OTL logfile created on: 2012-09-27 15:44:01 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Kamil\Moje dokumenty\Pobieranie Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1022,79 Mb Total Physical Memory | 362,73 Mb Available Physical Memory | 35,47% Memory free 2,40 Gb Paging File | 1,83 Gb Available in Paging File | 76,23% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 87,89 Gb Total Space | 60,92 Gb Free Space | 69,32% Space Free | Partition Type: NTFS Drive D: | 61,16 Gb Total Space | 32,30 Gb Free Space | 52,81% Space Free | Partition Type: NTFS Computer Name: PRV-KAMIL | User Name: Kamil | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-09-27 15:43:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamil\Moje dokumenty\Pobieranie\OTL.exe PRC - [2012-09-27 15:38:18 | 000,961,992 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe PRC - [2012-09-27 15:38:18 | 000,711,112 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.0.0\ToolbarUpdater.exe PRC - [2012-09-14 05:35:58 | 003,039,352 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgui.exe PRC - [2012-09-13 05:35:58 | 007,175,408 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgmfapx.exe PRC - [2012-09-12 05:41:24 | 000,713,848 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgrsx.exe PRC - [2012-09-10 16:31:38 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2012-08-27 02:27:10 | 001,108,088 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgnsx.exe PRC - [2012-08-20 04:53:34 | 000,184,304 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe PRC - [2012-08-20 04:52:42 | 005,751,928 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgidsagent.exe PRC - [2012-08-20 04:52:34 | 000,783,992 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgemcx.exe PRC - [2012-08-20 04:52:26 | 000,450,168 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgcsrvx.exe PRC - [2012-05-29 17:38:00 | 001,528,672 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe PRC - [2012-05-29 17:38:00 | 001,220,960 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe PRC - [2012-05-04 19:29:46 | 000,161,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe PRC - [2012-02-10 11:28:06 | 000,240,408 | ---- | M] (Microsoft Corporation.) -- C:\Program Files\Microsoft\BingBar\7.1.361.0\SeaPort.EXE PRC - [2012-01-17 11:07:58 | 000,505,736 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe PRC - [2009-09-16 18:26:30 | 002,170,880 | ---- | M] (WS1001) -- C:\Program Files\tracer\W541U\UI.exe PRC - [2008-10-20 19:47:32 | 002,580,480 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 2.4\program\soffice.bin PRC - [2008-10-20 19:47:30 | 002,363,392 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 2.4\program\soffice.exe PRC - [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2003-02-09 12:14:50 | 000,057,344 | ---- | M] (Panasonic Communications Co.,Ltd.) -- C:\Program Files\Panasonic\Remote server\KMENTSRV.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-09-27 15:38:18 | 000,961,992 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe MOD - [2012-09-27 15:38:18 | 000,711,112 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.0.0\ToolbarUpdater.exe MOD - [2012-09-27 15:38:18 | 000,566,728 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\DNTInstaller\13.0.0\avgdttbx.dll MOD - [2012-09-27 15:38:18 | 000,134,600 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.0.0\SiteSafety.dll MOD - [2012-09-22 09:14:30 | 009,813,424 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_278.dll MOD - [2012-09-10 16:31:38 | 002,244,064 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2009-04-06 16:27:32 | 000,032,768 | ---- | M] () -- C:\Program Files\tracer\W541U\dllMultiLanguage.dll MOD - [2009-04-06 16:27:26 | 000,098,304 | ---- | M] () -- C:\Program Files\tracer\W541U\dllPublicFunc.dll MOD - [2009-02-27 21:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL MOD - [2009-01-05 21:12:12 | 000,159,744 | ---- | M] () -- C:\Program Files\tracer\W541U\dllCommonCtrl.dll MOD - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll MOD - [2007-12-19 16:04:24 | 000,828,416 | ---- | M] () -- C:\Program Files\OpenOffice.org 2.4\program\libxml2.dll MOD - [2007-12-06 11:24:26 | 001,167,360 | ---- | M] () -- C:\Program Files\tracer\W541U\acAuth.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ) SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) SRV - [2012-09-27 15:38:18 | 000,711,112 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.0.0\ToolbarUpdater.exe -- (vToolbarUpdater13.0.0) SRV - [2012-09-22 09:14:31 | 000,250,288 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-09-10 16:31:38 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-08-20 04:53:34 | 000,184,304 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe -- (avgwd) SRV - [2012-08-20 04:52:42 | 005,751,928 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent) SRV - [2012-07-13 13:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012-05-29 17:38:00 | 001,528,672 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc) SRV - [2012-05-04 19:29:46 | 000,161,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2012-02-10 11:28:06 | 000,240,408 | ---- | M] (Microsoft Corporation.) [On_Demand | Running] -- C:\Program Files\Microsoft\BingBar\7.1.361.0\SeaPort.EXE -- (BBUpdate) SRV - [2012-02-10 11:28:06 | 000,193,816 | ---- | M] (Microsoft Corporation.) [Auto | Stopped] -- C:\Program Files\Microsoft\BingBar\7.1.361.0\BBSvc.EXE -- (BBSvc) SRV - [2003-02-09 12:14:50 | 000,057,344 | ---- | M] (Panasonic Communications Co.,Ltd.) [Auto | Running] -- C:\Program Files\Panasonic\Remote server\KMENTSRV.exe -- (KME Remote Server) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva389.sys -- (XDva389) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\ctdvda2k.sys -- (ctdvda2k) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\ADMINI~1.PRV\USTAWI~1\Temp\catchme.sys -- (catchme) DRV - [2012-09-27 15:38:18 | 000,026,984 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtpx86.sys -- (avgtp) DRV - [2012-09-17 18:58:56 | 000,051,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Stopped] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX) DRV - [2012-09-14 05:34:34 | 000,089,440 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86) DRV - [2012-09-12 11:47:22 | 000,164,704 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix) DRV - [2012-09-12 11:47:04 | 000,151,648 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86) DRV - [2012-08-13 16:40:54 | 000,176,096 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver) DRV - [2012-08-10 04:52:28 | 000,019,808 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim) DRV - [2012-08-10 04:52:18 | 000,035,168 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86) DRV - [2012-08-09 13:56:44 | 000,178,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avglogx.sys -- (Avglogx) DRV - [2012-05-08 15:21:42 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv) DRV - [2011-05-19 15:50:08 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2010-06-14 10:32:54 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2010-05-12 12:14:58 | 000,121,576 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdm.sys -- (ssadmdm) DRV - [2010-05-12 12:14:56 | 000,096,488 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadbus.sys -- (ssadbus) DRV - [2010-05-12 12:14:56 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdfl.sys -- (ssadmdfl) DRV - [2010-05-12 12:14:54 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadadb.sys -- (androidusb) DRV - [2010-04-27 04:25:20 | 000,132,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm) DRV - [2010-04-27 04:25:20 | 000,104,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) DRV - [2010-04-27 04:25:20 | 000,014,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl) DRV - [2010-02-11 09:38:10 | 003,565,056 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2009-06-30 12:06:02 | 000,722,432 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt2870.sys -- (rt2870) DRV - [2008-04-14 01:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2008-04-14 00:05:40 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) DRV - [2005-08-16 00:26:43 | 000,483,200 | ---- | M] (ITETech ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AF15BDA.sys -- (AF15BDA) DRV - [2004-07-09 04:26:38 | 000,015,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE) DRV - [2003-10-15 03:53:20 | 000,186,100 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CTAC32K.SYS -- (ctac32k) DRV - [2003-09-19 03:47:22 | 000,496,800 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctaud2k.sys -- (ctaud2k) DRV - [2003-08-28 10:24:36 | 000,145,504 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\EMUPIA2K.SYS -- (emupia) DRV - [2003-08-28 10:24:24 | 000,136,448 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CTSFM2K.SYS -- (ctsfm2k) DRV - [2003-08-28 10:24:08 | 000,006,144 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CTPRXY2K.SYS -- (ctprxy2k) DRV - [2003-08-28 10:24:06 | 000,113,840 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv) DRV - [2003-08-28 10:22:20 | 000,135,696 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HAP16V2K.SYS -- (hap16v2k) DRV - [2003-08-28 10:22:04 | 000,823,456 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ha10kx2k.sys -- (ha10kx2k) DRV - [2001-08-17 22:19:20 | 000,003,712 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctljystk.sys -- (ctljystk) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://startsear.ch/?aff=1&cf=66e9b992-3a37-11e1-887a-00138f4003a1 IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{57A2BF33-284A-4BDD-8619-B95ED32C85CC}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://startsear.ch/?aff=1&cf=66e9b992-3a37-11e1-887a-00138f4003a1 IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://startsear.ch/?aff=1&src=sp&cf=66e9b992-3a37-11e1-887a-00138f4003a1&q={searchTerms} IE - HKCU\..\SearchScopes\{0BC50E57-6E9F-4F2C-A93E-1F8889C2A8DC}: "URL" = http://search.avg.com/route/?d=4da45d6c&v=6.103.18.1&i=23&tp=chrome&q={searchTerms}&lng={language}&iy=&ychte=us IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=15627 IE - HKCU\..\SearchScopes\{57A2BF33-284A-4BDD-8619-B95ED32C85CC}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg.com/search?cid={5F025306-8725-4447-BD87-99A0CF61A499}&mid=400444565b1d47d6a00bd15ac9a4ea52-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=pl&ds=AVG&pr=fr&d=2012-09-27 15:38:38&v=13.1.0.1&sap=dsp&q={searchTerms} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "Web Search" FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search" FF - prefs.js..browser.search.order.1: "Web Search" FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: vshare@toolbar:1.0.0 FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2 FF - prefs.js..extensions.enabledItems: 5 FF - prefs.js..extensions.enabledItems: 3 FF - prefs.js..extensions.enabledItems: 1 FF - prefs.js..extensions.enabledItems: {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:10.0.0.1374 FF - prefs.js..extensions.enabledItems: avg@igeared:7.005.030.004 FF - prefs.js..keyword.URL: "https://isearch.avg.com/search?cid={5F025306-8725-4447-BD87-99A0CF61A499}&mid=400444565b1d47d6a00bd15ac9a4ea52-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=pl&ds=AVG&pr=fr&d=2012-09-27 15:38:38&v=13.1.0.1&sap=ku&q=" FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_278.dll () FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.0.0\\npsitesafety.dll () FF - HKLM\Software\MozillaPlugins\@ganymede/GanymedeNetPlugin,version=1.0: C:\Program Files\Ganymede\Plugins\npganymedenet.dll ( ) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@pages.tvunetworks.com/WebPlayer: C:\Program Files\TVUPlayer\npTVUAx.dll File not found FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search\FireFoxExt\13.1.0.1 [2012-09-27 15:38:44 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-09-10 16:31:39 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-06-27 14:54:42 | 000,000,000 | ---D | M] [2011-01-12 20:33:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Kamil\Dane aplikacji\Mozilla\Extensions [2012-05-06 18:56:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Kamil\Dane aplikacji\Mozilla\Firefox\Profiles\e8lv1jmm.default\extensions [2012-02-04 19:09:27 | 000,020,591 | ---- | M] () (No name found) -- C:\Documents and Settings\Kamil\Dane aplikacji\Mozilla\Firefox\Profiles\e8lv1jmm.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi [2012-01-08 22:29:24 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\Kamil\Dane aplikacji\Mozilla\Firefox\Profiles\e8lv1jmm.default\searchplugins\startsear.xml [2011-11-08 21:41:34 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011-12-01 19:51:47 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-09-10 16:31:39 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2011-12-20 12:33:56 | 000,120,984 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npganymedenet.dll [2011-10-03 11:14:54 | 000,083,456 | ---- | M] (vShare.tv ) -- C:\Program Files\mozilla firefox\plugins\npvsharetvplg.dll [2012-05-10 09:47:01 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-09-27 15:38:27 | 000,003,741 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml [2011-02-02 14:49:29 | 000,002,226 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml [2012-05-10 09:47:01 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-05-10 09:47:01 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-05-10 09:47:01 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-05-10 09:47:01 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-05-10 09:47:01 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2012-09-27 15:04:09 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Bing Bar Helper) - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation) O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.1.0.1\AVG Secure Search_toolbar.dll () O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.1.0.1\AVG Secure Search_toolbar.dll () O3 - HKLM\..\Toolbar: (Bing Bar) - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found. O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [Jet Detection] C:\Program Files\Creative\SBLive\PROGRAM\ADGJDet.exe () O4 - HKLM..\Run: [ROC_roc_ssl_v12] C:\Program Files\AVG Secure Search\ROC_roc_ssl_v12.exe () O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe () O4 - HKCU..\Run: [BlazeServoTool] "C:\Program Files\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe" File not found O4 - HKCU..\Run: [Wireless_UI] C:\Program Files\tracer\W541U\UI.exe (WS1001) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Ekran Stanu KX-P7105 i KX-P7110.lnk = C:\Program Files\Panasonic\Panasonic KX-P7105 and KX-P7110\Status Display\stmndsp.exe (Panasonic Communications Co.,Ltd.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Status Display.lnk = C:\Program Files\Panasonic\Panasonic KX-P7105 and KX-P7110\Status Display\stmndsp.exe (Panasonic Communications Co.,Ltd.) O4 - Startup: C:\Documents and Settings\Kamil\Menu Start\Programy\Autostart\OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1294742124437 (WUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{908C1A49-9930-4EB0-9073-55EF121655A7}: DhcpNameServer = 192.168.0.1 194.204.159.1 193.110.121.20 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{924D601E-4D86-40A6-9C45-FB521957EF3E}: DhcpNameServer = 8.8.8.8 8.8.4.4 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\13.0.0\ViProtocol.dll () O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - HKCU Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKCU Winlogon: Shell - (C:\Documents and Settings\Kamil\Dane aplikacji\msconfig.dat) - File not found O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-01-11 12:20:37 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-09-27 15:40:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamil\Dane aplikacji\AVG2013 [2012-09-27 15:38:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AVG [2012-09-27 15:38:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamil\Ustawienia lokalne\Dane aplikacji\AVG Secure Search [2012-09-27 15:38:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search [2012-09-27 15:38:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamil\Dane aplikacji\AVG Secure Search [2012-09-27 15:38:35 | 000,026,984 | ---- | C] (AVG Technologies) -- C:\WINDOWS\System32\drivers\avgtpx86.sys [2012-09-27 15:38:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVG Secure Search [2012-09-27 15:38:30 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search [2012-09-27 15:37:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood [2012-09-27 15:36:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2013 [2012-09-27 15:28:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamil\Ustawienia lokalne\Dane aplikacji\MFAData [2012-09-27 15:28:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamil\Ustawienia lokalne\Dane aplikacji\Avg2013 [2012-09-27 15:05:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp [2012-09-27 14:45:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CCleaner [2012-09-27 14:45:36 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2012-09-26 18:07:20 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2012-09-26 18:07:20 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2012-09-26 18:07:20 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2012-09-26 18:07:20 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2012-09-26 18:03:02 | 000,000,000 | ---D | C] -- C:\Qoobox [2012-09-26 18:02:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt [2012-09-25 15:54:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamil\Ustawienia lokalne\Dane aplikacji\FreePascal [2012-09-25 15:53:15 | 000,000,000 | ---D | C] -- C:\FPC [2012-09-25 15:19:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\pascal [2012-09-19 16:30:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\iMetin [2012-09-19 16:30:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamil\Menu Start\Programy\iMetin [2012-09-17 18:58:56 | 000,051,936 | ---- | C] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\System32\drivers\avgidshx.sys [2012-09-15 18:05:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Testy na Prawo Jazdy - B [2012-09-15 18:05:46 | 000,000,000 | ---D | C] -- C:\Program Files\Testy na Prawo Jazdy - B [2012-09-15 09:42:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Metin2 [2012-09-14 20:36:28 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll [2012-09-14 19:31:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamil\Ustawienia lokalne\Dane aplikacji\Ubisoft [2012-09-14 19:31:37 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Kamil\wc [2012-09-14 19:31:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Kamil\Dane aplikacji\wyUpdate AU [2012-09-14 19:31:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Duel of Champions Launcher [2012-09-14 19:31:14 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft [2012-09-14 05:34:34 | 000,089,440 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys [2012-09-12 11:47:22 | 000,164,704 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys [2012-09-12 11:47:04 | 000,151,648 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys [2012-09-04 19:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamil\Pulpit\ELO [2012-09-04 18:53:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype [2012-09-04 18:53:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-09-27 15:38:54 | 000,000,732 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2013.lnk [2012-09-27 15:38:18 | 000,026,984 | ---- | M] (AVG Technologies) -- C:\WINDOWS\System32\drivers\avgtpx86.sys [2012-09-27 15:16:03 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2012-09-27 15:14:39 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-09-27 15:14:36 | 1072,549,888 | -HS- | M] () -- C:\hiberfil.sys [2012-09-27 15:04:09 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2012-09-27 14:45:37 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk [2012-09-27 14:42:16 | 000,000,045 | ---- | M] () -- C:\Documents and Settings\Kamil\Dane aplikacji\msconfig.ini [2012-09-27 12:03:12 | 000,024,144 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000002-00000000-00000001-00001102-00000002-100A1102}.rfx [2012-09-27 12:03:12 | 000,024,144 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000002-00000000-00000001-00001102-00000002-100A1102}.rfx [2012-09-27 12:03:12 | 000,016,376 | ---- | M] () -- C:\WINDOWS\System32\BMXStateBkp-{00000002-00000000-00000001-00001102-00000002-100A1102}.rfx [2012-09-27 12:03:12 | 000,016,376 | ---- | M] () -- C:\WINDOWS\System32\BMXState-{00000002-00000000-00000001-00001102-00000002-100A1102}.rfx [2012-09-27 12:03:12 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm [2012-09-27 12:03:12 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm [2012-09-27 12:03:12 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\DVCStateBkp-{00000002-00000000-00000001-00001102-00000002-100A1102}.dat [2012-09-27 12:03:12 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\DVCState-{00000002-00000000-00000001-00001102-00000002-100A1102}.dat [2012-09-26 16:13:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-09-26 15:27:51 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-09-25 15:54:53 | 000,004,676 | ---- | M] () -- C:\Documents and Settings\Kamil\.recently-used.xbel [2012-09-25 15:53:56 | 000,001,588 | ---- | M] () -- C:\Documents and Settings\Kamil\Pulpit\Free Pascal IDE.lnk [2012-09-25 15:19:54 | 000,000,766 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Duel of Champions Launcher.lnk [2012-09-22 14:00:00 | 000,000,476 | ---- | M] () -- C:\WINDOWS\tasks\At4.job [2012-09-22 10:35:01 | 000,000,476 | ---- | M] () -- C:\WINDOWS\tasks\At3.job [2012-09-22 10:10:01 | 000,000,476 | ---- | M] () -- C:\WINDOWS\tasks\At1.job [2012-09-22 09:14:30 | 000,696,240 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2012-09-22 09:14:30 | 000,073,136 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2012-09-19 16:31:13 | 000,000,554 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\iMetin.lnk [2012-09-17 18:58:56 | 000,051,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\System32\drivers\avgidshx.sys [2012-09-16 20:08:36 | 000,565,768 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2012-09-16 20:08:36 | 000,502,798 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2012-09-16 20:08:36 | 000,110,208 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2012-09-16 20:08:36 | 000,088,322 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2012-09-15 20:40:00 | 000,000,476 | ---- | M] () -- C:\WINDOWS\tasks\At2.job [2012-09-15 18:05:56 | 000,000,849 | ---- | M] () -- C:\Documents and Settings\Kamil\Pulpit\Testy na Prawo Jazdy B.lnk [2012-09-15 15:20:31 | 000,448,020 | ---- | M] () -- C:\Documents and Settings\Kamil\Pulpit\7.jpg [2012-09-15 09:42:50 | 000,000,554 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Metin2.lnk [2012-09-14 05:34:34 | 000,089,440 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys [2012-09-12 11:47:22 | 000,164,704 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys [2012-09-12 11:47:04 | 000,151,648 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys [2012-09-10 17:56:36 | 000,008,464 | ---- | M] () -- C:\Documents and Settings\Kamil\Pulpit\ROW51.EXE [2012-09-10 17:56:02 | 000,000,918 | ---- | M] () -- C:\Documents and Settings\Kamil\Pulpit\row51.pas [2012-09-07 17:41:45 | 000,006,480 | ---- | M] () -- C:\Documents and Settings\Kamil\Pulpit\ROW4.EXE [2012-09-06 18:47:25 | 000,000,490 | ---- | M] () -- C:\Documents and Settings\Kamil\Pulpit\row4.pas [2012-09-04 20:08:33 | 000,351,386 | ---- | M] () -- C:\Documents and Settings\Kamil\Pulpit\wetwetwet.JPG [2012-08-28 20:48:44 | 011,111,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2012-08-28 17:18:53 | 000,916,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll [2012-08-28 17:18:52 | 001,212,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll [2012-08-28 17:18:51 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll [2012-08-28 17:18:51 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\url.dll [2012-08-28 17:18:51 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll [2012-08-28 17:18:50 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll [2012-08-28 17:18:50 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll [2012-08-28 17:18:50 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll [2012-08-28 17:18:49 | 006,008,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll [2012-08-28 17:18:45 | 000,630,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll [2012-08-28 17:18:45 | 000,630,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2012-08-28 17:18:45 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedsbs.dll [2012-08-28 17:18:45 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2012-08-28 17:18:44 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl [2012-08-28 17:18:44 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl [2012-08-28 17:18:44 | 000,521,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2012-08-28 17:18:44 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licmgr10.dll [2012-08-28 17:18:44 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licmgr10.dll [2012-08-28 17:18:44 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll [2012-08-28 17:18:44 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll [2012-08-28 17:18:43 | 002,000,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2012-08-28 17:18:43 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll [2012-08-28 17:18:43 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll [2012-08-28 17:18:41 | 000,743,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2012-08-28 17:18:40 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll [2012-08-28 17:18:40 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-09-27 15:38:54 | 000,000,732 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2013.lnk [2012-09-27 15:14:36 | 1072,549,888 | -HS- | C] () -- C:\hiberfil.sys [2012-09-26 18:07:20 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe [2012-09-26 18:07:20 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2012-09-26 18:07:20 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2012-09-26 18:07:20 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2012-09-26 18:07:20 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2012-09-26 17:43:34 | 000,000,045 | ---- | C] () -- C:\Documents and Settings\Kamil\Dane aplikacji\msconfig.ini [2012-09-25 15:54:53 | 000,004,676 | ---- | C] () -- C:\Documents and Settings\Kamil\.recently-used.xbel [2012-09-25 15:53:56 | 000,001,588 | ---- | C] () -- C:\Documents and Settings\Kamil\Pulpit\Free Pascal IDE.lnk [2012-09-19 16:31:13 | 000,000,554 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\iMetin.lnk [2012-09-15 18:05:56 | 000,000,849 | ---- | C] () -- C:\Documents and Settings\Kamil\Pulpit\Testy na Prawo Jazdy B.lnk [2012-09-15 15:17:57 | 000,448,020 | ---- | C] () -- C:\Documents and Settings\Kamil\Pulpit\7.jpg [2012-09-15 09:42:50 | 000,000,554 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Metin2.lnk [2012-09-14 21:33:46 | 000,137,984 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2012-09-14 19:31:17 | 000,000,766 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Duel of Champions Launcher.lnk [2012-09-10 17:56:36 | 000,008,464 | ---- | C] () -- C:\Documents and Settings\Kamil\Pulpit\ROW51.EXE [2012-09-10 17:56:02 | 000,000,918 | ---- | C] () -- C:\Documents and Settings\Kamil\Pulpit\row51.pas [2012-09-06 18:47:40 | 000,006,480 | ---- | C] () -- C:\Documents and Settings\Kamil\Pulpit\ROW4.EXE [2012-09-06 18:47:25 | 000,000,490 | ---- | C] () -- C:\Documents and Settings\Kamil\Pulpit\row4.pas [2012-09-04 20:08:33 | 000,351,386 | ---- | C] () -- C:\Documents and Settings\Kamil\Pulpit\wetwetwet.JPG [2012-09-04 18:53:13 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2012-02-17 15:11:43 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012-01-02 20:49:02 | 000,000,856 | ---- | C] () -- C:\WINDOWS\client.config.ini [2011-10-15 12:49:06 | 000,023,348 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat [2011-10-06 19:10:09 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-05-23 15:37:16 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll [2011-04-14 12:29:09 | 000,066,872 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe [2011-04-14 12:29:07 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2011-04-14 12:28:40 | 000,103,736 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe [2011-02-11 12:39:36 | 000,000,048 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2011-02-06 15:23:34 | 000,056,429 | ---- | C] () -- C:\WINDOWS\System32\K08425JN.DLL [2011-02-06 15:23:34 | 000,056,429 | ---- | C] () -- C:\WINDOWS\System32\K08425AC.DLL [2011-02-05 11:14:08 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll [2011-02-05 11:14:08 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys [2011-02-05 11:13:55 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Kamil\Dane aplikacji\$_hpcst$.hpc [2011-01-22 18:14:34 | 000,017,408 | ---- | C] () -- C:\Documents and Settings\Kamil\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-01-12 20:33:01 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2011-01-11 16:09:13 | 000,013,931 | ---- | C] () -- C:\WINDOWS\System32\RaCoInst.dat [2011-01-11 15:57:19 | 000,080,896 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-01-11 15:06:42 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2011-01-11 15:05:18 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe [2011-01-11 14:07:42 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\Kamil\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2011-01-11 13:52:49 | 000,000,288 | ---- | C] () -- C:\WINDOWS\System32\DVCStateBkp-{00000002-00000000-00000001-00001102-00000002-100A1102}.dat [2011-01-11 13:52:49 | 000,000,288 | ---- | C] () -- C:\WINDOWS\System32\DVCState-{00000002-00000000-00000001-00001102-00000002-100A1102}.dat [2011-01-11 13:06:06 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2011-01-11 13:04:59 | 000,168,304 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-01-11 12:30:28 | 000,000,000 | ---- | C] () -- C:\WINDOWS\SBWIN.INI [2011-01-11 12:30:26 | 000,000,231 | ---- | C] () -- C:\WINDOWS\AC3API.INI [2011-01-11 12:30:25 | 001,048,576 | ---- | C] () -- C:\WINDOWS\System32\SFMAN.DAT [2011-01-11 12:29:47 | 000,039,299 | ---- | C] () -- C:\WINDOWS\System32\Emu10kx.ini [2011-01-11 12:29:47 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini [2011-01-11 12:29:42 | 000,251,970 | ---- | C] () -- C:\WINDOWS\System32\ctstatic.dat [2011-01-11 12:29:42 | 000,189,704 | ---- | C] () -- C:\WINDOWS\System32\ctdlang.dat [2011-01-11 12:29:42 | 000,053,674 | ---- | C] () -- C:\WINDOWS\System32\ctdaught.dat [2011-01-11 12:29:41 | 000,142,968 | ---- | C] () -- C:\WINDOWS\System32\CTBAS2W.DAT [2011-01-11 12:29:41 | 000,115,322 | ---- | C] () -- C:\WINDOWS\System32\ctbasicw.dat [2011-01-11 12:29:40 | 000,184,320 | ---- | C] () -- C:\WINDOWS\PSCONV.EXE [2011-01-11 12:29:40 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\KILLAPPS.EXE [2011-01-11 12:29:40 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\REGPLIB.EXE [2011-01-11 12:29:40 | 000,005,515 | ---- | C] () -- C:\WINDOWS\System32\ENSDEF.INI [2011-01-11 12:29:40 | 000,000,192 | ---- | C] () -- C:\WINDOWS\System32\KILL.INI [2011-01-11 12:29:34 | 000,065,536 | ---- | C] ( ) -- C:\WINDOWS\System32\a3d.dll [2011-01-11 12:22:30 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2011-01-11 12:17:57 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2011-01-11 12:58:22 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2010-11-05 07:02:47 | 001,510,400 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2008-04-15 14:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both < End of report >