OTL logfile created on: 2014-02-26 16:13:37 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Klaudia\Downloads Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation Internet Explorer (Version = 7.0.6001.18000) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,99 Gb Available Physical Memory | 49,66% Memory free 4,23 Gb Paging File | 2,70 Gb Available in Paging File | 63,82% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 138,52 Gb Total Space | 58,83 Gb Free Space | 42,47% Space Free | Partition Type: NTFS Drive D: | 10,52 Gb Total Space | 1,59 Gb Free Space | 15,06% Space Free | Partition Type: NTFS Computer Name: KLAUDIA-PC | User Name: Klaudia | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2014-02-26 16:11:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Klaudia\Downloads\OTL.exe PRC - [2014-02-26 15:46:07 | 000,425,104 | ---- | M] (Taiwan Shui Mu Chih Ching Technology Limited.) -- C:\Program Files\WinZipper\winzipersvc.exe PRC - [2014-02-26 13:38:01 | 000,111,904 | ---- | M] () -- C:\Program Files\FindRight\bin\utilFindRight.exe PRC - [2014-02-26 09:30:22 | 000,501,904 | ---- | M] (Cherished Technololgy LIMITED) -- C:\ProgramData\WPM\wprotectmanager.exe PRC - [2014-02-26 06:20:07 | 001,727,264 | ---- | M] () -- C:\Program Files\FindRight\FindRight.FirstRun.exe PRC - [2014-02-26 06:19:14 | 000,111,904 | ---- | M] () -- C:\Program Files\FindRight\updateFindRight.exe PRC - [2014-02-20 02:03:06 | 000,859,464 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe PRC - [2014-01-27 12:31:34 | 003,154,416 | ---- | M] () -- C:\Users\Klaudia\AppData\Local\fst_pl_41\upfst_pl_41.exe PRC - [2014-01-14 10:04:32 | 000,508,016 | ---- | M] (Cherished Technololgy LIMITED) -- C:\ProgramData\IePluginService\PluginService.exe PRC - [2013-10-18 23:08:42 | 007,457,792 | ---- | M] (The Audacity Team) -- C:\Program Files\Audacity\audacity.exe PRC - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2013-04-04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe PRC - [2011-09-22 01:35:57 | 000,117,648 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe PRC - [2008-12-25 13:41:20 | 000,189,736 | ---- | M] (CyberLink) -- C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe PRC - [2008-12-25 13:41:16 | 001,316,136 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe PRC - [2008-12-17 16:11:40 | 000,365,952 | ---- | M] () -- C:\Program Files\SMINST\BLService.exe PRC - [2008-12-10 19:56:36 | 000,842,816 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpAgent.exe PRC - [2008-12-10 19:56:36 | 000,322,624 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe PRC - [2008-11-26 17:13:08 | 000,296,320 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe PRC - [2008-11-26 17:13:08 | 000,116,096 | ---- | M] () -- C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe PRC - [2008-11-18 06:09:42 | 000,599,344 | ---- | M] (Validity Sensors, Inc.) -- C:\Windows\System32\vfsFPService.exe PRC - [2008-10-29 07:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2008-09-11 12:52:52 | 000,237,650 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_805f33de\stacsv.exe PRC - [2008-09-11 12:50:38 | 000,446,556 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe PRC - [2008-06-27 16:53:08 | 000,077,824 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_805f33de\AEstSrv.exe PRC - [2008-06-19 13:17:36 | 001,624,616 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe PRC - [2008-06-19 13:17:36 | 000,727,592 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe PRC - [2008-01-21 03:24:13 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe PRC - [2008-01-21 03:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2014-02-26 14:08:21 | 000,398,112 | ---- | M] () -- C:\Program Files\FindRight\bin\FindRight.BrowserFilter.Helper.dll MOD - [2014-02-26 06:20:07 | 001,727,264 | ---- | M] () -- C:\Program Files\FindRight\FindRight.FirstRun.exe MOD - [2014-02-20 02:03:05 | 000,394,568 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.117\ppgooglenaclpluginchrome.dll MOD - [2014-02-20 02:03:04 | 013,632,840 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.117\PepperFlash\pepflashplayer.dll MOD - [2014-02-20 02:03:03 | 004,060,488 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.117\pdf.dll MOD - [2014-02-20 02:02:56 | 001,647,432 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.117\ffmpegsumo.dll MOD - [2014-02-20 02:02:54 | 000,051,016 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.117\chrome_elf.dll MOD - [2014-01-27 12:31:34 | 003,154,416 | ---- | M] () -- C:\Users\Klaudia\AppData\Local\fst_pl_41\upfst_pl_41.exe MOD - [2014-01-08 15:36:16 | 000,998,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\e3180b4230f052996adb81da3dc64ad0\System.Management.ni.dll MOD - [2014-01-08 15:30:53 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\aa3e053d433c48e1e8c3f436b4de1ed3\System.Configuration.ni.dll MOD - [2014-01-08 15:13:13 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\cfb60f99da570cc494e27e0e8ee747e2\System.Xml.ni.dll MOD - [2014-01-08 15:12:17 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\381fb23cb39e1a61e13b8770eb9800ba\System.Windows.Forms.ni.dll MOD - [2014-01-08 15:12:04 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f1aa2385c0109f3059e0e6ba8b58ff68\System.Drawing.ni.dll MOD - [2014-01-08 15:10:13 | 007,950,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dff86a62a525ec8dc827fe9f50298b7\System.ni.dll MOD - [2014-01-08 15:09:45 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll MOD - [2013-10-17 23:09:54 | 002,782,720 | ---- | M] () -- C:\Program Files\Audacity\wxmsw28u_core_vc_custom.dll MOD - [2013-10-17 23:09:54 | 001,147,392 | ---- | M] () -- C:\Program Files\Audacity\wxbase28u_vc_custom.dll MOD - [2013-10-17 23:09:54 | 000,680,960 | ---- | M] () -- C:\Program Files\Audacity\wxmsw28u_adv_vc_custom.dll MOD - [2013-10-17 23:09:54 | 000,472,064 | ---- | M] () -- C:\Program Files\Audacity\wxmsw28u_html_vc_custom.dll MOD - [2013-10-17 23:09:52 | 000,118,784 | ---- | M] () -- C:\Program Files\Audacity\wxbase28u_net_vc_custom.dll MOD - [2010-01-26 07:38:48 | 000,106,496 | ---- | M] () -- C:\Program Files\Audacity\Plug-Ins\sc4_1882.dll MOD - [2010-01-26 07:38:48 | 000,098,304 | ---- | M] () -- C:\Program Files\Audacity\Plug-Ins\hard_limiter_1413.dll MOD - [2008-12-25 13:41:24 | 000,881,960 | ---- | M] () -- C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll MOD - [2008-12-10 18:05:52 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll MOD - [2008-09-15 23:24:41 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll MOD - [2008-09-15 15:13:38 | 000,028,672 | ---- | M] () -- C:\Program Files\CyberLink\Shared files\richvideops.dll MOD - [2008-06-19 13:10:46 | 000,126,976 | ---- | M] () -- C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - [2014-02-26 15:46:07 | 000,425,104 | ---- | M] (Taiwan Shui Mu Chih Ching Technology Limited.) [Auto | Running] -- C:\Program Files\WinZipper\winzipersvc.exe -- (winzipersvc) SRV - [2014-02-26 13:38:01 | 000,111,904 | ---- | M] () [Auto | Running] -- C:\Program Files\FindRight\bin\utilFindRight.exe -- (Util FindRight) SRV - [2014-02-26 09:30:22 | 000,501,904 | ---- | M] (Cherished Technololgy LIMITED) [Auto | Running] -- C:\ProgramData\WPM\wprotectmanager.exe -- (Wpm) SRV - [2014-02-26 06:19:14 | 000,111,904 | ---- | M] () [Auto | Running] -- C:\Program Files\FindRight\updateFindRight.exe -- (Update FindRight) SRV - [2014-01-14 10:04:32 | 000,508,016 | ---- | M] (Cherished Technololgy LIMITED) [Auto | Running] -- C:\ProgramData\IePluginService\PluginService.exe -- (IePluginService) SRV - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2011-09-22 01:35:57 | 000,117,648 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe -- (Norton Internet Security) SRV - [2008-12-17 16:11:40 | 000,365,952 | ---- | M] () [Auto | Running] -- C:\Program Files\SMINST\BLService.exe -- (Recovery Service for Windows) SRV - [2008-12-10 19:56:36 | 000,322,624 | ---- | M] (DigitalPersona, Inc.) [Auto | Running] -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe -- (DpHost) SRV - [2008-11-26 17:13:08 | 000,296,320 | ---- | M] () [Auto | Running] -- C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe -- (TVCapSvc) SRV - [2008-11-26 17:13:08 | 000,116,096 | ---- | M] () [Auto | Running] -- C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe -- (TVSched) SRV - [2008-11-18 06:09:42 | 000,599,344 | ---- | M] (Validity Sensors, Inc.) [Auto | Running] -- C:\Windows\System32\vfsFPService.exe -- (vfsFPService) SRV - [2008-09-11 12:52:52 | 000,237,650 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_805f33de\stacsv.exe -- (STacSV) SRV - [2008-06-27 16:53:08 | 000,077,824 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_805f33de\AEstSrv.exe -- (AESTFilters) SRV - [2008-02-03 12:00:00 | 000,129,992 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\System32\ezsvc7.dll -- (ezSharedSvc) SRV - [2008-01-21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\NIS\1000000.07D\SYMREDRV.SYS -- (SYMREDRV) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\NIS\1000000.07D\SYMDNS.SYS -- (SYMDNS) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20140108.023\NAVEX15.SYS -- (NAVEX15) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20140108.023\NAVENG.SYS -- (NAVENG) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp) DRV - [2013-12-12 01:07:52 | 000,394,456 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20140108.001\IDSvix86.sys -- (IDSVix86) DRV - [2013-11-19 11:52:33 | 000,376,920 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl) DRV - [2013-11-19 11:52:33 | 000,108,120 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv) DRV - [2013-11-13 18:59:07 | 000,467,592 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NIS\1008030.006\cchpx86.sys -- (ccHP) DRV - [2013-11-12 22:00:35 | 000,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent) DRV - [2013-04-04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector) DRV - [2011-09-22 01:35:58 | 000,217,464 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NIS\1008030.006\symtdi.sys -- (SYMTDI) DRV - [2011-09-22 01:35:58 | 000,089,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NIS\1008030.006\symfw.sys -- (SYMFW) DRV - [2011-09-22 01:35:58 | 000,048,760 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NIS\1008030.006\symndisv.sys -- (SYMNDISV) DRV - [2010-01-20 22:03:39 | 000,310,320 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\NIS\1008030.006\SymEFA.sys -- (SymEFA) DRV - [2010-01-20 22:03:39 | 000,308,272 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\NIS\1008030.006\srtsp.sys -- (SRTSP) DRV - [2010-01-20 22:03:39 | 000,259,632 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NIS\1008030.006\BHDrvx86.sys -- (BHDrvx86) DRV - [2010-01-20 22:03:39 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NIS\1008030.006\srtspx.sys -- (SRTSPX) DRV - [2010-01-20 22:03:28 | 000,025,648 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\SymIMV.sys -- (SymIM) DRV - [2008-12-10 19:30:58 | 004,172,288 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag) DRV - [2008-11-28 18:04:24 | 000,087,536 | ---- | M] (CyberLink Corp.) [2013/11/11 23:15:23] [Kernel | Auto | Running] -- C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl -- ({55662437-DA8C-40c0-AADA-2C816A897A49}) DRV - [2008-10-23 10:42:10 | 000,107,360 | ---- | M] (JMicron Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\jmcr.sys -- (JMCR) DRV - [2008-09-11 12:54:44 | 000,389,120 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA) DRV - [2008-09-04 18:47:00 | 000,054,784 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\enecir.sys -- (enecir) DRV - [2008-08-06 17:26:08 | 000,124,928 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169) DRV - [2008-08-04 21:01:54 | 000,934,400 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr) DRV - [2008-05-28 17:54:20 | 000,022,072 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbfilter.sys -- (usbfilter) DRV - [2008-04-28 09:26:42 | 000,014,352 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AtiPcie.sys -- (AtiPcie) DRV - [2008-03-27 12:12:12 | 000,024,424 | ---- | M] (Hewlett-Packard Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hpdskflt.sys -- (hpdskflt) DRV - [2008-03-27 12:11:34 | 000,034,664 | ---- | M] (Hewlett-Packard Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer) DRV - [2008-01-21 03:23:26 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winusb.sys -- (WinUSB) DRV - [2008-01-21 03:23:20 | 002,225,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) DRV - [2007-06-18 16:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=ST9160310AS_5SV4QZWC&ts=1393425915 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.awesomehp.com/web/?type=ds&ts=1391677571&from=tt4u&uid=ST9160310AS_5SV4QZWC&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.awesomehp.com/web/?type=ds&ts=1391677571&from=tt4u&uid=ST9160310AS_5SV4QZWC&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=ST9160310AS_5SV4QZWC&ts=1393425915 IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{E64D9622-0737-4057-8227-8F54F970F5CE}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1602&query={searchTerms}&invocationType=tb50hpcnnbie7-pl-pl IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=ST9160310AS_5SV4QZWC&ts=1393425915 IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=ST9160310AS_5SV4QZWC&ts=1393425915&type=default&q={searchTerms} IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=ST9160310AS_5SV4QZWC&ts=1393425915&type=default&q={searchTerms} IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=ST9160310AS_5SV4QZWC&ts=1393425915 IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={sear IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\..\SearchScopes\{E64D9622-0737-4057-8227-8F54F970F5CE}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1602&query={searchTerms}&invocationType=tb50hpcnnbie7-pl-pl IE - HKU\S-1-5-21-153922561-2302829751-298388780-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\otis@digitalpersona.com: C:\Program Files\DigitalPersona\Bin\FirefoxExt\ [2013-11-11 23:34:02 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn\ [2013-11-13 19:17:30 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\otis@digitalpersona.com: C:\Program Files\DigitalPersona\Bin\firefoxext [2013-11-11 23:34:02 | 000,000,000 | ---D | M] [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}, CHR - homepage: http://www.google.pl/ CHR - plugin: Error reading preferences file CHR - Extension: Dokumenty Google = C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Dysk Google = C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Adblock Plus = C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\ CHR - Extension: Szukaj w Google = C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: Lightning Newtab = C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo\1.1.8.4_0\ CHR - Extension: Google Wallet = C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\ CHR - Extension: Extended Protection = C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo\1.4.1_2\ CHR - Extension: Gmail = C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\ O1 HOSTS File: ([2014-02-06 10:06:16 | 000,000,808 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O1 - Hosts: 54.204.28.26 nikdaiaidiiiogaidkkekcmokcgcdeac O2 - BHO: (FindRight) - {2c774641-5504-46a8-b63f-6715ae3fe376} - C:\Program Files\FindRight\FindRightBHO.dll (FindRight) O2 - BHO: (IETabPage Class) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\SupTab\SupTab.dll (Thinknice Co. Limited) O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\16.8.3.6\CoIEPlg.dll (Symantec Corporation) O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\16.8.3.6\IPSBHO.dll (Symantec Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (AOL Toolbar BHO) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\Pasek narzędzi AOL 5.0\aoltb.dll (AOL LLC) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.8.3.6\CoIEPlg.dll (Symantec Corporation) O3 - HKLM\..\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\Pasek narzędzi AOL 5.0\aoltb.dll (AOL LLC) O3 - HKU\S-1-5-21-153922561-2302829751-298388780-1000\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.8.3.6\CoIEPlg.dll (Symantec Corporation) O3 - HKU\S-1-5-21-153922561-2302829751-298388780-1000\..\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\Pasek narzędzi AOL 5.0\aoltb.dll (AOL LLC) O4 - HKLM..\Run: [CLMLServer for HP TouchSmart] C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe (CyberLink) O4 - HKLM..\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\DpAgent.exe (DigitalPersona, Inc.) O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard) O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.) O4 - HKLM..\Run: [TSMAgent] C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe (CyberLink Corp.) O4 - HKLM..\Run: [UCam_Menu] C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [UpdatePDIRShortCut] C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKLM..\RunOnce: [Discount Dragon-repairJob] C:\Users\Klaudia\AppData\Local\Discount Dragon\repair.js () O4 - HKLM..\RunOnce: [upfst_pl_41.exe] C:\Users\Klaudia\AppData\Local\fst_pl_41\upfst_pl_41.exe () O4 - Startup: C:\Users\Klaudia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sticky Notes.lnk = C:\Windows\System32\StikyNot.exe (Microsoft Corporation) O8 - Extra context menu item: &Wyszukiwarka na pasku narzędzi AOL - C:\ProgramData\AOL\ieToolbar\resources\pl-PL\local\search.html () O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.62 62.179.1.63 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CBD4B6B1-ADD7-4EDE-AF15-91BA4C697A11}: DhcpNameServer = 62.179.1.62 62.179.1.63 O18 - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files\Norton Internet Security\Engine\16.8.3.6\CoIEPlg.dll (Symantec Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img18.jpg O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img18.