OTL logfile created on: 2012-07-13 13:53:53 - Run 1
OTL by OldTimer - Version 3.2.54.0     Folder = F:\
 Home Premium Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,99 Gb Total Physical Memory | 2,25 Gb Available Physical Memory | 75,24% Memory free
5,98 Gb Paging File | 5,26 Gb Available in Paging File | 87,93% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 45,52 Gb Free Space | 46,61% Space Free | Partition Type: NTFS
Drive D: | 200,43 Gb Total Space | 170,59 Gb Free Space | 85,12% Space Free | Partition Type: NTFS
Drive E: | 2,07 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive F: | 974,72 Mb Total Space | 153,67 Mb Free Space | 15,77% Space Free | Partition Type: FAT
 
Computer Name: MACIEK | User Name: Maciek | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-07-13 13:41:24 | 000,596,480 | ---- | M] (OldTimer Tools) -- F:\OTL.exe
PRC - [2011-07-16 06:31:12 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2009-07-14 03:14:46 | 000,115,200 | ---- | M] () -- \\?\C:\Windows\System32\wbem\WMIADAP.EXE
PRC - [2009-07-14 03:14:15 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmd.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Auto | Stopped] -- C:\Program Files\Firebird\bin\fbserver -- (FirebirdServer)
SRV - [2012-06-19 17:32:30 | 003,048,136 | ---- | M] (Skype Technologies S.A.) [Auto | Stopped] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012-06-18 07:52:53 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-02-29 08:50:48 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011-01-28 13:22:50 | 000,632,792 | ---- | M] (PC Tools) [Auto | Stopped] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010-12-21 07:38:22 | 000,350,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010-06-11 21:32:08 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010-04-12 10:46:30 | 000,152,944 | ---- | M] (TOSHIBA CORPORATION) [On_Demand | Stopped] -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)
SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008-09-30 12:48:28 | 000,935,208 | ---- | M] (Nero AG) [Auto | Stopped] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2007-02-12 00:43:44 | 000,065,536 | ---- | M] (O2Micro International) [Auto | Stopped] -- C:\Windows\System32\drivers\o2flash.exe -- (O2FLASH)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Maciek\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2010-12-02 12:13:30 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010-12-02 12:13:28 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010-12-02 12:13:26 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010-12-02 12:13:22 | 000,018,304 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010-12-02 10:36:42 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2010-12-02 10:36:42 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2010-10-07 14:11:38 | 006,639,616 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETwLv32.sys -- (NETwLv32)     Sterownik karty Intel(R)
DRV - [2010-09-07 16:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010-09-07 16:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010-09-07 16:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010-09-07 16:47:30 | 000,050,768 | ---- | M] (AVAST Software) [File_System | Auto | Stopped] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2010-09-07 16:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Stopped] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010-04-08 12:47:22 | 000,050,936 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tosrfusb.sys -- (Tosrfusb)
DRV - [2010-04-07 10:51:20 | 000,171,240 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tosrfbd.sys -- (tosrfbd)
DRV - [2010-03-23 17:39:00 | 000,053,760 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TosRfSnd.sys -- (TosRfSnd)
DRV - [2010-01-13 18:29:54 | 006,628,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw5v32.sys -- (netw5v32) Sterownik karty Intel(R)
DRV - [2009-07-28 20:01:00 | 000,069,480 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\tosrfcom.sys -- (Tosrfcom)
DRV - [2009-07-24 11:31:00 | 000,021,608 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tosrfnds.sys -- (tosrfnds)
DRV - [2009-07-14 01:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009-07-14 01:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009-07-14 00:02:53 | 000,545,792 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netr73.sys -- (netr73)
