OTL logfile created on: 2014-11-29 20:09:39 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = E:\Documents and Settings\monik\Pulpit Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,99 Gb Total Physical Memory | 0,92 Gb Available Physical Memory | 46,26% Memory free 3,84 Gb Paging File | 2,70 Gb Available in Paging File | 70,35% Paging File free Paging file location(s): E:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files Drive C: | 895,67 Mb Total Space | 490,20 Mb Free Space | 54,73% Space Free | Partition Type: FAT32 Drive E: | 48,83 Gb Total Space | 12,76 Gb Free Space | 26,14% Space Free | Partition Type: NTFS Drive F: | 99,32 Gb Total Space | 61,65 Gb Free Space | 62,07% Space Free | Partition Type: NTFS Computer Name: MONIKA | User Name: monik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2014-11-29 19:04:33 | 000,602,112 | ---- | M] (OldTimer Tools) -- E:\Documents and Settings\monik\Pulpit\OTL.exe PRC - [2014-11-29 18:18:10 | 005,226,600 | ---- | M] (AVAST Software) -- E:\Program Files\AVAST Software\Avast\avastui.exe PRC - [2014-11-29 18:17:38 | 000,050,344 | ---- | M] (AVAST Software) -- E:\Program Files\AVAST Software\Avast\AvastSvc.exe PRC - [2014-11-25 07:39:27 | 000,856,904 | ---- | M] (Google Inc.) -- E:\Program Files\Google\Chrome\Application\chrome.exe PRC - [2013-05-04 12:09:30 | 000,181,664 | ---- | M] (Oracle Corporation) -- E:\Program Files\Java\jre7\bin\jqs.exe PRC - [2013-03-12 06:32:58 | 000,506,744 | ---- | M] (Oracle Corporation) -- E:\Program Files\Common Files\Java\Java Update\jucheck.exe PRC - [2012-05-30 12:56:52 | 003,048,136 | ---- | M] (Skype Technologies S.A.) -- E:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe PRC - [2011-05-03 10:18:01 | 000,487,424 | ---- | M] (Gadwin Systems, Inc) -- F:\Programy\printscreen\PrintScreen.exe PRC - [2010-12-07 17:01:00 | 000,208,384 | ---- | M] (SEIKO EPSON CORPORATION) -- E:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIHJE.EXE PRC - [2010-08-30 08:32:24 | 000,979,328 | ---- | M] (SEIKO EPSON CORPORATION) -- E:\Program Files\Epson Software\Event Manager\EEventManager.exe PRC - [2009-05-14 16:07:14 | 000,759,048 | ---- | M] (ABBYY) -- E:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe PRC - [2009-03-30 12:47:00 | 000,254,042 | ---- | M] (IDT, Inc.) -- e:\Program Files\IDT\WDM\stacsv.exe PRC - [2004-08-04 13:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\explorer.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2014-11-29 19:57:21 | 002,904,064 | ---- | M] () -- E:\Program Files\AVAST Software\Avast\defs\14112901\algo.dll MOD - [2014-11-29 18:17:49 | 002,904,064 | ---- | M] () -- E:\Program Files\AVAST Software\Avast\defs\14112801\algo.dll MOD - [2014-11-29 18:17:40 | 038,562,088 | ---- | M] () -- E:\Program Files\AVAST Software\Avast\libcef.dll MOD - [2014-11-25 07:39:25 | 014,910,280 | ---- | M] () -- E:\Program Files\Google\Chrome\Application\39.0.2171.71\PepperFlash\pepflashplayer.dll MOD - [2014-11-25 07:39:24 | 009,009,480 | ---- | M] () -- E:\Program Files\Google\Chrome\Application\39.0.2171.71\pdf.dll MOD - [2014-11-25 07:39:17 | 001,677,128 | ---- | M] () -- E:\Program Files\Google\Chrome\Application\39.0.2171.71\ffmpegsumo.dll MOD - [2009-02-27 18:04:20 | 000,311,296 | ---- | M] () -- E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL MOD - [2004-08-04 13:00:00 | 000,014,336 | ---- | M] () -- E:\WINDOWS\system32\msdmo.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- E:\WINDOWS\system32\lxkxx.dll -- (wnrstcjq) SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) SRV - [2014-11-29 18:17:38 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- E:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus) SRV - [2013-05-04 12:09:30 | 000,181,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- E:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2012-07-13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- E:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012-05-30 12:56:52 | 003,048,136 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- E:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service) SRV - [2009-05-14 16:07:14 | 000,759,048 | ---- | M] (ABBYY) [Auto | Running] -- E:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Sprint.9.0) SRV - [2009-03-30 12:47:00 | 000,254,042 | ---- | M] (IDT, Inc.) [Auto | Running] -- e:\Program Files\IDT\WDM\stacsv.exe -- (STacSV) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\clwvd.sys -- (clwvd) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2014-11-29 18:18:11 | 000,787,800 | ---- | M] (AVAST Software) [File_System | System | Running] -- E:\WINDOWS\system32\drivers\aswsnx.sys -- (aswSnx) DRV - [2014-11-29 18:18:08 | 000,423,784 | ---- | M] (AVAST Software) [File_System | System | Running] -- E:\WINDOWS\system32\drivers\aswsp.sys -- (aswSP) DRV - [2014-11-29 18:17:41 | 000,206,248 | ---- | M] () [Kernel | Boot | Running] -- E:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm) DRV - [2014-11-29 18:17:41 | 000,070,384 