OTL logfile created on: 2013-01-23 12:12:53 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\DS\Paweł\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,48 Gb Total Physical Memory | 0,34 Gb Available Physical Memory | 22,85% Memory free 3,34 Gb Paging File | 2,33 Gb Available in Paging File | 69,67% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 52,24 Gb Total Space | 17,63 Gb Free Space | 33,74% Space Free | Partition Type: NTFS Drive F: | 465,76 Gb Total Space | 255,81 Gb Free Space | 54,92% Space Free | Partition Type: NTFS Drive G: | 7,53 Gb Total Space | 6,27 Gb Free Space | 83,25% Space Free | Partition Type: FAT32 Computer Name: MALUCH | User Name: Paweł | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-01-23 12:07:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\DS\Paweł\Pulpit\OTL.exe PRC - [2013-01-23 10:28:55 | 003,021,720 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe PRC - [2013-01-19 00:24:18 | 000,917,400 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2012-12-29 00:02:24 | 028,539,392 | ---- | M] (Dropbox, Inc.) -- C:\DS\Paweł\Dane aplikacji\Dropbox\bin\Dropbox.exe PRC - [2012-12-14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2012-12-14 16:49:28 | 000,512,360 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2012-12-14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe PRC - [2012-11-25 17:00:56 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe PRC - [2011-12-02 14:39:56 | 022,795,880 | ---- | M] () -- C:\Program Files\Foxit Software\Foxit Reader\Foxit Reader.exe PRC - [2008-08-25 11:39:38 | 000,765,952 | ---- | M] (Zhorn Software) -- C:\Program Files\Stickies\stickies.exe PRC - [2008-04-17 14:14:48 | 000,102,712 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe PRC - [2008-04-17 14:14:00 | 000,098,616 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe PRC - [2007-02-21 11:19:40 | 000,294,912 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe PRC - [2007-02-21 11:17:42 | 000,970,752 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe PRC - [2007-02-21 11:13:26 | 000,487,424 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe PRC - [2004-08-04 02:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2013-01-19 00:24:16 | 003,022,232 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2011-12-25 06:12:35 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll MOD - [2011-12-02 14:39:56 | 022,795,880 | ---- | M] () -- C:\Program Files\Foxit Software\Foxit Reader\Foxit Reader.exe MOD - [2011-11-24 10:26:24 | 000,233,472 | ---- | M] () -- C:\Program Files\Foxit Software\Foxit Reader\plugins\Speech.fpi MOD - [2010-05-18 16:54:44 | 000,395,776 | ---- | M] () -- C:\Program Files\Enigma Software Group\SpyHunter\ExecutionGuard.dll MOD - [2007-03-16 18:10:48 | 000,757,760 | ---- | M] () -- C:\WINDOWS\system32\bcm1xsup.dll MOD - [2007-02-21 11:13:02 | 000,118,784 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll MOD - [2006-10-17 16:13:20 | 001,167,360 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\acAuth.dll MOD - [2004-08-04 02:44:04 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll MOD - [2003-04-08 22:57:09 | 000,032,768 | ---- | M] () -- C:\Program Files\Stickies\shook45.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - [2013-01-19 00:24:16 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-12-14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2012-12-14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2012-11-25 17:00:56 | 000,161,768 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2009-10-27 08:26:36 | 000,657,408 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2008-04-17 14:14:48 | 000,102,712 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon) SRV - [2007-02-21 11:19:40 | 000,294,912 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe -- (WLANKEEPER) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\usbaapl.sys -- (USBAAPL) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\UIUSys.sys -- (UIUSys) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2012-12-22 18:42:39 | 000,048,928 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Tetris.sys -- (Tetris) DRV - [2012-12-19 08:31:47 | 000,162,432 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ithsgt.sys -- (ithsgt) DRV - [2012-12-19 08:31:44 | 000,012,032 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lilsgt.sys -- (lilsgt) DRV - [2012-12-14 16:49:28 | 000,021,104 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector) DRV - [2012-07-12 07:29:47 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV - [2010-06-14 08:32:54 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2010-01-27 18:10:44 | 000,005,248 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard) DRV - [2009-10-06 10:52:50 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2009-10-06 10:52:34 | 000,022,016 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2009-10-06 10:52:34 | 000,017,664 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2009-10-06 10:52:34 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2009-03-18 15:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2008-08-26 08:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2007-12-25 17:08:36 | 000,014,336 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Amusbprt.sys -- (Amusbprt) DRV - [2007-05-30 19:15:08 | 000,013,184 | ---- | M] (ArcSoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ArcSoftKsUFilter.sys -- (ArcSoftKsUFilter) DRV - [2007-05-07 17:58:44 | 010,343,168 | ---- | M] (Sonix Co. Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\snp325.sys -- (SNP325) DRV - [2007-02-21 11:16:12 | 000,012,416 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans) DRV - [2007-02-08 13:51:16 | 002,209,408 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w29n51.sys -- (w29n51) DRV - [2007-01-24 17:46:48 | 000,008,704 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Amfilter.sys -- (Amfilter) DRV - [2006-11-10 15:05:00 | 000,018,688 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afc.sys -- (Afc) DRV - [2006-07-21 12:42:08 | 000,055,808 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm.sys -- (tifm) DRV - [2005-05-03 15:09:28 | 001,033,728 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.SYS -- (HSF_DPV) DRV - [2005-05-03 15:08:50 | 000,208,384 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWICH.sys -- (HSFHWICH) DRV - [2005-05-03 15:08:44 | 000,705,408 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf) DRV - [2004-11-15 15:37:52 | 000,264,440 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\stac97.sys -- (STAC97) DRV - [2004-05-26 15:18:18 | 000,044,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp) DRV - [2004-02-04 08:19:32 | 000,024,177 | R--- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftdibus.sys -- (FTDIBUS) DRV - [2004-02-04 08:19:16 | 000,057,372 | R--- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftser2k.sys -- (FTSER2K) DRV - [2003-01-23 16:37:50 | 000,017,217 | ---- | M] (Dell Computer Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\omci.sys -- (omci) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledAddons: %7B249b4e45-4fb9-4f6b-9754-7c0c1e605d44%7D:1.2 FF - prefs.js..extensions.enabledAddons: ich%40maltegoetz.de:1.4.3 FF - prefs.js..extensions.enabledAddons: %7BD4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389%7D:0.9.10 FF - prefs.js..extensions.enabledAddons: %7Ba0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7%7D:20130116 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1 FF - prefs.js..network.proxy.type: 0 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.) FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\DS\Paweł\Dane aplikacji\Mozilla\plugins\npgoogletalk.dll (Google) FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\DS\Paweł\Dane aplikacji\Mozilla\plugins\npgtpo3dautoplugin.dll () FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\DS\Paweł\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\DS\Paweł\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013-01-19 00:24:18 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013-01-19 00:24:00 | 000,000,000 | ---D | M] [2011-12-24 17:28:07 | 000,000,000 | ---D | M] (No name found) -- C:\DS\Paweł\Dane aplikacji\Mozilla\Extensions [2013-01-23 10:13:29 | 000,000,000 | ---D | M] (No name found) -- C:\DS\Paweł\Dane aplikacji\Mozilla\Firefox\Profiles\4gw932j7.default\extensions [2013-01-23 10:13:29 | 000,000,000 | ---D | M] (WOT) -- C:\DS\Paweł\Dane aplikacji\Mozilla\Firefox\Profiles\4gw932j7.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-01-11 21:45:12 | 000,000,000 | ---D | M] (ProxTube - Unblock YouTube) -- C:\DS\Paweł\Dane aplikacji\Mozilla\Firefox\Profiles\4gw932j7.default\extensions\ich@maltegoetz.de [2013-01-22 20:14:28 | 000,120,428 | ---- | M] () (No name found) -- C:\DS\Paweł\Dane aplikacji\Mozilla\Firefox\Profiles\4gw932j7.default\extensions\searchy@searchy.xpi [2013-01-11 21:45:12 | 000,009,485 | ---- | M] () (No name found) -- C:\DS\Paweł\Dane aplikacji\Mozilla\Firefox\Profiles\4gw932j7.default\extensions\{249b4e45-4fb9-4f6b-9754-7c0c1e605d44}.xpi [2012-11-24 09:02:51 | 000,804,627 | ---- | M] () (No name found) -- C:\DS\Paweł\Dane aplikacji\Mozilla\Firefox\Profiles\4gw932j7.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-01-13 20:16:17 | 000,434,392 | ---- | M] () (No name found) -- C:\DS\Paweł\Dane aplikacji\Mozilla\Firefox\Profiles\4gw932j7.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi [2013-01-19 00:23:56 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2013-01-19 00:23:56 | 000,000,000 | ---D | M] (ArcaBit Ext.) -- C:\Program Files\Mozilla Firefox\extensions\arcabit@www.arcabit.pl File not found (No name found) -- C:\DS\PAWEĹ‚\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\4GW932J7.DEFAULT\EXTENSIONS\{249B4E45-4FB9-4F6B-9754-7C0C1E605D44}.XPI File not found (No name found) -- C:\DS\PAWEĹ‚\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\4GW932J7.DEFAULT\EXTENSIONS\{A0D7CCB3-214D-498B-B4AA-0E8FDA9A7BF7} File not found (No name found) -- C:\DS\PAWEĹ‚\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\4GW932J7.DEFAULT\EXTENSIONS\{D4DD63FA-01E4-46A7-B6B1-EDAB7D6AD389}.XPI File not found (No name found) -- C:\DS\PAWEĹ‚\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\4GW932J7.DEFAULT\EXTENSIONS\ICH@MALTEGOETZ.DE [2013-01-19 00:24:18 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2011-11-03 07:59:20 | 000,917,816 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll [2012-10-16 08:33:14 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-10-16 08:33:14 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-10-16 08:33:14 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-10-16 08:33:14 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-10-16 08:33:14 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-10-16 08:33:14 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation) O4 - HKLM..\Run: [MSConfig] C:\WINDOWS\System32\msconfig.exe (Microsoft Corporation) O4 - HKCU..\Run: [Java Update] %TEMP%\javbin.exe File not found O4 - HKCU..\Run: [Konnekt] C:\Program Files\Konnekt\konnekt.exe (Stamina) O4 - HKLM..\RunOnce: [] File not found O4 - Startup: C:\DS\Paweł\Menu Start\Programy\Autostart\Dropbox.lnk = C:\DS\Paweł\Dane aplikacji\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) O4 - Startup: C:\DS\Paweł\Menu Start\Programy\Autostart\Stickies.lnk = C:\Program Files\Stickies\stickies.exe (Zhorn Software) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideRunAsVerb = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarCustomize = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoBandCustomize = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarCustomize = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoBandCustomize = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data] O9 - Extra Button: ArcaVir >> - {40525A66-DB98-480D-BCF9-7AF88C1AF438} - Reg Error: Key error. File not found O9 - Extra 'Tools' menuitem : ArcaVir >> - {40525A66-DB98-480D-BCF9-7AF88C1AF438} - Reg Error: Key error. File not found O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Reg Error: Value error.) O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.30.129.149 217.30.137.200 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9B92A544-6441-416B-8230-BA40839E922A}: DhcpNameServer = 217.30.129.149 217.30.137.200 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\DS\Paweł\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\DS\Paweł\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-12-24 17:05:01 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2012-12-03 21:05:03 | 000,164,785 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ] O32 - AutoRun File - [2013-01-16 19:09:57 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2012-09-23 07:24:20 | 000,000,000 | ---D | M] - F:\autorun.inf -- [ NTFS ] O33 - MountPoints2\{12170c71-79d4-11e1-b2ee-0012f0ac37ef}\Shell - "" = Autorun O33 - MountPoints2\{12170c71-79d4-11e1-b2ee-0012f0ac37ef}\Shell\verb\command - "" = C:\WINDOWS\explorer.exe -- [2004-08-04 02:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) O33 - MountPoints2\{4d454e51-3591-11e2-92a3-0012f0ac37ef}\Shell - "" = AutoRun O33 - MountPoints2\{4d454e51-3591-11e2-92a3-0012f0ac37ef}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL upgrade.htm O34 - HKLM BootExecute: (autocheck autochk /r \??\F:) O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013-01-23 12:07:35 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\DS\Paweł\Pulpit\OTL.exe [2013-01-23 12:04:52 | 000,000,000 | ---D | C] -- C:\UsbFix [2013-01-23 12:03:52 | 001,269,804 | ---- | C] (El Desaparecido) -- C:\DS\Paweł\Pulpit\UsbFix.exe [2013-01-23 10:26:11 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Menu Start\Programy\SpyHunter [2013-01-23 10:26:10 | 000,000,000 | ---D | C] -- C:\sh4ldr [2013-01-23 10:18:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood [2013-01-23 02:15:28 | 000,000,000 | RH-D | C] -- C:\DS\Paweł\Recent [2013-01-22 03:19:10 | 000,000,000 | ---D | C] -- C:\Program Files\PC Tools [2013-01-22 03:09:05 | 000,202,280 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTSD.sys [2013-01-22 03:09:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools [2013-01-22 03:07:40 | 000,000,000 | ---D | C] -- C:\DS\All Users\Dane aplikacji\PC Tools [2013-01-22 03:07:39 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Dane aplikacji\TestApp [2013-01-22 02:41:18 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group [2013-01-21 10:50:22 | 000,000,000 | --SD | C] -- C:\DS\Paweł\UserData [2013-01-19 00:23:55 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013-01-16 19:13:22 | 000,000,000 | ---D | C] -- C:\Program Files\RegCompact.NET [2013-01-16 19:13:22 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Menu Start\Programy\RegCompact.NET [2013-01-16 19:09:57 | 000,000,000 | RHSD | C] -- C:\autorun.inf [2013-01-15 08:55:06 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Dane aplikacji\SwvUpdater [2013-01-10 10:13:34 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Menu Start\Programy\Konnekt [2013-01-04 22:43:55 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Pulpit\zalaczniki [2013-01-03 21:59:49 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Dane aplikacji\Media Player Classic [2013-01-03 21:37:48 | 000,000,000 | ---D | C] -- C:\DS\All Users\Menu Start\Programy\K-Lite Codec Pack [2013-01-02 21:48:02 | 000,098,304 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll [2013-01-02 18:17:40 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Menu Start\Programy\Neverwinter Nights [2013-01-02 18:16:06 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Menu Start\Programy\GameSpy Arcade [2013-01-02 18:15:50 | 000,000,000 | ---D | C] -- C:\Program Files\GameSpy Arcade [2013-01-02 18:15:18 | 000,000,000 | ---D | C] -- C:\DS\All Users\Menu Start\Programy\Neverwinter Nights [2013-01-02 17:54:48 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Dane aplikacji\Leadertech [2013-01-02 15:43:29 | 000,000,000 | ---D | C] -- C:\DS\All Users\Dane aplikacji\ArcSoft [2013-01-02 15:01:54 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Dane aplikacji\ArcSoft [2013-01-02 15:01:47 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Moje dokumenty\WebCam Albums [2013-01-02 15:01:24 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Ustawienia lokalne\Dane aplikacji\ArcSoft [2013-01-02 14:59:59 | 000,000,000 | ---D | C] -- C:\DS\All Users\Menu Start\Programy\ArcSoft Connect [2013-01-02 14:57:06 | 000,018,688 | ---- | C] (Arcsoft, Inc.) -- C:\WINDOWS\System32\drivers\afc.sys [2013-01-02 14:53:43 | 000,013,184 | ---- | C] (ArcSoft, Inc.) -- C:\WINDOWS\System32\drivers\ArcSoftKsUFilter.sys [2013-01-02 14:53:42 | 000,056,064 | ---- | C] (ArcSoft, Inc.) -- C:\WINDOWS\System32\ArcSoftKsUFilter.dll [2013-01-02 14:53:28 | 000,000,000 | ---D | C] -- C:\DS\All Users\Menu Start\Programy\Hama Webcam Suite [2013-01-02 14:52:49 | 000,245,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\unicows.dll [2013-01-02 14:52:49 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\WINDOWS\System32\PCDLIB32.DLL [2013-01-02 14:52:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ArcSoft [2013-01-02 14:52:48 | 001,645,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gdiplus.dll [2013-01-02 14:52:47 | 000,000,000 | ---D | C] -- C:\Program Files\Hama [2013-01-02 14:31:47 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys [2013-01-02 14:31:32 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys [2013-01-02 14:31:26 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax [2013-01-02 14:31:26 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax [2013-01-02 14:31:26 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys [2013-01-02 14:31:14 | 000,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys [2013-01-02 14:31:04 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys [2013-01-02 14:30:58 | 000,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys [2013-01-02 14:30:53 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys [2013-01-02 14:30:16 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Ustawienia lokalne\Dane aplikacji\Google [2013-01-02 14:28:42 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2013-01-02 14:28:42 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vidcap.ax [2013-01-02 14:28:41 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll [2013-01-02 14:28:41 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll [2013-01-02 14:28:38 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax [2013-01-02 14:28:38 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax [2013-01-02 14:28:38 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax [2013-01-02 14:28:38 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax [2013-01-02 14:28:37 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax [2013-01-02 14:28:37 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax [2013-01-02 14:26:28 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\amcap.exe [2013-01-02 14:26:17 | 010,343,168 | ---- | C] (Sonix Co. Ltd.) -- C:\WINDOWS\System32\drivers\snp325.sys [2013-01-02 14:26:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\snp325 [2013-01-02 14:26:12 | 000,000,000 | ---D | C] -- C:\DS\All Users\Menu Start\Programy\hama PC-Webcam AC-140 [2013-01-02 14:25:54 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Dane aplikacji\InstallShield [2013-01-01 22:05:14 | 000,000,000 | R--D | C] -- C:\DS\Paweł\Menu Start\Programy\Narzędzia administracyjne [2013-01-01 15:18:19 | 000,017,280 | ---- | C] (Systweak Inc., (www.systweak.com)) -- C:\WINDOWS\System32\roboot.exe [2013-01-01 15:16:53 | 000,000,000 | ---D | C] -- C:\Program Files\pazera-software [2013-01-01 15:11:58 | 000,000,000 | ---D | C] -- C:\DS\All Users\Menu Start\Programy\Pegasus Imaging [2013-01-01 15:11:57 | 000,000,000 | ---D | C] -- C:\Program Files\Pegasus Imaging [2013-01-01 15:11:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Pegasus Imaging [2013-01-01 13:53:49 | 000,000,000 | ---D | C] -- C:\DS\All Users\Menu Start\Programy\QuickTime [2013-01-01 13:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime [2012-12-31 17:18:15 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Menu Start\Programy\MagicISO [2012-12-31 17:18:12 | 000,000,000 | ---D | C] -- C:\Program Files\MagicISO [2012-12-30 01:58:54 | 000,000,000 | ---D | C] -- C:\Program Files\Dropbox [2012-12-28 19:35:21 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar [2012-12-28 19:35:20 | 000,000,000 | ---D | C] -- C:\DS\All Users\Dane aplikacji\Norton [2012-12-28 19:35:14 | 000,000,000 | ---D | C] -- C:\DS\All Users\Dane aplikacji\NortonInstaller [2012-12-28 19:33:53 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Pulpit\Norton AntiVirus 2012 19.8.0.14 Final + Keys [2012-12-25 11:00:38 | 000,000,000 | --SD | C] -- C:\DS\Paweł\GG dysk [2012-12-25 10:59:46 | 000,000,000 | ---D | C] -- C:\DS\All Users\Dane aplikacji\GG [2012-12-25 10:59:40 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Dane aplikacji\GG [2012-12-25 10:59:29 | 000,000,000 | ---D | C] -- C:\DS\Paweł\Ustawienia lokalne\Dane aplikacji\GG [12 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013-01-23 12:07:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\DS\Paweł\Pulpit\OTL.exe [2013-01-23 12:04:06 | 001,269,804 | ---- | M] (El Desaparecido) -- C:\DS\Paweł\Pulpit\UsbFix.exe [2013-01-23 11:35:30 | 000,001,092 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-823518204-484763869-854245398-1001UA.job [2013-01-23 11:13:59 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2013-01-23 10:50:10 | 000,000,352 | ---- | M] () -- C:\WINDOWS\tasks\AmiUpdXp.job [2013-01-23 10:22:37 | 015,397,208 | ---- | M] () -- C:\DS\Paweł\Pulpit\SpyHunter 4.1.11.0 [ENG] [Crack].exe [2013-01-23 10:09:05 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013-01-22 17:48:51 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2013-01-22 14:35:00 | 000,001,040 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-823518204-484763869-854245398-1001Core.job [2013-01-22 03:09:49 | 000,514,208 | ---- | M] () -- C:\WINDOWS\System32\drivers\Cat.DB [2013-01-22 02:06:15 | 000,000,005 | ---- | M] () -- C:\DS\Paweł\Dane aplikacji\mbam.context.scan [2013-01-22 00:37:34 | 000,052,900 | ---- | M] () -- C:\DS\Paweł\Pulpit\8e1147d20a49248b88cb1fad78506487_original.jpg [2013-01-21 10:33:14 | 730,449,920 | ---- | M] () -- C:\DS\Paweł\Pulpit\Annie Hall (Woody Allen 1977) XviD DVDRip.avi [2013-01-20 15:21:57 | 000,682,218 | ---- | M] () -- C:\DS\Paweł\Pulpit\zdjecie.JPG [2013-01-20 13:59:23 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013-01-19 01:51:12 | 000,095,750 | ---- | M] () -- C:\DS\Paweł\Pulpit\1358555079394.jpg [2013-01-17 22:42:51 | 006,220,571 | ---- | M] () -- C:\DS\Paweł\Pulpit\Oneohtrix Point Never - Replica [OFFICIAL VIDEO] (YouTube.Moje.pl).mp3 [2013-01-17 22:30:06 | 015,419,654 | ---- | M] () -- C:\DS\Paweł\Pulpit\06-oneohtrix_point_never-where_does_time_go-def.mp3 [2013-01-17 22:28:17 | 018,279,540 | ---- | M] () -- C:\DS\Paweł\Pulpit\05-oneohtrix_point_never-pelham_island_road-def.mp3 [2013-01-17 22:28:16 | 013,720,650 | ---- | M] () -- C:\DS\Paweł\Pulpit\03-oneohtrix_point_never-stress_waves-def.mp3 [2013-01-17 22:28:01 | 011,366,495 | ---- | M] () -- C:\DS\Paweł\Pulpit\04-oneohtrix_point_never-returnal-def.mp3 [2013-01-17 22:27:42 | 014,880,487 | ---- | M] () -- C:\DS\Paweł\Pulpit\08-oneohtrix_point_never-preyouandi-def.mp3 [2013-01-17 22:27:35 | 010,353,989 | ---- | M] () -- C:\DS\Paweł\Pulpit\02-oneohtrix_point_never-describing_bodies-def.mp3 [2013-01-17 22:27:19 | 012,247,344 | ---- | M] () -- C:\DS\Paweł\Pulpit\01-oneohtrix_point_never-nil_admirari-def.mp3 [2013-01-17 22:26:22 | 004,980,079 | ---- | M] () -- C:\DS\Paweł\Pulpit\07-oneohtrix_point_never-ouroboros-def.mp3 [2013-01-16 19:34:19 | 001,123,875 | ---- | M] () -- C:\DS\Paweł\Dane aplikacji\Dane aplikacji.rar [2013-01-16 19:16:50 | 000,002,707 | ---- | M] () -- C:\WINDOWS\apps [2013-01-16 18:09:02 | 1766,350,157 | ---- | M] () -- C:\DS\Paweł\Pulpit\TEATR.wmv [2013-01-11 01:04:36 | 000,047,727 | ---- | M] () -- C:\DS\Paweł\Pulpit\bez tytułu.JPG [2013-01-04 20:59:22 | 023,058,642 | ---- | M] () -- C:\DS\Paweł\Pulpit\zalaczniki(2).zip [2013-01-04 20:59:15 | 023,058,642 | ---- | M] () -- C:\DS\Paweł\Pulpit\zalaczniki(1).zip [2013-01-04 20:59:06 | 022,337,706 | ---- | M] () -- C:\DS\Paweł\Pulpit\zalaczniki.zip [2013-01-04 17:02:12 | 000,488,150 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2013-01-04 17:02:12 | 000,430,180 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2013-01-04 17:02:12 | 000,082,484 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2013-01-04 17:02:11 | 000,066,376 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2013-01-03 22:46:35 | 000,000,001 | ---- | M] () -- C:\DS\Paweł\Ustawienia lokalne\Dane aplikacji\llftool.4.25.agreement [2013-01-02 21:48:02 | 000,098,304 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll [2013-01-02 18:15:27 | 000,001,476 | ---- | M] () -- C:\DS\All Users\Pulpit\Neverwinter Nights Diamond Edition.lnk [2013-01-02 15:43:37 | 000,000,026 | ---- | M] () -- C:\UpdaterforApp.ini [2012-12-30 01:59:34 | 000,000,950 | ---- | M] () -- C:\DS\Paweł\Menu Start\Programy\Autostart\Dropbox.lnk [2012-12-30 01:58:03 | 000,000,890 | ---- | M] () -- C:\DS\Paweł\Pulpit\Dropbox.lnk [2012-12-28 21:45:59 | 000,253,133 | ---- | M] () -- C:\DS\Paweł\Pulpit\;) 009.jpg [2012-12-28 18:48:58 | 000,000,784 | ---- | M] () -- C:\DS\All Users\Pulpit\Malwarebytes Anti-Malware.lnk [12 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-01-23 10:19:48 | 015,397,208 | ---- | C] () -- C:\DS\Paweł\Pulpit\SpyHunter 4.1.11.0 [ENG] [Crack].exe [2013-01-22 03:09:38 | 000,514,208 | ---- | C] () -- C:\WINDOWS\System32\drivers\Cat.DB [2013-01-22 02:05:24 | 000,000,005 | ---- | C] () -- C:\DS\Paweł\Dane aplikacji\mbam.context.scan [2013-01-22 00:37:30 | 000,052,900 | ---- | C] () -- C:\DS\Paweł\Pulpit\8e1147d20a49248b88cb1fad78506487_original.jpg [2013-01-20 15:21:53 | 000,682,218 | ---- | C] () -- C:\DS\Paweł\Pulpit\zdjecie.JPG [2013-01-19 01:51:12 | 000,095,750 | ---- | C] () -- C:\DS\Paweł\Pulpit\1358555079394.jpg [2013-01-17 22:42:10 | 006,220,571 | ---- | C] () -- C:\DS\Paweł\Pulpit\Oneohtrix Point Never - Replica [OFFICIAL VIDEO] (YouTube.Moje.pl).mp3 [2013-01-17 22:27:21 | 015,419,654 | ---- | C] () -- C:\DS\Paweł\Pulpit\06-oneohtrix_point_never-where_does_time_go-def.mp3 [2013-01-17 22:26:25 | 011,366,495 | ---- | C] () -- C:\DS\Paweł\Pulpit\04-oneohtrix_point_never-returnal-def.mp3 [2013-01-17 22:26:21 | 010,353,989 | ---- | C] () -- C:\DS\Paweł\Pulpit\02-oneohtrix_point_never-describing_bodies-def.mp3 [2013-01-17 22:26:17 | 013,720,650 | ---- | C] () -- C:\DS\Paweł\Pulpit\03-oneohtrix_point_never-stress_waves-def.mp3 [2013-01-17 22:25:43 | 014,880,487 | ---- | C] () -- C:\DS\Paweł\Pulpit\08-oneohtrix_point_never-preyouandi-def.mp3 [2013-01-17 22:25:42 | 012,247,344 | ---- | C] () -- C:\DS\Paweł\Pulpit\01-oneohtrix_point_never-nil_admirari-def.mp3 [2013-01-17 22:25:40 | 018,279,540 | ---- | C] () -- C:\DS\Paweł\Pulpit\05-oneohtrix_point_never-pelham_island_road-def.mp3 [2013-01-17 22:25:38 | 004,980,079 | ---- | C] () -- C:\DS\Paweł\Pulpit\07-oneohtrix_point_never-ouroboros-def.mp3 [2013-01-16 19:34:19 | 001,123,875 | ---- | C] () -- C:\DS\Paweł\Dane aplikacji\Dane aplikacji.rar [2013-01-16 19:16:50 | 000,002,707 | ---- | C] () -- C:\WINDOWS\apps [2013-01-16 16:06:11 | 1766,350,157 | ---- | C] () -- C:\DS\Paweł\Pulpit\TEATR.wmv [2013-01-15 08:55:06 | 000,000,352 | ---- | C] () -- C:\WINDOWS\tasks\AmiUpdXp.job [2013-01-14 20:40:03 | 730,449,920 | ---- | C] () -- C:\DS\Paweł\Pulpit\Annie Hall (Woody Allen 1977) XviD DVDRip.avi [2013-01-11 01:04:35 | 000,047,727 | ---- | C] () -- C:\DS\Paweł\Pulpit\bez tytułu.JPG [2013-01-04 20:57:55 | 023,058,642 | ---- | C] () -- C:\DS\Paweł\Pulpit\zalaczniki(2).zip [2013-01-04 20:57:46 | 023,058,642 | ---- | C] () -- C:\DS\Paweł\Pulpit\zalaczniki(1).zip [2013-01-04 20:57:39 | 022,337,706 | ---- | C] () -- C:\DS\Paweł\Pulpit\zalaczniki.zip [2013-01-03 22:46:35 | 000,000,001 | ---- | C] () -- C:\DS\Paweł\Ustawienia lokalne\Dane aplikacji\llftool.4.25.agreement [2013-01-02 18:15:27 | 000,001,476 | ---- | C] () -- C:\DS\All Users\Pulpit\Neverwinter Nights Diamond Edition.lnk [2013-01-02 15:43:37 | 000,000,026 | ---- | C] () -- C:\UpdaterforApp.ini [2013-01-02 14:30:21 | 000,001,092 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-823518204-484763869-854245398-1001UA.job [2013-01-02 14:30:18 | 000,001,040 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-823518204-484763869-854245398-1001Core.job [2013-01-02 14:26:21 | 000,835,584 | ---- | C] () -- C:\WINDOWS\vsnp325.exe [2013-01-02 14:26:21 | 000,270,336 | ---- | C] () -- C:\WINDOWS\tsnp325.exe [2013-01-02 14:26:21 | 000,013,023 | ---- | C] () -- C:\WINDOWS\snp325.src [2013-01-02 14:26:20 | 000,015,498 | ---- | C] () -- C:\WINDOWS\snp325.ini [2013-01-02 14:26:16 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp325.dll [2013-01-02 14:26:15 | 000,147,456 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp325.dll [2013-01-02 14:26:15 | 000,057,344 | ---- | C] ( ) -- C:\WINDOWS\System32\vsnp325.dll [2012-12-30 01:59:34 | 000,000,950 | ---- | C] () -- C:\DS\Paweł\Menu Start\Programy\Autostart\Dropbox.lnk [2012-12-28 21:45:59 | 000,253,133 | ---- | C] () -- C:\DS\Paweł\Pulpit\;) 009.jpg [2012-12-22 18:42:39 | 000,048,928 | ---- | C] () -- C:\WINDOWS\System32\drivers\Tetris.sys [2012-12-19 08:31:46 | 000,162,432 | ---- | C] () -- C:\WINDOWS\System32\drivers\ithsgt.sys [2012-12-19 08:31:44 | 000,012,032 | ---- | C] () -- C:\WINDOWS\System32\drivers\lilsgt.sys [2012-12-14 13:44:46 | 000,122,884 | ---- | C] () -- C:\WINDOWS\UnGins.exe [2012-10-21 23:33:23 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll [2012-10-21 23:33:23 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys [2012-10-21 23:33:14 | 000,002,528 | ---- | C] () -- C:\DS\Paweł\Dane aplikacji\$_hpcst$.hpc [2012-09-05 20:43:39 | 000,185,616 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar39.dll [2012-09-05 20:43:39 | 000,169,744 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll [2012-09-05 20:43:39 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll [2012-09-05 20:43:39 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll [2012-09-05 20:43:39 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll [2012-07-08 09:27:50 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\msds.dat [2012-07-08 09:26:49 | 000,000,196 | R--- | C] () -- C:\WINDOWS\System32\ftdiun2k.ini [2012-05-15 21:44:52 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2012-04-26 11:18:51 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2012-02-22 23:18:42 | 000,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2012-02-20 10:04:25 | 000,434,176 | ---- | C] () -- C:\WINDOWS\System32\ZSHP1020.EXE [2012-02-16 13:53:46 | 000,000,122 | ---- | C] () -- C:\WINDOWS\wa.INI [2012-02-15 01:31:38 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll [2011-12-26 18:26:09 | 000,017,408 | ---- | C] () -- C:\DS\Paweł\Ustawienia lokalne\Dane aplikacji\WebpageIcons.db [2011-12-24 17:53:24 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2011-12-24 17:52:10 | 000,146,016 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-12-24 17:28:13 | 000,002,608 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-12-24 17:16:30 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll [2011-12-24 17:16:29 | 000,757,760 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll [2011-12-24 17:16:29 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\WLTRYSVC.EXE [2011-12-24 17:16:10 | 000,225,280 | ---- | C] () -- C:\WINDOWS\System32\tifmicon.dll [2011-12-24 17:15:00 | 000,397,312 | ---- | C] () -- C:\WINDOWS\System32\drivers\ETNADiag.exe [2011-12-24 17:05:44 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2011-12-24 17:02:35 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2012-11-23 19:14:13 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2006-06-23 12:27:02 | 001,497,088 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2004-08-04 02:43:58 | 000,472,064 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2004-08-04 02:44:14 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 140 bytes -> C:\DS\All Users\Dane aplikacji\TEMP:CB0AACC9 @Alternate Data Stream - 127 bytes -> C:\DS\All Users\Dane aplikacji\TEMP:430C6D84 @Alternate Data Stream - 105 bytes -> C:\DS\All Users\Dane aplikacji\TEMP:DFC5A2B2 @Alternate Data Stream - 104 bytes -> C:\DS\All Users\Dane aplikacji\TEMP:FC1216D7 < End of report >