DRV - [2009-07-14 00:02:53 | 000,311,296 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2009-07-14 00:02:50 | 000,211,456 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Sterownik połączenia sieciowego Intel(R)
DRV - [2009-07-13 22:13:00 | 000,015,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosrfec.sys -- (tosrfec)
DRV - [2009-07-13 19:43:10 | 000,052,768 | ---- | M] (O2Micro ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\o2media.sys -- (O2MDRDR)
DRV - [2009-07-10 06:44:52 | 000,122,880 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel(R)
DRV - [2009-06-23 01:27:14 | 000,487,936 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\CHDRT32.sys -- (CnxtHdAudService)
DRV - [2009-06-19 09:57:00 | 000,079,872 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Tosrfhid.sys -- (Tosrfhid)
DRV - [2009-06-19 09:56:00 | 000,042,472 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tosrfbnp.sys -- (tosrfbnp)
DRV - [2009-06-17 11:59:00 | 000,046,984 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tosporte.sys -- (tosporte)
DRV - [2009-06-10 23:19:48 | 009,853,248 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009-04-10 17:09:40 | 000,017,960 | ---- | M] (Chicony Electronics Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UVCFTR_S.SYS -- (UVCFTR)
DRV - [2009-03-18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007-11-09 05:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)
DRV - [2007-08-07 06:26:14 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://alawar.pl
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddr&s={searchTerms}&f=4
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{BE28C22E-F666-424d-B5FD-125C4AFEE34E}: "URL" = http://search.myheritage.com?orig=ds&q={searchTerms}
IE - HKLM\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50winampie7
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.softonic.com/MON00085/tb_v1?SearchSource=10&cc=
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.onet.pl/
IE - HKCU\..\URLSearchHook: {1C4AB6A5-595F-4e86-B15F-F93CCE2BBD48} - C:\Program Files\Family Toolbar\tbhelper.dll ()
IE - HKCU\..\SearchScopes,DefaultScope = {F9D8F7E6-6B6C-47EF-886D-9E4563D11F7F}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=ddr&s={searchTerms}&f=4
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=113678&tt=060612_7_&babsrc=SP_ss&mntrId=38481d0b000000000000001e68a3eea2
IE - HKCU\..\SearchScopes\{0F0B19AC-E84B-4028-A70B-71470E1FB656}: "URL" = http://www.google.pl/search?hl=pl&q={searchTerms}&rlz=1I7SKPB_plPL386
IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=NRO2&o=10148&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=A2&apn_dtid=YYYYYYYYPL&apn_uid=17BBFCC8-6C46-482D-A1A2-FEBAA70D8DF2&apn_sauid=DA6BEA12-61B1-4F67-AE85-21C389068055
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKCU\..\SearchScopes\{6CF82D0E-88AD-6205-BC69-EBB0A35C4A0C}: "URL" = http://ala.asksearch.com/s/?q={searchTerms}&iesrc={referrer:source?}&cfg=2-208-0-0
IE - HKCU\..\SearchScopes\{7F4EFF06-7032-458e-AE16-1C1D8255C28A}: "URL" = http://home.speedbit.com/search.aspx?aff=206&q={searchTerms}
IE - HKCU\..\SearchScopes\{BE28C22E-F666-424d-B5FD-125C4AFEE34E}: "URL" = http://search.myheritage.com?orig=ds&q={searchTerms}
IE - HKCU\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50winampie7
IE - HKCU\..\SearchScopes\{F9D8F7E6-6B6C-47EF-886D-9E4563D11F7F}: "URL" = http://search.softonic.com/MON00085/tb_v1?q={searchTerms}&SearchSource=4&cc=&r=256
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaulturl: "http://home.speedbit.com/search.aspx?aff=206&q="
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Search the web (Softonic)"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://search.babylon.com/?affID=113678&tt=060612_7_&babsrc=HP_ss&mntrId=38481d0b000000000000001e68a3eea2"
FF - prefs.js..extensions.enabledItems: {D249FD00-4DF9-11D9-9FDC-0080481ADA61}:1.5
FF - prefs.js..extensions.enabledItems: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.12.1
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.732
FF - prefs.js..extensions.enabledItems: fdm_ffext@freedownloadmanager.org:1.3.4
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.3.0.7550
FF - prefs.js..keyword.URL: "http://search.softonic.com/MON00085/tb_v1?SearchSource=2&cc=&q="
