26 22:27:03 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2013-12-26 17:09:27 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2013-12-26 16:20:23 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013-12-26 16:16:46 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013-12-17 05:28:08 | 003,916,288 | ---- | C] () -- C:\WINDOWS\System32\ffmpeg.dll
[2013-12-17 05:27:32 | 000,112,640 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2013-12-17 05:27:00 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\TomsMoComp_ff.dll
[2013-12-17 05:26:40 | 000,157,184 | ---- | C] () -- C:\WINDOWS\System32\ff_unrar.dll
[2013-12-17 05:26:40 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ff_libmad.dll
[2013-12-17 05:26:40 | 000,099,840 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll
[2013-12-17 05:26:38 | 001,525,760 | ---- | C] () -- C:\WINDOWS\System32\ff_samplerate.dll
[2013-12-17 05:26:38 | 000,211,968 | ---- | C] () -- C:\WINDOWS\System32\ff_libdts.dll
[2013-12-17 05:26:38 | 000,136,704 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll
[2013-12-17 05:26:38 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\ff_liba52.dll
[2013-12-17 04:38:54 | 000,877,296 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2013-12-17 04:38:52 | 000,242,259 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2013-12-17 04:19:30 | 000,216,064 | ---- | C] ( ) -- C:\WINDOWS\System32\Lagarith.dll
[2013-12-17 04:15:32 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OptimFROG.dll
[2013-12-17 04:15:32 | 000,000,236 | ---- | C] () -- C:\WINDOWS\System32\Formats.ini
[2013-12-17 04:15:30 | 000,047,104 | ---- | C] () -- C:\WINDOWS\System32\bass_tak.dll
[2013-12-17 03:28:34 | 000,097,792 | ---- | C] () -- C:\WINDOWS\System32\ac3config.exe
[2013-12-17 03:28:26 | 001,021,440 | ---- | C] () -- C:\WINDOWS\System32\ac3filter_intl.dll
[2013-12-17 03:28:18 | 000,109,568 | ---- | C] () -- C:\WINDOWS\System32\avi.dll
[2013-12-17 03:28:18 | 000,097,792 | ---- | C] () -- C:\WINDOWS\System32\avs.dll
[2013-12-17 03:28:18 | 000,093,184 | ---- | C] () -- C:\WINDOWS\System32\avss.dll
[2013-12-17 03:27:52 | 000,113,152 | ---- | C] () -- C:\WINDOWS\System32\dsmux.exe
[2013-12-17 03:27:50 | 000,249,856 | ---- | C] () -- C:\WINDOWS\System32\dxr.dll
[2013-12-17 03:27:40 | 000,358,400 | ---- | C] () -- C:\WINDOWS\System32\gdsmux.exe
[2013-12-17 03:27:16 | 000,137,728 | ---- | C] () -- C:\WINDOWS\System32\mkv2vfr.exe
[2013-12-17 03:27:16 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll
[2013-12-17 03:27:14 | 000,150,528 | ---- | C] () -- C:\WINDOWS\System32\mkx.dll
[2013-12-17 03:27:14 | 000,080,384 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll
[2013-12-17 03:27:10 | 000,142,336 | ---- | C] () -- C:\WINDOWS\System32\mp4.dll
[2013-12-17 03:26:52 | 000,123,392 | ---- | C] () -- C:\WINDOWS\System32\ogm.dll
[2013-12-17 03:26:46 | 000,198,144 | ---- | C] () -- C:\WINDOWS\System32\spdif_test.exe
[2013-12-17 03:26:40 | 000,154,624 | ---- | C] () -- C:\WINDOWS\System32\ts.dll
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2014-01-06 15:49:43 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-14 23:50:48 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 23:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2014-01-22 14:20:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CDB
[2014-07-13 00:37:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2014-05-01 20:23:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GFACE
[2014-01-13 01:31:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate
[2014-04-29 15:56:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InterVideo
[2014-07-31 19:14:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2014-08-07 03:02:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PMB Files
[2014-06-22 20:49:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RDRM
[2014-07-23 00:43:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe
[2014-07-18 02:33:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Riot Games
[2014-03-29 23:54:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Steinberg
[2014-03-29 23:55:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Syncrosoft
[2013-12-26 22:54:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TP-LINK Driver
[2014-04-29 15:58:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ulead Systems
[2014-07-14 12:22:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\B i W\Dane aplikacji\DAEMON Tools Lite
[2013-12-30 02:47:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\B i W\Dane aplikacji\FlowStone
[2013-12-30 02:48:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\B i W\Dane aplikacji\Image-Line
[2014-07-31 19:15:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\B i W\Dane aplikacji\ipla
[2013-12-27 13:47:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\B i W\Dane aplikacji\LolClient
[2014-03-19 19:12:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\B i W\Dane aplikacji\MPC-HC
[2014-07-12 22:58:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\B i W\Dane aplikacji\PowerISO
[2013-12-27 11:40:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\B i W\Dane aplikacji\Riot Games
[2014-03-29 23:55:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\B i W\Dane aplikacji\Steinberg
[2014-04-29 15:59:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\B i W\Dane aplikacji\Ulead Systems
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >