OTL logfile created on: 2013-12-20 13:21:38 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = D:\download Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 2,10 Gb Available Physical Memory | 70,18% Memory free 4,84 Gb Paging File | 3,88 Gb Available in Paging File | 80,22% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 58,59 Gb Total Space | 12,08 Gb Free Space | 20,62% Space Free | Partition Type: NTFS Drive D: | 407,16 Gb Total Space | 219,37 Gb Free Space | 53,88% Space Free | Partition Type: NTFS Drive E: | 977,97 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: JACEK | User Name: ppp | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-12-20 13:13:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\download\bestnet\OTL.exe PRC - [2013-12-20 13:05:58 | 001,592,632 | ---- | M] () -- C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Mikogo4\Viewer\Service\M4-Capture.exe PRC - [2013-12-12 12:20:56 | 011,671,024 | ---- | M] () -- C:\Program Files\fst_pl_19\fst_pl_19.exe PRC - [2013-12-04 03:48:06 | 000,863,184 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe PRC - [2013-11-22 15:01:36 | 001,008,968 | ---- | M] () -- C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Mikogo4\Viewer\Service\M4-Service.exe PRC - [2013-11-15 10:03:13 | 000,066,336 | ---- | M] () -- C:\Program Files\LinkSwift\updateLinkSwift.exe PRC - [2013-11-15 09:30:08 | 000,066,336 | ---- | M] () -- C:\Program Files\LinkSwift\bin\utilLinkSwift.exe PRC - [2013-11-12 18:31:40 | 000,182,696 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe PRC - [2013-11-12 15:15:46 | 003,154,416 | ---- | M] () -- C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\fst_pl_6\upfst_pl_6.exe PRC - [2013-10-23 15:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe PRC - [2013-10-23 14:55:28 | 000,948,440 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe PRC - [2013-10-18 09:40:43 | 000,738,496 | ---- | M] () -- C:\Program Files\Mobogenie\DaemonProcess.exe PRC - [2013-09-06 18:30:16 | 000,273,296 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe PRC - [2013-08-30 11:55:28 | 000,086,016 | ---- | M] (Dassault Systèmes) -- C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe PRC - [2013-06-19 08:48:18 | 001,042,808 | R--- | M] (Western Digital Technologies, Inc.) -- C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe PRC - [2013-06-19 08:20:48 | 000,270,192 | R--- | M] (Western Digital Technologies, Inc.) -- C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe PRC - [2012-08-30 20:10:00 | 001,258,856 | R--- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2012-06-13 15:53:50 | 001,688,008 | R--- | M] (Western Digital) -- C:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exe PRC - [2012-05-29 14:50:04 | 000,115,032 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files\SweetIM\Messenger\SweetIM.exe PRC - [2012-05-15 11:54:32 | 000,276,872 | ---- | M] (http://tortoisesvn.net) -- C:\Program Files\TortoiseSVN\bin\TSVNCache.exe PRC - [2011-12-30 06:39:10 | 004,889,032 | ---- | M] (SafeNet Inc.) -- C:\WINDOWS\system32\hasplms.exe PRC - [2010-03-04 21:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe PRC - [2008-04-14 18:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2013-12-20 13:05:58 | 001,592,632 | ---- | M] () -- C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Mikogo4\Viewer\Service\M4-Capture.exe MOD - [2013-12-12 12:20:56 | 011,671,024 | ---- | M] () -- C:\Program Files\fst_pl_19\fst_pl_19.exe MOD - [2013-12-04 03:48:04 | 000,399,312 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppgooglenaclpluginchrome.dll MOD - [2013-12-04 03:48:02 | 004,055,504 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll MOD - [2013-12-04 03:47:11 | 000,702,416 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\31.0.1650.63\libglesv2.dll MOD - [2013-12-04 03:47:11 | 000,099,792 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\31.0.1650.63\libegl.dll MOD - [2013-12-04 03:47:08 | 001,619,408 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll MOD - [2013-11-22 15:01:36 | 001,008,968 | ---- | M] () -- C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Mikogo4\Viewer\Service\M4-Service.exe MOD - [2013-11-15 10:03:13 | 000,066,336 | ---- | M] () -- C:\Program Files\LinkSwift\updateLinkSwift.exe MOD - [2013-11-15 10:00:21 | 000,337,920 | ---- | M] () -- C:\Program Files\LinkSwift\bin\sqlite3.dll MOD - [2013-11-15 09:30:08 | 000,066,336 | ---- | M] () -- C:\Program Files\LinkSwift\bin\utilLinkSwift.exe MOD - [2013-11-12 15:15:46 | 003,154,416 | ---- | M] () -- C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\fst_pl_6\upfst_pl_6.exe MOD - [2013-10-18 09:40:43 | 000,738,496 | ---- | M] () -- C:\Program Files\Mobogenie\DaemonProcess.exe MOD - [2013-10-11 08:32:30 | 000,978,944 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\1b7600e7fe5e152f21ba6d79f3c0c3b6\System.Configuration.ni.dll MOD - [2013-10-11 03:06:03 | 012,434,432 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\02257c6b67db33c194fa3beccf977afb\System.Windows.Forms.ni.dll MOD - [2013-10-10 16:59:46 | 000,114,688 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll MOD - [2013-10-10 16:59:44 | 000,425,984 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll MOD - [2013-10-10 16:59:43 | 002,933,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll MOD - [2013-10-10 16:59:38 | 002,052,096 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll MOD - [2013-10-10 16:59:36 | 003,194,880 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll MOD - [2013-10-10 16:40:55 | 002,658,304 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\b5faab90a38802d89ccf6f9ac4bff440\System.Runtime.Serialization.ni.dll MOD - [2013-10-10 16:30:25 | 018,003,456 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\1934369c96e549961e8b10309e4d7123\PresentationFramework.ni.dll MOD - [2013-10-10 16:29:17 | 011,451,904 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\c82e4e18d91c1cbf11342da73c7845a6\PresentationCore.ni.dll MOD - [2013-10-10 16:28:56 | 001,616,384 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.CSharp\2845b9ec917ee7343744243c95d91df5\Microsoft.CSharp.ni.dll MOD - [2013-10-10 16:28:49 | 000,690,176 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ComponentMod#\a1746293cb1f84357fb17ccfb8487fea\System.ComponentModel.Composition.ni.dll MOD - [2013-10-10 16:28:46 | 006,813,184 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Data\7294cfff4c5922b56ee89a6879ae8eef\System.Data.ni.dll MOD - [2013-10-10 16:28:41 | 003,858,944 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\e85c48d2567765f4153ee2af6c50dba3\WindowsBase.ni.dll MOD - [2013-10-10 16:28:28 | 001,014,272 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\71d887ce964fb69b7f03c4fe7a3f28ff\System.Configuration.ni.dll MOD - [2013-10-10 16:28:26 | 000,377,344 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Dynamic\d02ba18ebc90c5d396f91cf636379e10\System.Dynamic.ni.dll MOD - [2013-10-10 16:28:17 | 007,053,824 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\75d88257b5bc5a5d15dd4c37d8bb18bd\System.Core.ni.dll MOD - [2013-08-23 17:13:58 | 000,943,616 | ---- | M] () -- C:\Program Files\Dassault Systemes\DraftSight\bin\QtNetwork4.dll MOD - [2013-08-23 17:13:58 | 000,382,976 | ---- | M] () -- C:\Program Files\Dassault Systemes\DraftSight\bin\QtXml4.dll MOD - [2013-08-23 17:13:56 | 002,618,880 | ---- | M] () -- C:\Program Files\Dassault Systemes\DraftSight\bin\QtCore4.dll MOD - [2013-08-14 11:01:23 | 001,218,560 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Management\6c422db78c17838c3eb9f9fcc01ca63f\System.Management.ni.dll MOD - [2013-08-14 10:57:06 | 000,787,456 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\bfa9e814cb8b662508aa93ae387b434f\System.EnterpriseServices.ni.dll MOD - [2013-08-14 10:57:06 | 000,236,032 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\bfa9e814cb8b662508aa93ae387b434f\System.EnterpriseServices.Wrapper.dll MOD - [2013-08-14 10:57:05 | 000,649,728 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Transactions\102014a4f570b1dc944ff7eb8e1c6e2b\System.Transactions.ni.dll MOD - [2013-08-14 10:50:39 | 001,801,728 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\4d277a8481c203a35c58bd277a2e71df\System.Xaml.ni.dll MOD - [2013-08-14 10:39:26 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\15fd2d2f4e709154b44187a6915db244\System.ServiceProcess.ni.dll MOD - [2013-08-14 10:39:15 | 000,998,400 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\cf3c9d1496acdcb836853e59fe20223b\System.Management.ni.dll MOD - [2013-08-14 10:25:23 | 005,462,016 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\f93600ac836b9140e1df13bb0f6bfccf\System.Xml.ni.dll MOD - [2013-08-14 10:25:11 | 001,593,344 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\3b34cb206ab0cec687c3730b14cdff57\System.Drawing.ni.dll MOD - [2013-08-14 10:22:15 | 005,628,928 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\884bcbd22130ebeb1211bc7bcc3910c9\System.Xml.ni.dll MOD - [2013-08-14 10:22:06 | 009,099,776 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\de853615c8224ba5d9aa9b76276c6d98\System.ni.dll MOD - [2013-08-14 10:18:07 | 007,977,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\10df39542df7d48462451fc39bce8418\System.ni.dll MOD - [2013-07-13 10:01:26 | 000,011,776 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualC\b1560845b641faac0ca607b2dce8389a\Microsoft.VisualC.ni.dll MOD - [2013-07-13 10:01:15 | 000,194,048 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CustomMarshalers\c9786062fbb311c543497e28c1e1a0c5\CustomMarshalers.ni.dll MOD - [2013-07-12 11:25:25 | 014,416,896 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\cf58670896c5313b9b52f026f4455a5d\mscorlib.ni.dll MOD - [2013-07-12 11:16:38 | 011,497,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\b14359470744c840c59fbe4e58034fd6\mscorlib.ni.dll MOD - [2012-10-02 15:17:10 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_pl_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll MOD - [2012-10-02 15:17:08 | 000,311,296 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll MOD - [2012-05-15 11:54:16 | 000,070,536 | ---- | M] () -- C:\Program Files\TortoiseSVN\bin\libsasl32.dll MOD - [2010-03-04 21:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe MOD - [2008-06-16 12:11:34 | 000,081,920 | ---- | M] () -- C:\WINDOWS\system32\emfxp.dll MOD - [2008-06-15 22:13:12 | 000,081,920 | ---- | M] () -- C:\WINDOWS\system32\_pdfxp.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) SRV - [2013-12-11 12:36:28 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013-12-05 20:36:33 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2013-11-22 15:01:36 | 001,008,968 | ---- | M] () [Auto | Running] -- C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Mikogo4\Viewer\Service\M4-Service.exe -- (M4-Service) SRV - [2013-11-15 10:03:13 | 000,066,336 | ---- | M] () [Auto | Running] -- C:\Program Files\LinkSwift\updateLinkSwift.exe -- (Update LinkSwift) SRV - [2013-11-15 09:30:08 | 000,066,336 | ---- | M] () [Auto | Running] -- C:\Program Files\LinkSwift\bin\utilLinkSwift.exe -- (Util LinkSwift) SRV - [2013-11-12 18:31:40 | 000,182,696 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2013-10-23 15:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc) SRV - [2013-09-06 18:29:38 | 000,235,216 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe -- (McComponentHostService) SRV - [2013-08-30 11:55:28 | 000,086,016 | ---- | M] (Dassault Systèmes) [Auto | Running] -- C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe -- (DraftSight API Service) SRV - [2013-06-19 08:48:18 | 001,042,808 | R--- | M] (Western Digital Technologies, Inc.) [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe -- (WDBackup) SRV - [2013-06-19 08:20:48 | 000,270,192 | R--- | M] (Western Digital Technologies, Inc.) [Auto | Running] -- C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe -- (WDDriveService) SRV - [2012-08-30 20:10:00 | 001,258,856 | R--- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2012-02-02 14:47:48 | 001,045,328 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2011-12-30 06:39:10 | 004,889,032 | ---- | M] (SafeNet Inc.) [Auto | Running] -- C:\WINDOWS\system32\hasplms.exe -- (hasplms) SRV - [2010-03-04 21:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccess) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- C:\Program Files\iSafe\iSafeNetFilter.sys -- (iSafeNetFilter) DRV - File not found [Kernel | Disabled | Running] -- C:\WINDOWS\system32\drivers\IOMap.sys -- (IOMap) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2013-12-20 13:06:35 | 000,040,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft\Microsoft Antimalware\Definition Updates\{7700F057-4AFE-4933-AF7D-75341F0F4877}\MpKsl598ed1ee.sys -- (MpKsl598ed1ee) DRV - [2013-07-04 12:09:48 | 000,022,016 | ---- | M] (Feitian Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rockey4.sys -- (ROCKEYNT) DRV - [2012-08-14 07:33:22 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wdcsam.sys -- (WDC_SAM) DRV - [2012-07-03 16:25:19 | 000,124,264 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvhda32.sys -- (NVHDA) DRV - [2011-10-04 12:03:48 | 000,367,560 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aksfridge.sys -- (aksfridge) DRV - [2011-08-25 12:58:48 | 000,046,720 | ---- | M] (SafeNet Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\akshhl.sys -- (akshhl) DRV - [2011-08-10 13:05:24 | 000,596,424 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (hardlock) DRV - [2011-08-03 09:15:16 | 000,016,512 | ---- | M] (SafeNet Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\aksusb.sys -- (aksusb) DRV - [2009-11-12 12:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen) DRV - [2009-03-13 10:55:26 | 000,238,208 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\akshasp.sys -- (akshasp) DRV - [2007-10-02 15:32:00 | 004,613,120 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) DRV - [2007-05-21 09:43:00 | 000,046,080 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2007-05-21 09:43:00 | 000,019,968 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2006-10-18 15:31:00 | 000,105,472 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvata.sys -- (nvata) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?st=1&crg=3.1010000&barid={1A097364-3C13-447A-BA21-B097A8DED333} IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847} IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&crg=3.1010000&st=1&barid={1A097364-3C13-447A-BA21-B097A8DED333}&q={searchTerms}&barid={1A097364-3C13-447A-BA21-B097A8DED333} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1547161642-789336058-682003330-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?st=1&crg=3.1010000&barid={1A097364-3C13-447A-BA21-B097A8DED333} IE - HKU\S-1-5-21-1547161642-789336058-682003330-1005\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\Program Files\Final Video Downloader FileBulldog Toolbar\tbhelper.dll () IE - HKU\S-1-5-21-1547161642-789336058-682003330-1005\..\SearchScopes,DefaultScope = {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} IE - HKU\S-1-5-21-1547161642-789336058-682003330-1005\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www.delta-search.com/?q={searchTerms}&affID=119535&tt=060612_6_&babsrc=SP_ss&mntrId=9c243608000000000000001e8c8fdc73 IE - HKU\S-1-5-21-1547161642-789336058-682003330-1005\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^PL&apn_uid=6A9B81D9-098F-4B5D-AFE9-697B9D91794C&apn_sauid=2FAE2531-4596-4D3A-9FBF-FB1A69A34403 IE - HKU\S-1-5-21-1547161642-789336058-682003330-1005\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://www.bigseekpro.com/search/browser/finalvdfilebulldog/{5A4096C4-C4CF-45CF-BB64-24404FAD890E}?q={searchTerms} IE - HKU\S-1-5-21-1547161642-789336058-682003330-1005\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&crg=3.1010000&st=1&barid={1A097364-3C13-447A-BA21-B097A8DED333}&q={searchTerms}&barid={1A097364-3C13-447A-BA21-B097A8DED333} IE - HKU\S-1-5-21-1547161642-789336058-682003330-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Search" FF - prefs.js..browser.search.selectedEngine: "Search" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.bigseekpro.com/finalvdfilebulldog/{5A4096C4-C4CF-45CF-BB64-24404FAD890E}" FF - prefs.js..extensions.enabledAddons: %7B75656794-AB59-4712-BFBC-5D816D56F3BC%7D:1.1.7 FF - prefs.js..extensions.enabledAddons: %7BDDC359D1-844A-42a7-9AA1-88A850A938A8%7D:2.0.16 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:26.0 FF - prefs.js..keyword.URL: "http://www.bigseekpro.com/search/toolbar/finalvdfilebulldog/{5A4096C4-C4CF-45CF-BB64-24404FAD890E}?q=" FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\downloader@finalvideotools.com: C:\Program Files\FinalVideoDownloader\Firefox [2011-05-12 08:35:28 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013-11-27 12:35:49 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.2.0\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.2.0\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2010-07-13 08:48:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Extensions [2010-07-13 08:48:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} [2013-12-19 14:05:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Firefox\Profiles\xqypo90j.default\extensions [2010-08-17 10:11:15 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Firefox\Profiles\xqypo90j.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011-05-12 08:36:41 | 000,000,000 | ---D | M] (Final Video Downloader FileBulldog Toolbar) -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Firefox\Profiles\xqypo90j.default\extensions\{75656794-AB59-4712-BFBC-5D816D56F3BC} [2013-02-11 09:41:27 | 000,000,000 | ---D | M] (Delta Toolbar) -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Firefox\Profiles\xqypo90j.default\extensions\ffxtlbr@delta.com [2010-07-02 12:09:57 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Sunbird\Profiles\bvx51ehj.default\extensions [2013-04-04 08:51:14 | 000,714,654 | ---- | M] () (No name found) -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Firefox\Profiles\xqypo90j.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2013-01-25 16:15:44 | 000,190,000 | ---- | M] () (No name found) -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Firefox\Profiles\xqypo90j.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi [2012-10-17 00:44:04 | 000,002,333 | ---- | M] () -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Firefox\Profiles\xqypo90j.default\searchplugins\askcom.xml [2013-04-19 12:00:03 | 000,002,306 | ---- | M] () -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Firefox\Profiles\xqypo90j.default\searchplugins\askcomsearch.xml [2013-02-11 09:41:33 | 000,001,294 | ---- | M] () -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Firefox\Profiles\xqypo90j.default\searchplugins\delta.xml [2013-04-11 15:21:54 | 000,002,394 | ---- | M] () -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Firefox\Profiles\xqypo90j.default\searchplugins\search.xml [2012-06-25 16:46:21 | 000,004,002 | ---- | M] () -- C:\Documents and Settings\ppp\Dane aplikacji\Mozilla\Firefox\Profiles\xqypo90j.default\searchplugins\sweetim.xml [2013-12-19 13:49:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013-12-17 10:11:30 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013-08-16 09:07:22 | 000,003,717 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml [2013-02-11 09:41:04 | 000,006,523 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}, CHR - homepage: http://search.babylon.com/?affID=113679&tt=060612_6_&babsrc=HP_ss&mntrId=9c243608000000000000001e8c8fdc73 CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\31.0.1650.63\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll CHR - plugin: Java Deployment Toolkit 6.0.210.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll CHR - plugin: EModel scriptable Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npEModelPlugin.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - Extension: Dysk Google = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Szukaj w Google = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: Gmail offline = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk\1.20_0\ CHR - Extension: Zoho Sheet = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jhegddohmncgelkehhnigphmloinkinj\1.2_0\ CHR - Extension: Google Wallet = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\ CHR - Extension: Gmail = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\ CHR - Extension: Dysk Google = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Szukaj w Google = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: Gmail offline = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk\1.20_0\ CHR - Extension: Zoho Sheet = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jhegddohmncgelkehhnigphmloinkinj\1.2_0\ CHR - Extension: Google Wallet = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\ CHR - Extension: Gmail = C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\ O1 HOSTS File: ([2012-06-06 16:11:04 | 000,000,760 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 192.168.1.1 server O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.) O2 - BHO: (LinkSwift) - {323420b6-65e5-4657-8106-a27392d4d4aa} - C:\Program Files\LinkSwift\LinkSwiftBHO.dll (LinkSwift) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (delta Helper Object) - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files\Delta\delta\1.8.10.0\bh\delta.dll (Delta-search.com) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Final Video Downloader FileBulldog Toolbar\tbcore3.dll () O3 - HKLM\..\Toolbar: (Final Video Downloader FileBulldog Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\Final Video Downloader FileBulldog Toolbar\tbcore3.dll () O3 - HKLM\..\Toolbar: (Delta Toolbar) - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.10.0\deltaTlbr.dll (Delta-search.com) O3 - HKU\S-1-5-21-1547161642-789336058-682003330-1005\..\Toolbar\WebBrowser: (Final Video Downloader FileBulldog Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\Final Video Downloader FileBulldog Toolbar\tbcore3.dll () O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe () O4 - HKLM..\Run: [Onboard] C:\Program Files\Western Digital\WD SmartWare\BackupTask.exe (Western Digital Technologies, Inc.) O4 - HKLM..\Run: [upfst_pl_6.exe] C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\fst_pl_6\upfst_pl_6.exe () O4 - HKU\S-1-5-21-1547161642-789336058-682003330-1005..\Run: [GoogleDriveSync] "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart File not found O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe (McAfee, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1547161642-789336058-682003330-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1547161642-789336058-682003330-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Download Video - {3B54DEAB-C6D4-48a8-8C32-A70558643400} - C:\Program Files\FinalVideoDownloader\fvdRunner.html () O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 95.160.170.92 88.156.222.92 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7DD2858F-5C8D-4438-ADAC-18845FA30598}: DhcpNameServer = 95.160.170.92 88.156.222.92 O20 - AppInit_DLLs: (c:\docume~1\alluse~1\daneap~1\browse~1\261095~1.52\{c16c1~1\browse~1.dll) - File not found O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-07-02 09:44:41 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009-07-12 17:29:36 | 000,000,050 | R--- | M] () - E:\AutoRun.inf -- [ CDFS ] O33 - MountPoints2\{18a08e1c-27cc-11e1-ac1b-001e8c8fdc73}\Shell\AutoRun\command - "" = F:\Launcher.exe O33 - MountPoints2\{811b324c-0c63-11e2-ad50-001e8c8fdc73}\Shell - "" = AutoRun O33 - MountPoints2\{811b324c-0c63-11e2-ad50-001e8c8fdc73}\Shell\AutoRun\command - "" = F:\Startme.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013-12-20 13:13:15 | 000,000,000 | ---D | C] -- C:\FRST [2013-12-20 13:07:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss [2013-12-20 13:03:46 | 000,884,072 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvhdagenco3220103.dll [2013-12-20 13:03:45 | 000,124,264 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvhda32.sys [2013-12-20 13:03:45 | 000,028,008 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvhdap32.dll [2013-12-20 13:03:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation [2013-12-20 13:03:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA [2013-12-20 13:02:24 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll [2013-12-20 13:02:12 | 001,009,512 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll [2013-12-20 13:02:12 | 000,888,168 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispgenco32.dll [2013-12-20 13:01:43 | 005,947,392 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvopencl.dll [2013-12-20 13:01:41 | 002,578,792 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll [2013-12-20 13:01:41 | 001,866,088 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll [2013-12-20 13:01:30 | 017,551,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll [2013-12-20 13:01:06 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2013-12-20 12:57:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ASUS [2013-12-20 12:56:59 | 000,000,000 | ---D | C] -- C:\Program Files\ASUS [2013-12-20 12:56:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ppp\Menu Start\Programy\ASUS [2013-12-20 12:56:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations [2013-12-19 14:16:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client [2013-12-19 13:49:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\AVG [2013-12-19 13:49:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ppp\Menu Start\Programy\Mobogenie [2013-12-19 13:49:33 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2013-12-19 13:49:16 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} [2013-12-19 13:49:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ppp\Dane aplikacji\TuneUp Software [2013-12-19 13:47:52 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013-12-16 15:17:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ppp\Dane aplikacji\AVG [2013-12-16 15:16:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG [2013-12-16 09:50:11 | 000,000,000 | ---D | C] -- C:\Program Files\AVG [2013-12-16 09:46:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\MFAData [2013-12-16 09:46:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2013-12-12 16:50:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\fst_pl_19 [2013-12-12 16:49:56 | 000,000,000 | ---D | C] -- C:\Program Files\fst_pl_19 [2013-12-10 08:17:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\BauText [2013-12-10 08:17:55 | 000,640,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\OC30.DLL [2013-12-10 08:17:55 | 000,133,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFCANS32.DLL [2013-12-10 08:08:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ppp\Dane aplikacji\iSafe [2013-12-06 14:06:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Dassault Systemes [2013-12-06 14:06:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data [2013-12-06 14:06:28 | 000,000,000 | ---D | C] -- C:\Program Files\Dassault Systemes [2013-12-06 14:06:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Dassault Systemes [2013-11-27 12:35:47 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013-11-27 12:10:41 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\OpenOffice.ux.pl 3.4 [2013-11-27 12:10:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\ShellNew [2013-11-27 11:48:15 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird [2013-11-25 07:52:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\McAfee Security Scan Plus [2013-11-22 15:01:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\Mikogo4 [2013-11-22 15:01:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ppp\Moje dokumenty\Mikogo4 [2013-11-21 12:49:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ppp\Dane aplikacji\AxisVM_Evaluate [2013-11-21 12:49:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\AxisVM_Evaluate [2013-11-21 12:49:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AxisVM12 Evaluation [2013-11-21 12:49:05 | 000,000,000 | ---D | C] -- C:\AxisVM12_Evaluation [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013-12-20 13:15:50 | 000,000,406 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job [2013-12-20 13:15:44 | 000,000,366 | -H-- | M] () -- C:\WINDOWS\tasks\MpIdleTask.job [2013-12-20 13:08:40 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2013-12-20 13:06:42 | 000,008,192 | ---- | M] () -- C:\WINDOWS\System32\WDPABKP.dat [2013-12-20 13:05:54 | 000,001,026 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2013-12-20 13:05:53 | 000,000,350 | ---- | M] () -- C:\WINDOWS\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job [2013-12-20 13:05:53 | 000,000,350 | ---- | M] () -- C:\WINDOWS\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job [2013-12-20 13:05:42 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013-12-20 13:02:16 | 001,094,820 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2013-12-20 13:02:16 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin [2013-12-20 13:02:13 | 001,094,820 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2013-12-20 13:02:13 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk [2013-12-20 13:01:07 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2013-12-20 12:59:10 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013-12-20 12:59:10 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2013-12-20 12:57:32 | 000,001,316 | ---- | M] () -- C:\Documents and Settings\ppp\Pulpit\Wyczyść rejestr za darmo!.lnk [2013-12-20 12:57:04 | 000,000,768 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ASUS GPU Tweak.lnk [2013-12-20 12:54:00 | 000,000,422 | ---- | M] () -- C:\WINDOWS\tasks\At1.job [2013-12-19 14:36:24 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2013-12-19 14:16:43 | 000,001,912 | ---- | M] () -- C:\WINDOWS\epplauncher.mif [2013-12-19 14:14:05 | 000,186,824 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2013-12-18 13:30:02 | 000,000,202 | ---- | M] () -- C:\WINDOWS\tasks\BiK7 update check.job [2013-12-17 10:11:40 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2013-12-17 10:06:03 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\ppp\Pulpit\Mobogenie.lnk [2013-12-17 10:05:47 | 000,001,668 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Thunderbird.lnk [2013-12-11 12:36:28 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013-12-11 12:36:28 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013-12-11 12:36:19 | 009,272,200 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe [2013-12-11 12:24:25 | 000,316,360 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013-12-11 12:07:41 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2013-12-10 08:17:57 | 000,015,075 | ---- | M] () -- C:\WINDOWS\unins000.dat [2013-12-10 08:17:56 | 000,000,580 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\BauText.lnk [2013-12-10 08:15:45 | 000,698,137 | ---- | M] () -- C:\WINDOWS\unins000.exe [2013-12-06 14:06:51 | 000,001,988 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DraftSight.lnk [2013-11-27 12:10:41 | 000,000,913 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenOffice.ux.pl 3.4.lnk [2013-11-27 11:29:38 | 000,000,121 | -H-- | M] () -- C:\Documents and Settings\ppp\Moje dokumenty\.~lock.Bez tytułu 1.odt# [2013-11-25 07:52:02 | 000,001,775 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\McAfee Security Scan Plus.lnk [2013-11-25 07:52:02 | 000,001,769 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk [2013-11-21 12:49:29 | 000,000,541 | ---- | M] () -- C:\Documents and Settings\ppp\Pulpit\AxisVM12 Evaluation Version.lnk [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-12-20 13:02:13 | 001,094,820 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2013-12-20 13:02:13 | 001,094,820 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2013-12-20 13:02:13 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin [2013-12-20 13:02:13 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk [2013-12-20 13:02:11 | 000,012,210 | R--- | C] () -- C:\WINDOWS\System32\nvinfo.pb [2013-12-20 13:02:10 | 002,811,988 | R--- | C] () -- C:\WINDOWS\System32\nvdata.data [2013-12-20 12:57:04 | 000,000,768 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ASUS GPU Tweak.lnk [2013-12-19 14:26:31 | 000,000,406 | -H-- | C] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job [2013-12-19 14:26:30 | 000,000,366 | -H-- | C] () -- C:\WINDOWS\tasks\MpIdleTask.job [2013-12-19 14:16:33 | 000,001,698 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Security Essentials.lnk [2013-12-19 11:25:14 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\WDPABKP.dat [2013-12-17 10:11:40 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk [2013-12-17 10:11:40 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2013-12-17 10:06:03 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\ppp\Pulpit\Mobogenie.lnk [2013-12-17 10:05:47 | 000,001,668 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Thunderbird.lnk [2013-12-10 08:18:37 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\emfxp.dll [2013-12-10 08:18:30 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\_pdfxp.dll [2013-12-10 08:17:56 | 000,000,580 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\BauText.lnk [2013-12-10 08:16:24 | 000,698,137 | ---- | C] () -- C:\WINDOWS\unins000.exe [2013-12-10 08:16:24 | 000,015,075 | ---- | C] () -- C:\WINDOWS\unins000.dat [2013-12-06 14:06:51 | 000,001,988 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DraftSight.lnk [2013-11-27 12:10:41 | 000,000,913 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenOffice.ux.pl 3.4.lnk [2013-11-27 11:29:38 | 000,000,121 | -H-- | C] () -- C:\Documents and Settings\ppp\Moje dokumenty\.~lock.Bez tytułu 1.odt# [2013-11-22 10:05:29 | 000,000,346 | RHS- | C] () -- C:\WINDOWS\wxr_2dm.adt [2013-11-21 12:49:29 | 000,000,541 | ---- | C] () -- C:\Documents and Settings\ppp\Pulpit\AxisVM12 Evaluation Version.lnk [2012-10-25 17:30:33 | 000,700,421 | ---- | C] () -- C:\WINDOWS\unins013.exe [2012-10-25 17:30:33 | 000,005,996 | ---- | C] () -- C:\WINDOWS\unins013.dat [2012-09-27 16:37:01 | 002,045,706 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-1547161642-789336058-682003330-1005-0.dat [2012-09-27 16:37:01 | 000,322,346 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat [2012-04-04 13:09:23 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2012-04-02 13:18:21 | 000,698,201 | ---- | C] () -- C:\WINDOWS\unins012.exe [2012-04-02 13:18:21 | 000,003,320 | ---- | C] () -- C:\WINDOWS\unins012.dat [2012-03-17 18:23:22 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012-01-25 13:34:16 | 000,000,438 | ---- | C] () -- C:\WINDOWS\StvDwgWriter.ini [2012-01-25 13:32:21 | 000,000,277 | ---- | C] () -- C:\WINDOWS\StvFischer.ini [2012-01-25 13:24:20 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2012-01-25 13:19:58 | 000,690,040 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll [2012-01-25 13:19:58 | 000,161,656 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll [2012-01-17 11:24:10 | 000,055,296 | ---- | C] () -- C:\WINDOWS\System32\ASGT.exe [2011-10-19 14:44:37 | 000,006,144 | ---- | C] () -- C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [color=#E56717]========== ZeroAccess Check ==========[/color] [2010-08-11 16:22:25 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2013-10-25 01:52:42 | 001,510,400 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 11:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 18:20:57 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2013-12-19 13:54:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Subversion [2012-11-20 17:10:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ask [2013-12-16 15:18:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG [2012-06-25 17:05:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon [2011-05-12 08:40:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Canneverbe Limited [2013-12-17 08:30:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Christoph_GmbH [2012-10-30 16:23:14 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2013-12-06 14:06:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Dassault Systemes [2013-02-11 10:34:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\F-Secure [2012-08-15 15:38:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Halfen [2011-12-16 12:07:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2013-12-19 14:09:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2013-07-03 18:02:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Package Cache [2012-01-25 13:19:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PixelPlanet [2013-04-11 15:41:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SweetIM [2013-12-17 14:29:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2013-07-03 17:19:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Western Digital [2012-11-15 17:12:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Wirtualny Dysk [2013-12-19 13:49:16 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} [2013-12-19 13:49:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\AVG [2013-11-13 17:03:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\0C1I1L1R1J0M1P0I1G [2011-10-13 17:07:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\ArchiveIt [2013-12-19 13:48:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\AVG [2013-11-21 12:49:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\AxisVM_Evaluate [2012-06-25 17:05:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Babylon [2010-08-27 18:48:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\BMS Creative [2011-05-12 08:40:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Canneverbe Limited [2013-11-18 17:19:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\CrashReport [2013-02-11 09:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Delta [2013-12-06 14:07:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\DraftSight [2013-05-24 12:23:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\DSite [2010-08-06 15:17:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\EDrawings [2010-08-27 18:37:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Efficient Sticky Notes [2010-08-02 09:38:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\ESET [2010-08-11 16:13:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\EssentialPIM [2010-08-23 16:26:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\EssentialPIM Pro [2011-05-12 08:35:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\FinalVideoDownloader [2012-12-13 13:44:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\GHISLER [2013-12-10 08:08:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\iSafe [2012-02-06 16:09:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Konrad Papala [2013-02-08 17:31:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\LibreOffice [2013-11-13 17:23:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\MetaCrawler [2013-03-06 17:36:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\OpenOffice.org [2010-07-02 11:52:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\OpenOffice.ux.pl [2013-10-21 07:45:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Oracle [2012-10-30 18:27:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\pdfforge [2013-02-11 10:19:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\PerformerSoft [2013-10-03 12:05:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Scilab [2013-10-14 16:47:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\SMath [2012-10-02 15:20:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Sony [2013-06-06 14:57:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Specbud [2012-06-06 16:04:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Subversion [2013-12-20 12:57:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\systweak [2010-07-13 08:48:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Thunderbird [2011-05-12 08:36:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Toolbar4 [2013-12-19 13:49:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\TuneUp Software [2013-05-24 12:23:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\Zip Opener Packages [2012-01-25 13:28:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\ZiWu-Soft [2013-12-17 16:30:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\zwcad [2012-09-27 16:01:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ppp\Dane aplikacji\ZWSoft [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:9324F490 < End of report >