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.4.53: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.4.53: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.4.53: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Maciek\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Maciek\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Maciek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2010-08-06 17:53:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\searchpredict@speedbit.com: C:\Program Files\SearchPredict\PRFireFox
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}: C:\Program Files\SPEEDbit Video Downloader\SPFireFox
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-05-27 15:16:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-07-04 16:51:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-07-04 16:51:29 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Maciek\AppData\Roaming\IDM\idmmzcc5
 
[2010-06-11 22:05:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Maciek\AppData\Roaming\mozilla\Extensions
[2012-06-25 19:11:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Maciek\AppData\Roaming\mozilla\Firefox\Profiles\bnpus8ml.default\extensions
[2010-09-08 12:08:32 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Users\Maciek\AppData\Roaming\mozilla\Firefox\Profiles\bnpus8ml.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2012-06-25 19:11:16 | 000,000,000 | ---D | M] (Babylon) -- C:\Users\Maciek\AppData\Roaming\mozilla\Firefox\Profiles\bnpus8ml.default\extensions\ffxtlbr@babylon.com
[2012-01-30 00:04:20 | 000,000,000 | ---D | M] (Facemoods) -- C:\Users\Maciek\AppData\Roaming\mozilla\Firefox\Profiles\bnpus8ml.default\extensions\ffxtlbr@Facemoods.com
[2012-06-25 19:11:17 | 000,000,000 | ---D | M] (softonic.com) -- C:\Users\Maciek\AppData\Roaming\mozilla\Firefox\Profiles\bnpus8ml.default\extensions\ffxtlbra@softonic.com
[2012-06-24 23:53:06 | 000,000,000 | ---D | M] (Yontoo) -- C:\Users\Maciek\AppData\Roaming\mozilla\Firefox\Profiles\bnpus8ml.default\extensions\plugin@yontoo.com
[2011-09-06 17:24:38 | 000,000,000 | ---D | M] (Real-Debrid - Plugin) -- C:\Users\Maciek\AppData\Roaming\mozilla\Firefox\Profiles\bnpus8ml.default\extensions\real@debrid
[2011-08-19 21:52:00 | 000,001,739 | ---- | M] () -- C:\Users\Maciek\AppData\Roaming\Mozilla\Firefox\Profiles\bnpus8ml.default\searchplugins\ask.uk.xml
[2011-06-08 14:01:38 | 000,002,255 | ---- | M] () -- C:\Users\Maciek\AppData\Roaming\Mozilla\Firefox\Profiles\bnpus8ml.default\searchplugins\askcom.xml
[2012-06-24 23:47:30 | 000,002,060 | ---- | M] () -- C:\Users\Maciek\AppData\Roaming\Mozilla\Firefox\Profiles\bnpus8ml.default\searchplugins\softonic.xml
[2012-01-30 21:39:35 | 000,002,534 | ---- | M] () -- C:\Users\Maciek\AppData\Roaming\Mozilla\Firefox\Profiles\bnpus8ml.default\searchplugins\speedbit.xml
[2010-09-21 10:32:29 | 000,000,358 | ---- | M] () -- C:\Users\Maciek\AppData\Roaming\Mozilla\Firefox\Profiles\bnpus8ml.default\searchplugins\winamp-search.xml
[2012-05-07 19:07:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-06-26 14:04:29 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011-07-16 19:56:46 | 000,065,236 | ---- | M] () (No name found) -- C:\USERS\MACIEK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BNPUS8ML.DEFAULT\EXTENSIONS\{D249FD00-4DF9-11D9-9FDC-0080481ADA61}.XPI
[2011-08-25 21:46:34 | 000,034,313 | ---- | M] () (No name found) -- C:\USERS\MACIEK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BNPUS8ML.DEFAULT\EXTENSIONS\{DB9127A2-3381-41EC-82B3-1B6ED4C6F29A}.XPI
[2012-06-18 07:52:54 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-04-04 18:48:34 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012-05-27 15:16:14 | 000,129,144 | ---- | M] (RealPlayer) -- C:\Program Files\mozilla firefox\plugins\nprpplugin.dll
[2010-07-12 18:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2012-06-18 07:52:49 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-06-24 23:45:55 | 000,002,352 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012-06-18 07:52:49 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2010-12-13 14:36:54 | 000,002,035 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrchddr.xml
[2012-06-18 07:52:49 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2011-01-26 21:36:31 | 000,003,803 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MyHeritage.xml
[2012-06-18 07:52:49 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-06-18 07:52:49 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-06-18 07:52:49 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider:  ()
CHR - default_search_provider: search_url = 
CHR - default_search_provider: suggest_url = 
CHR - homepage: http://search.softonic.com/MON00085/tb_v1?SearchSource=48&cc=
CHR - Extension: No name found = C:\Users\Maciek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: No name found = C:\Users\Maciek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: No name found = C:\Users\Maciek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: No name found = C:\Users\Maciek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.0.0.10201_0\
CHR - Extension: No name found = C:\Users\Maciek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2011-04-19 22:44:47 | 000,000,055 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O2 - BHO: (MHTBPos00 Class) - {0C37B053-FD68-456a-82E1-D788EE342E6F} - C:\Program Files\Family Toolbar\tbcore3.dll ()
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (CMySite Class) - {D62EC836-BF1E-4CAC-81BE-FB9179835D8E} - C:\Program Files\Family Toolbar\mhxpcomi.dll ()
O2 - BHO: (Softonic Helper Object) - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files\Softonic\Softonic\1.5.24.3\bh\Softonic.dll (Softonic.com)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKLM\..\Toolbar: (Softonic Toolbar) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\Softonic\1.5.24.3\SoftonicTlbr.dll (Softonic.com)
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (Family Toolbar) - {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - C:\Program Files\Family Toolbar\tbcore3.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files\SPEEDbit Video Downloader\Toolbar\tbcore3.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (Family Toolbar) - {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - C:\Program Files\Family Toolbar\tbcore3.dll ()
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe (Conexant Systems, Inc.)
O4 - HKLM..\Run: [fjkuewhlpusmqcf] C:\ProgramData\fjkuewhl.exe ()
O4 - HKLM..\Run: [ITSecMng] C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe (TOSHIBA CORPORATION)
O4 - HKLM..\Run: [SSDMonitor] C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe (PC Tools)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [AdobeBridge]  File not found
O4 - HKCU..\Run: [Akamai NetSession Interface] "C:\Users\Maciek\AppData\Local\Akamai\netsession_win.exe" File not found
O4 - HKCU..\Run: [Device Detector] DevDetect.exe -autorun File not found
O4 - HKCU..\Run: [fjkuewhlpusmqcf] C:\ProgramData\fjkuewhl.exe ()
O4 - HKCU..\Run: [FlashGet 3] "C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe" -minimize File not found
O4 - HKCU..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAHealth = 1
O8 - Extra context menu item: ????3?? - Reg Error: Value error. File not found
O8 - Extra context menu item: ????3?????? - Reg Error: Value error. File not found
O8 - Extra context menu item: 使用快车3下载 - C:\Users\Maciek\AppData\Roaming\FlashGetBHO\GetUrl.htm ()
O8 - Extra context menu item: 使用快车3下载全部链接 - C:\Users\Maciek\AppData\Roaming\FlashGetBHO\GetAllUrl.htm ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 95.160.170.92 88.156.222.92 82.139.8.40
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5AB7E915-933E-4DB0-9D43-8B471D18715F}: DhcpNameServer = 95.160.170.92 88.156.222.92 82.139.8.40
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C8F1256F-2C76-4FC6-A2BA-F89C796F53B5}: DhcpNameServer = 95.160.170.92 88.156.222.92 82.139.8.40
O18 - Protocol\Handler\ftp - No CLSID value found
O18 - Protocol\Handler\mhtb {669A2A3A-F19C-452D-800D-1240299756C1} - C:\Program Files\Family Toolbar\mhxpcomi.dll ()
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - igfxdev.dll (Intel Corporation)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O31 - SafeBoot: UseAlternatShell - 1
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2007-01-16 23:27:14 | 000,000,142 | R--- | M] () - E:\autorun.inf -- [ UDF ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-07-13 12:59:56 | 000,000,000 | ---D | C] -- C:\ProgramData\awecmnptppllbya
[2012-07-09 13:26:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2012-07-08 18:55:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\osu!
[2012-07-07 23:18:29 | 000,000,000 | ---D | C] -- C:\Program Files\osu!
[2012-07-07 23:16:35 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Roaming\Downloaded Installations
[2012-07-07 22:16:35 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{E42AF483-0CB9-4C74-B9E2-466274E98EAC}
[2012-07-06 13:17:10 | 000,000,000 | -HSD | C] -- C:\Windows\ftpcache
[2012-07-06 13:13:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHReK TRZeCI
[2012-07-05 22:25:57 | 000,000,000 | ---D | C] -- C:\Users\Maciek\Desktop\pierdoły
[2012-07-05 20:37:40 | 000,000,000 | ---D | C] -- C:\Program Files\ResurrectionDemoPL
[2012-07-05 20:34:15 | 000,306,688 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe
[2012-07-05 20:33:27 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ToonCar
[2012-07-05 20:33:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ToonCar
[2012-07-05 20:31:50 | 000,000,000 | ---D | C] -- C:\Program Files\ToonCar
[2012-07-05 20:27:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SWF Studio
[2012-07-05 20:26:06 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Roaming\Disney Interactive
[2012-07-05 20:25:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disney Interactive
[2012-07-05 20:25:51 | 000,000,000 | ---D | C] -- C:\Program Files\Disney Interactive
[2012-07-04 18:12:27 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{35E2EF3C-2186-433E-AA04-E5B118F5A3E5}
[2012-07-04 18:12:13 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{4C13BB0E-6137-4F82-B6D4-0821F5470EB0}
[2012-07-04 16:51:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012-07-04 16:50:42 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2012-07-04 16:49:01 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2012-07-03 23:14:14 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{5E30A8CA-FCC1-4C25-B1EF-63A2AC282D00}
[2012-07-03 23:13:59 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{8E57973B-35CD-47FD-BF45-5D7897E0B07B}
[2012-06-29 20:38:42 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Joymax
[2012-06-29 18:21:08 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Roaming\Unity
[2012-06-27 21:27:34 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{86AD7572-93B0-45EC-ADCB-9DB2454AB16F}
[2012-06-27 21:27:17 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{2AB56500-3F4B-4780-B3D7-E8BEE9866819}
[2012-06-26 21:47:30 | 000,000,000 | ---D | C] -- C:\Users\Maciek\Documents\My Games
[2012-06-26 21:22:24 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Core
[2012-06-26 21:22:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2012-06-26 21:14:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
[2012-06-26 20:37:34 | 000,000,000 | ---D | C] -- C:\Program Files\EA Games
[2012-06-25 14:30:44 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{A6E62D70-294D-49CD-98BA-156574C09344}
[2012-06-25 14:30:29 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{6C81DC74-E5F9-4D2C-BB6A-995EAF13C0F4}
[2012-06-24 23:53:04 | 000,000,000 | ---D | C] -- C:\Program Files\Yontoo
[2012-06-24 23:52:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2012-06-24 23:52:53 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Roaming\Opera
[2012-06-24 23:52:53 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\Opera
[2012-06-24 23:52:40 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2012-06-24 23:47:34 | 000,000,000 | ---D | C] -- C:\Program Files\Softonic
[2012-06-24 23:46:19 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Roaming\BabylonToolbar
[2012-06-24 23:46:06 | 000,000,000 | ---D | C] -- C:\Program Files\BabylonToolbar
[2012-06-24 23:45:24 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Roaming\Babylon
[2012-06-24 23:45:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012-06-24 14:39:36 | 000,000,000 | ---D | C] -- C:\Users\Maciek\.gstreamer-0.10
[2012-06-24 14:39:14 | 000,000,000 | ---D | C] -- C:\ProgramData\OpenFM
[2012-06-24 14:39:13 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Roaming\OpenFM
[2012-06-24 13:57:10 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Roaming\Gadu-Gadu 10
[2012-06-24 13:57:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Gadu-Gadu 10
[2012-06-24 13:56:15 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2012-06-24 13:51:22 | 000,000,000 | ---D | C] -- C:\Users\Maciek\Desktop\programy
[2012-06-24 10:19:17 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{2D42568C-F3D1-4721-9782-86847463911F}
[2012-06-24 10:18:57 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{E58E3CD1-0418-4D1B-9F80-B1AD50F624F2}
[2012-06-23 21:31:18 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{972E4449-2EDF-47B6-9977-3BC9314D8623}
[2012-06-23 21:31:06 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{87D22CBE-118C-45BD-A8B4-DE23214E6E9D}
[2012-06-23 09:30:52 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{F3D0F25D-C15C-4B36-A5F8-C767604FE3D3}
[2012-06-23 09:30:39 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{1B558209-7053-4171-9BB2-1B7C023ACF1A}
[2012-06-22 19:58:31 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{5A547069-20A9-4F95-9D90-8E8B15C23CF2}
[2012-06-22 19:58:20 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{F2B10E15-D069-4127-86F4-5B1140E83E53}
[2012-06-22 07:36:27 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{17F79D4B-3004-4349-AC41-09647627E64D}
[2012-06-21 19:15:58 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{322C2718-BE28-4637-A192-38F3485670E6}
[2012-06-21 19:15:35 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{C3966F19-2FDF-4953-98F0-2EA7B42D2B23}
[2012-06-21 07:15:00 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{20933F61-F834-413F-AAFB-D4C66FDC1A5B}
[2012-06-21 07:14:44 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{1CCC2F27-C78F-461A-8A96-F2E46524815F}
[2012-06-20 22:02:25 | 000,000,000 | ---D | C] -- C:\Windows\pl
[2012-06-20 21:49:50 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{9D72A4D0-CA4C-48D0-94DF-68998AB9C2B8}
[2012-06-20 21:42:57 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{0CD8E98A-5E79-4F3F-B138-BA4009831779}
[2012-06-20 21:42:34 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{9F84AF26-4776-4A4D-8557-E91D031781E2}
[2012-06-20 09:24:35 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{D6370C40-C7F7-47C0-98D5-910F9EE6B9A2}
[2012-06-20 09:24:22 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{59A0BA55-6B29-408F-BDB0-3DA31369FE0B}
[2012-06-19 13:37:00 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{71591802-919E-4BA3-BEF7-6BC4B29D208F}
[2012-06-19 13:36:20 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{8B93FA2E-CB5B-44B6-8DB5-4195931D0D2B}
[2012-06-18 12:28:11 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{FC2EBD33-58DE-42DE-B80D-9622CD50BDDB}
[2012-06-18 04:58:23 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{2218756C-0C5C-4B26-8CF6-F2D6F3902980}
[2012-06-17 09:54:00 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{431D8673-1470-4979-860C-E0856BFB9D1A}
[2012-06-16 15:12:46 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{DD01AC97-AD74-423D-8657-857B2CFE79F1}
[2012-06-16 10:10:16 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{B46BFA4A-6E46-47D7-AD8B-D489EA9E19C6}
[2012-06-16 09:47:03 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{8D7D9340-BD62-4C4D-B974-C92C5EB31CC9}
[2012-06-15 19:58:00 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{E50FC891-555F-41AB-B35F-703D6A0DFC53}
[2012-06-15 07:30:53 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{ACBCD6AC-87D1-492C-BEA2-D0DB6D728F3E}
[2012-06-13 22:56:18 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{AAB0A308-2E0A-4459-8B6F-B237CE1829DF}
[2012-06-13 22:55:54 | 000,000,000 | ---D | C] -- C:\Users\Maciek\AppData\Local\{01B05D04-8A89-41F5-AF5B-6B5D8C24587B}
[31 C:\Users\Maciek\Documents\*.tmp files -> C:\Users\Maciek\Documents\*.tmp -> ]
[11 C:\Users\Maciek\Desktop\*.tmp files -> C:\Users\Maciek\Desktop\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-07-13 13:56:09 | 000,697,674 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2012-07-13 13:56:09 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012-07-13 13:56:09 | 000,134,784 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2012-07-13 13:56:09 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012-07-13 13:49:43 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-07-13 13:49:00 | 2408,390,656 | -HS- | M] () -- C:\hiberfil.sys
[2012-07-13 13:16:26 | 000,001,032 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-07-13 12:59:59 | 000,000,051 | ---- | M] () -- C:\ProgramData\doatfsrylgumwzi
[2012-07-13 12:59:47 | 000,049,152 | ---- | M] () -- C:\ProgramData\fjkuewhl.exe
[2012-07-13 12:59:47 | 000,049,152 | ---- | M] () -- C:\Users\Maciek\0.4433192347106607.exe
[2012-07-13 12:46:00 | 000,001,036 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-07-13 11:33:58 | 000,013,440 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-07-13 11:33:58 | 000,013,440 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-07-13 01:02:49 | 000,000,442 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Maciek.job
[2012-07-12 21:25:29 | 000,114,876 | ---- | M] () -- C:\Users\Maciek\Desktop\28.jpg
[2012-07-11 17:47:30 | 000,000,000 | ---- | M] () -- C:\Windows\System32\qt_temp.hS5808.png
[2012-07-11 17:09:02 | 000,251,061 | ---- | M] () -- C:\Users\Maciek\Documents\Znaki.rar
[2012-07-11 17:08:15 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Znaki.rar
[2012-07-08 18:55:34 | 000,000,815 | ---- | M] () -- C:\Users\Public\Desktop\osu!.lnk
[2012-07-06 20:51:19 | 000,419,952 | ---- | M] () -- C:\Users\Maciek\Documents\qt_temp.wK2184.png
[2012-07-06 20:50:38 | 000,000,000 | ---- | M] () -- C:\Windows\System32\qt_temp.wK2184.png
[2012-07-06 18:49:21 | 000,271,843 | ---- | M] () -- C:\Users\Maciek\Documents\qt_temp.EH2184.png
[2012-07-06 18:48:54 | 000,000,000 | ---- | M] () -- C:\Windows\System32\qt_temp.EH2184.png
[2012-07-05 20:27:18 | 000,001,219 | ---- | M] () -- C:\Windows\disney.ini
[2012-06-30 15:09:04 | 001,232,811 | ---- | M] () -- C:\Users\Maciek\Documents\qt_temp.DT3956.png
[2012-06-30 15:07:58 | 000,000,000 | ---- | M] () -- C:\Windows\System32\qt_temp.DT3956.png
[2012-06-30 01:02:59 | 003,678,378 | ---- | M] () -- C:\Users\Maciek\Documents\117163-swiadome-sny.jpg
[2012-06-30 01:00:35 | 000,000,000 | ---- | M] () -- C:\Windows\System32\117163-swiadome-sny.jpg
[2012-06-24 23:47:36 | 000,000,359 | ---- | M] () -- C:\user.js
[2012-06-24 23:43:08 | 000,000,183 | ---- | M] () -- C:\Users\Maciek\AppData\Roaming\default.rss
[2012-06-22 07:51:36 | 000,002,560 | ---- | M] () -- C:\Windows\_MSRSTRT.EXE
[2012-06-18 13:33:45 | 003,798,264 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[31 C:\Users\Maciek\Documents\*.tmp files -> C:\Users\Maciek\Documents\*.tmp -> ]
[11 C:\Users\Maciek\Desktop\*.tmp files -> C:\Users\Maciek\Desktop\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-07-13 12:59:59 | 000,049,152 | ---- | C] () -- C:\ProgramData\fjkuewhl.exe
[2012-07-13 12:59:50 | 000,000,051 | ---- | C] () -- C:\ProgramData\doatfsrylgumwzi
[2012-07-13 12:59:47 | 000,049,152 | ---- | C] () -- C:\Users\Maciek\0.4433192347106607.exe
[2012-07-12 21:25:26 | 000,114,876 | ---- | C] () -- C:\Users\Maciek\Desktop\28.jpg
[2012-07-11 17:47:30 | 000,000,000 | ---- | C] () -- C:\Windows\System32\qt_temp.hS5808.png
[2012-07-11 17:08:56 | 000,251,061 | ---- | C] () -- C:\Users\Maciek\Documents\Znaki.rar
[2012-07-11 17:08:15 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Znaki.rar
[2012-07-08 18:55:34 | 000,000,815 | ---- | C] () -- C:\Users\Public\Desktop\osu!.lnk
[2012-07-06 20:50:51 | 000,419,952 | ---- | C] () -- C:\Users\Maciek\Documents\qt_temp.wK2184.png
[2012-07-06 20:50:38 | 000,000,000 | ---- | C] () -- C:\Windows\System32\qt_temp.wK2184.png
[2012-07-06 18:48:59 | 000,271,843 | ---- | C] () -- C:\Users\Maciek\Documents\qt_temp.EH2184.png
[2012-07-06 18:48:54 | 000,000,000 | ---- | C] () -- C:\Windows\System32\qt_temp.EH2184.png
[2012-07-05 20:25:36 | 000,001,219 | ---- | C] () -- C:\Windows\disney.ini
[2012-07-04 16:49:04 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012-06-30 15:08:09 | 001,232,811 | ---- | C] () -- C:\Users\Maciek\Documents\qt_temp.DT3956.png
[2012-06-30 15:07:58 | 000,000,000 | ---- | C] () -- C:\Windows\System32\qt_temp.DT3956.png
[2012-06-30 01:00:38 | 003,678,378 | ---- | C] () -- C:\Users\Maciek\Documents\117163-swiadome-sny.jpg
[2012-06-30 01:00:35 | 000,000,000 | ---- | C] () -- C:\Windows\System32\117163-swiadome-sny.jpg
[2012-06-24 23:52:45 | 000,001,747 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
[2012-06-24 23:46:07 | 000,000,359 | ---- | C] () -- C:\user.js
[2012-06-24 13:56:29 | 000,000,929 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gadu-Gadu 10.lnk
[2012-05-31 08:28:59 | 000,000,874 | ---- | C] () -- C:\Users\Maciek\.recently-used.xbel
[2012-01-25 12:44:35 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
[2011-10-19 22:49:57 | 000,000,670 | ---- | C] () -- C:\Users\Maciek\Maciek — skrót.lnk
[2011-10-07 23:34:39 | 000,037,336 | ---- | C] () -- C:\Windows\System32\CleanMFT32.exe
[2011-09-08 21:20:06 | 000,109,216 | ---- | C] () -- C:\Windows\System32\EasyHook64.dll
[2011-09-08 21:20:06 | 000,084,480 | ---- | C] () -- C:\Windows\System32\EasyHook32.dll
[2011-08-25 21:28:45 | 000,000,204 | ---- | C] () -- C:\Windows\System32\secustat.dat
[2011-08-25 21:12:40 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI
[2011-03-26 22:59:38 | 000,004,608 | ---- | C] () -- C:\Users\Maciek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-01-29 20:47:07 | 000,000,000 | ---- | C] () -- C:\Windows\hpqEmlSz.INI
[2011-01-26 15:56:38 | 000,000,514 | ---- | C] () -- C:\Windows\Viewer.INI
[2011-01-25 23:31:48 | 000,001,405 | ---- | C] () -- C:\Windows\MyHeritage.INI
[2011-01-25 23:27:38 | 000,454,656 | ---- | C] () -- C:\Windows\System32\PaintX.dll
[2011-01-24 13:00:51 | 000,000,221 | ---- | C] () -- C:\Windows\NCLogConfig.ini
[2010-11-24 01:10:17 | 000,679,936 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010-11-24 01:10:17 | 000,258,048 | ---- | C] () -- C:\Windows\System32\libFLAC.dll
[2010-10-31 22:53:52 | 000,004,096 | -H-- | C] () -- C:\Users\Maciek\AppData\Local\keyfile3.drm
[2010-10-11 14:38:09 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2010-10-03 22:48:47 | 000,000,183 | ---- | C] () -- C:\Users\Maciek\AppData\Roaming\default.rss
[2010-09-23 20:22:49 | 000,004,767 | ---- | C] () -- C:\Windows\Irremote.ini
[2010-09-21 13:35:45 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2010-09-21 13:35:45 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010-09-21 13:35:45 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010-09-21 13:35:45 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010-09-21 13:35:45 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010-09-21 12:14:26 | 000,003,972 | ---- | C] () -- C:\Windows\System32\drivers\PciBus.sys
[2010-08-31 23:13:21 | 000,000,596 | ---- | C] () -- C:\Windows\CDPLAYER.INI
[2010-08-13 15:13:50 | 000,141,280 | ---- | C] () -- C:\Windows\hpoins12.dat
[2010-06-12 22:50:36 | 001,028,938 | ---- | C] () -- C:\Program Files\slsk157NS13e.exe
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 143 bytes -> C:\Users\Maciek\AppData\Roaming\default.rss:OECustomProperty
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:D1B5B4F1
@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:553CA6CA

< End of report >