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006-09-18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2014-02-26 15:46:10 | 000,773,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr100.dll [2014-02-26 15:46:10 | 000,421,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcp100.dll [2014-02-26 15:46:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper [2014-02-26 15:46:09 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Roaming\WinZipper [2014-02-26 15:46:09 | 000,000,000 | ---D | C] -- C:\Program Files\WinZipper [2014-02-26 15:46:01 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Roaming\SupTab [2014-02-26 12:37:50 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Roaming\Audacity [2014-02-26 12:37:02 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity [2014-02-26 12:34:43 | 000,000,000 | ---D | C] -- C:\Program Files\FindRight [2014-02-07 13:36:51 | 000,000,000 | ---D | C] -- C:\Program Files\Cling Clang [2014-02-06 10:08:10 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Local\BenchUpdater [2014-02-06 10:07:35 | 000,000,000 | ---D | C] -- C:\ProgramData\IePluginService [2014-02-06 10:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\SupTab [2014-02-06 10:07:28 | 000,000,000 | ---D | C] -- C:\ProgramData\WPM [2014-02-06 10:06:21 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Roaming\awesomehp [2014-02-06 10:04:52 | 000,000,000 | ---D | C] -- C:\Program Files\Bench [2014-02-06 10:04:51 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Local\Discount Dragon [2014-02-03 20:32:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner [2014-02-03 20:32:54 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2014-02-03 20:00:39 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Roaming\Malwarebytes [2014-02-03 19:59:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2014-02-03 19:59:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2014-02-03 19:59:08 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2014-02-03 19:59:07 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2014-02-03 19:23:38 | 000,000,000 | ---D | C] -- C:\AdwCleaner [2014-02-03 19:00:18 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Local\fst_pl_41 [2014-02-03 19:00:18 | 000,000,000 | ---D | C] -- C:\Program Files\fst_pl_41 [2014-02-03 19:00:14 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop [2014-02-03 18:58:54 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Roaming\DAEMON Tools Ultra [2014-02-03 18:58:18 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Ultra [2014-01-28 13:57:29 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Roaming\CyberLink [2014-01-27 22:14:38 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2014-01-14 18:55:06 | 000,231,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2014-01-13 21:27:38 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\Desktop\praca [2014-01-07 10:16:02 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2014-01-07 10:16:02 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2014-01-07 10:16:02 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2014-01-07 10:11:56 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll [2014-01-06 20:23:36 | 004,558,848 | ---- | C] (Google Inc.) -- C:\Windows\System32\GPhotos.scr [2014-01-01 19:46:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 [2014-01-01 19:46:03 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\.android [2014-01-01 19:45:54 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Local\cache [2014-01-01 19:44:58 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Local\genienext [2014-01-01 19:44:49 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\Documents\Mobogenie [2014-01-01 19:44:49 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\AppData\Local\Mobogenie [2014-01-01 19:41:50 | 000,000,000 | ---D | C] -- C:\Program Files\Mobogenie [2014-01-01 17:27:39 | 000,000,000 | ---D | C] -- C:\Users\Klaudia\Desktop\sylwester [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2014-02-26 16:14:43 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2014-02-26 16:14:43 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2014-02-26 15:46:07 | 000,773,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr100.dll [2014-02-26 15:46:07 | 000,421,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcp100.dll [2014-02-26 15:45:21 | 000,002,277 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2014-02-26 15:42:04 | 000,001,038 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2014-02-26 15:00:00 | 000,000,336 | ---- | M] () -- C:\Windows\tasks\bench-sys.job [2014-02-26 14:21:00 | 000,000,336 | ---- | M] () -- C:\Windows\tasks\bench-S-1-5-21-153922561-2302829751-298388780-1000.job [2014-02-26 13:18:36 | 000,662,056 | ---- | M] () -- C:\Windows\System32\perfh015.dat [2014-02-26 13:18:36 | 000,587,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2014-02-26 13:18:36 | 000,126,908 | ---- | M] () -- C:\Windows\System32\perfc015.dat [2014-02-26 13:18:36 | 000,101,250 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2014-02-26 12:38:40 | 004,332,722 | ---- | M] () -- C:\Users\Klaudia\Desktop\Eminem - Hello [HQ].mp3 [2014-02-26 12:37:28 | 000,000,804 | ---- | M] () -- C:\Users\Public\Desktop\Audacity.lnk [2014-02-26 12:16:47 | 000,001,034 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2014-02-26 12:14:38 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2014-02-26 12:14:34 | 2145,214,464 | -HS- | M] () -- C:\hiberfil.sys [2014-02-24 23:34:56 | 000,001,076 | ---- | M] () -- C:\Windows\bthservsdp.dat [2014-02-06 10:06:18 | 000,000,266 | RHS- | M] () -- C:\ProgramData\ntuser.pol [2014-02-04 09:29:46 | 000,351,472 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2014-02-03 20:32:56 | 000,000,804 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2014-02-03 19:59:25 | 000,000,906 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2014-01-17 13:31:53 | 000,006,656 | ---- | M] () -- C:\Users\Klaudia\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2014-01-16 09:59:46 | 000,231,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2014-01-13 20:21:41 | 000,000,716 | ---- | M] () -- C:\Users\Klaudia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sticky Notes.lnk [2014-01-06 20:23:36 | 004,558,848 | ---- | M] (Google Inc.) -- C:\Windows\System32\GPhotos.scr [2014-01-01 19:47:05 | 000,000,899 | ---- | M] () -- C:\Users\Public\Desktop\Picasa 3.lnk [color=#E56717]========== Files Created - No Company Name ==========[/color] [2014-02-26 12:38:29 | 004,332,722 | ---- | C] () -- C:\Users\Klaudia\Desktop\Eminem - Hello [HQ].mp3 [2014-02-26 12:37:28 | 000,000,816 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk [2014-02-26 12:37:28 | 000,000,804 | ---- | C] () -- C:\Users\Public\Desktop\Audacity.lnk [2014-02-06 10:06:18 | 000,000,266 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2014-02-06 10:06:11 | 000,000,336 | ---- | C] () -- C:\Windows\tasks\bench-S-1-5-21-153922561-2302829751-298388780-1000.job [2014-02-06 10:05:55 | 000,000,336 | ---- | C] () -- C:\Windows\tasks\bench-sys.job [2014-02-03 20:32:56 | 000,000,804 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2014-02-03 19:59:25 | 000,000,906 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2014-01-13 20:21:41 | 000,000,716 | ---- | C] () -- C:\Users\Klaudia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sticky Notes.lnk [2014-01-01 19:47:04 | 000,000,899 | ---- | C] () -- C:\Users\Public\Desktop\Picasa 3.lnk [2013-12-10 18:08:36 | 000,006,656 | ---- | C] () -- C:\Users\Klaudia\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013-12-02 22:33:16 | 000,000,680 | ---- | C] () -- C:\Users\Klaudia\AppData\Local\d3d9caps.dat [2013-11-19 09:40:34 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat [2013-11-11 23:10:15 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2013-11-11 22:50:51 | 000,001,076 | ---- | C] () -- C:\Windows\bthservsdp.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2006-11-02 13:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2011-01-21 16:46:32 | 011,582,464 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2009-03-03 05:36:24 | 000,615,424 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2008-01-21 03:24:03 | 000,347,648 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2014-02-26 12:39:41 | 000,000,000 | ---D | M] -- C:\Users\Klaudia\AppData\Roaming\Audacity [2014-02-06 10:38:24 | 000,000,000 | ---D | M] -- C:\Users\Klaudia\AppData\Roaming\awesomehp [2014-02-03 18:58:54 | 000,000,000 | ---D | M] -- C:\Users\Klaudia\AppData\Roaming\DAEMON Tools Ultra [2013-11-11 23:59:32 | 000,000,000 | ---D | M] -- C:\Users\Klaudia\AppData\Roaming\DigitalPersona [2013-11-21 19:36:51 | 000,000,000 | ---D | M] -- C:\Users\Klaudia\AppData\Roaming\FloodLightGames [2014-02-26 15:46:01 | 000,000,000 | ---D | M] -- C:\Users\Klaudia\AppData\Roaming\SupTab [2014-02-26 15:46:09 | 000,000,000 | ---D | M] -- C:\Users\Klaudia\AppData\Roaming\WinZipper [color=#E56717]========== Purity Check ==========[/color] < End of report >