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- E:\WINDOWS\system32\drivers\aswMonFlt.sys -- (aswMonFlt) DRV - [2014-11-29 18:17:41 | 000,057,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi) DRV - [2014-11-29 18:17:41 | 000,055,240 | ---- | M] (AVAST Software) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr) DRV - [2014-11-29 18:17:41 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- E:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt) DRV - [2014-11-29 18:17:41 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- E:\WINDOWS\system32\drivers\aswHwid.sys -- (aswHwid) DRV - [2014-03-20 19:22:11 | 000,320,120 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- E:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2012-04-15 22:32:14 | 001,068,216 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Stopped] -- E:\WINDOWS\system32\drivers\wcmvcam.sys -- (WCMVCAM) DRV - [2010-02-18 17:36:50 | 001,735,040 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX) DRV - [2009-03-30 12:47:00 | 001,550,891 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\sthda.sys -- (STHDA) DRV - [2009-03-27 09:08:00 | 000,296,960 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp) DRV - [2009-02-18 13:41:56 | 000,113,536 | ---- | M] (Andrea Electronics Corporation) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\AESTAud.sys -- (AESTAud) DRV - [2008-05-24 21:09:10 | 000,073,728 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- E:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.22find.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=WDCXWD1600BEKT-60F3T1_WD-WXC0A89R6959R6959&ts=1361694455 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp220141123 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.22find.com/web/?utm_source=b&utm_medium=mlv&from=mlv&uid=WDCXWD1600BEKT-60F3T1_WD-WXC0A89R6959R6959&ts=1361694457 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://dts.search.ask.com/sidebar.html?src=ssb&gct=ds&appid=429&systemid=406 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.22find.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=WDCXWD1600BEKT-60F3T1_WD-WXC0A89R6959R6959&ts=1361694455 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://dts.search.ask.com/sidebar.html?src=ssb&gct=ds&appid=429&systemid=406 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp220141123 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://dts.search.ask.com/sidebar.html?src=ssb&gct=ds&appid=429&systemid=406 IE - HKCU\..\URLSearchHook: {D8278076-BC68-4484-9233-6E7F1628B56C} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} IE - HKCU\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=dpgppc&s={searchTerms}&f=4 IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=CLM&o=15427&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=^LE&apn_dtid=^YYYYYY^YY^PL&apn_uid=d0644638-77e6-4a00-8aeb-360277e995e0&apn_sauid=B786F770-AA6F-46C0-B083-1079345FE265 IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.22find.com/web/?utm_source=b&utm_medium=mlv&from=mlv&uid=WDCXWD1600BEKT-60F3T1_WD-WXC0A89R6959R6959&ts=1361694457 IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searcs={searchTerms}&f=4 IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2481033 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledAddons: {1FD91A9C-410C-4090-BBCC-55D3450EF433}:1.0 FF - prefs.js..extensions.enabledAddons: ffxtlbr@babylon.com:1.1.9 FF - prefs.js..extensions.enabledAddons: {99079a25-328f-4bd4-be04-00955acaa0a7}:4.6.1.01 FF - prefs.js..extensions.enabledAddons: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:6.0.0.10201 FF - prefs.js..extensions.enabledAddons: {64161300-e22b-11db-8314-0800200c9a66}:0.9.6.8 FF - prefs.js..extensions.enabledAddons: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}:3.15.1.0 FF - prefs.js..extensions.enabledAddons: bbrs_002@blabbers.com:1.0.5 FF - prefs.js..browser.search.defaultengine: "Ask.com Search" FF - prefs.js..browser.startup.homepage: "www.wp.pl/?src01=dp220141123" FF - prefs.js..browser.search.defaultenginename: "Ask.com Search" FF - prefs.js..browser.search.order.1: "Ask.com Search" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.search.selectedEngine: "Ask.com Search" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: E:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: F:\Programy\picasa\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: E:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: E:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: E:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: E:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: E:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: E:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: E:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: E:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: E:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: E:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\wrc@avast.com: E:\Program Files\AVAST Software\Avast\WebRep\FF [2014-11-29 18:17:42 | 000,000,000 | ---D | M] [2012-03-25 11:18:30 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Extensions [2013-01-26 16:39:17 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions [2012-03-25 11:18:26 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7} [2012-08-29 12:23:16 | 000,000,000 | ---D | M] (IncrediMail MediaBar 2 Community Toolbar) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} [2012-10-23 15:33:07 | 000,000,000 | ---D | M] (Ashampoo PO) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\{d43723ae-1ae1-4a25-a6a4-bf0929273cab} [2012-01-16 15:39:38 | 000,000,000 | ---D | M] (Browser Companion Helper) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com [2011-11-11 19:10:30 | 000,000,000 | ---D | M] (Babylon) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\ffxtlbr@babylon.com [2014-11-29 19:52:18 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\toolbar@ask.com [2013-02-24 09:27:36 | 000,002,124 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\{14323AEE-F6B8-4DC8-BCE3-E62645830585}.xpi [2012-08-29 12:23:14 | 000,276,167 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2012-08-29 12:18:53 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\02fe2325436851daade8c8e65d6cb964_expire [2012-08-27 09:13:23 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\0324adea3b6ec02af09ea4ae9424591b_expire [2012-08-29 12:19:02 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\1e83ed2cc66a4167bf6be40f3f550a41_expire [2012-08-29 12:19:19 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\2881548a1fb3f73f1ae0cd6050b37dd3_expire [2012-08-29 12:19:19 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\292124057d00cb0fa73db6b90d079658_expire [2012-08-29 12:19:19 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\4ad053d40dfa5cab7948e9251df6e3d9_expire [2012-08-25 16:13:12 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\4d3d10bd28ff623813254a49b26be41f_expire [2012-08-29 12:18:54 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\656bf02a99a3ba2fbf237f6152b7f3de_expire [2012-08-29 12:19:02 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\9f6015e7e7ab284b2d697b3713c2f02f_expire [2012-08-29 12:18:55 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\a0a560c746cc38a757b5705856e77144_expire [2012-08-29 12:18:53 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\aaff3303cdd7526dcb9cd1bc7f49fa7a_expire [2012-08-29 12:19:19 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\b7e28810c05e9164eefdd62ff9b944ad_expire [2012-08-27 09:13:28 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\d83bb387de1d7c4401815e133de06c6b_expire [2012-08-29 12:18:54 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\e919434ec29526b28593c426e4264271_expire [2012-08-29 12:18:54 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\f03527c67e08602d2e4c18ae7867300d_expire [2012-08-29 12:18:57 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\f33f7907cfe35040b9fdade918fdf0e5_expire [2012-08-29 12:18:52 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\f88997811d2da1fb251068ed3d7c6dde_expire [2012-08-25 16:13:12 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\fa74672918974682c82b8d91dfbe0d6b_expire [2012-08-25 16:13:12 | 000,000,013 | ---- | M] () (No name found) -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\extensions\bbrs_002@blabbers.com\chrome\content\cache\ff4d692d5e7cccbc4b3e9ef4062b1c6f_expire [2013-04-14 18:17:10 | 000,002,514 | ---- | M] () -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\searchplugins\ask-search.xml [2013-01-26 16:39:26 | 000,002,335 | ---- | M] () -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\searchplugins\askcom.xml [2013-05-04 12:05:34 | 000,002,306 | ---- | M] () -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\searchplugins\askcomsearch.xml [2011-11-11 19:13:35 | 000,002,207 | ---- | M] () -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\searchplugins\MyStart Search.xml [2012-03-25 11:18:21 | 000,002,519 | ---- | M] () -- E:\Documents and Settings\monik\Dane aplikacji\Mozilla\Firefox\Profiles\hfw69b5n.default\searchplugins\Search_Results.xml [2012-11-30 16:43:07 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files\Mozilla Firefox\extensions [2012-06-08 06:45:00 | 000,000,000 | ---D | M] (Skype Click to Call) -- E:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-04-09 18:13:46 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} [2012-01-16 15:39:33 | 000,002,288 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\babylon.xml [2011-11-11 19:06:24 | 000,002,049 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml [2012-03-25 11:18:21 | 000,002,519 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\Search_Results.xml [color=#E56717]========== Chrome ==========[/color] CHR - plugin: Error reading preferences file CHR - Extension: No name found = E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\amjcoehkcacocffpmhnefgoeanepjfkf\1.5.5_0\ CHR - Extension: No name found = E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\ CHR - Extension: No name found = E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: No name found = E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: No name found = E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: No name found = E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.14_0\ CHR - Extension: No name found = E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.0.2502.149_0\ CHR - Extension: No name found = E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jinihaffgdhejchgkogpfkdmpldnmnji\10.31.4.510_0\ CHR - Extension: No name found = E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jinihaffgdhejchgkogpfkdmpldnmnji\10.31.4.510_0\nativeMessaging\nmHost CHR - Extension: No name found = E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\ CHR - Extension: No name found = E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\ O1 HOSTS File: ([2004-08-04 13:00:00 | 000,000,742 | ---- | M]) - E:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - E:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - E:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll () O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (no name) - {d1dac034-9fd9-4c13-a388-d2e10e57707f} - No CLSID value found. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - E:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - E:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - E:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll () O3 - HKLM\..\Toolbar: (no name) - {d1dac034-9fd9-4c13-a388-d2e10e57707f} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {8532A8B7-C06A-41BB-936A-8CE73E4711ED} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4 - HKLM..\Run: [AvastUI.exe] E:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software) O4 - HKLM..\Run: [EEventManager] E:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found O4 - HKLM..\Run: [YouCam Service] "E:\Program Files\CyberLink\YouCam\YouCamService.exe" /s File not found O4 - HKCU..\Run: [ares] "E:\Program Files\Ares\Ares.exe" -h File not found O4 - HKCU..\Run: [EPSON SX130 Series] E:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIHJE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [Facebook Update] E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) O4 - HKCU..\Run: [Gadwin PrintScreen] F:\Programy\printscreen\PrintScreen.exe (Gadwin Systems, Inc) O4 - HKCU..\Run: [iLivid] "E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\iLivid\iLivid.exe" -autorun File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data] O8 - Extra context menu item: Add to Google Photos Screensa&ver - E:\WINDOWS\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: E&ksport do programu Microsoft Excel - F:\Programy\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\Programy\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 10.21.2) O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 10.21.2) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2685FE5C-9C95-4727-99A4-8564FCD8219B}: DhcpNameServer = 192.168.2.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - E:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - E:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (E:\WINDOWS\system32\userinit.exe) - E:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O27 - HKLM IFEO\bitguard.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\bprotect.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\bpsvc.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\browsemngr.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\browserdefender.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\browsermngr.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\browserprotect.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\browsersafeguard.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\bundlesweetimsetup.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\cltmngsvc.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\delta babylon.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\delta tb.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\delta2.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\deltainstaller.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\deltasetup.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\deltatb.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\deltatb_2501-c733154b.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\dprotectsvc.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\iminentsetup.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\jumpflip: Debugger - tasklist.exe File not found O27 - HKLM IFEO\protectedsearch.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\rjatydimofu.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\searchinstaller.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\searchprotection.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\searchprotector.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\searchsettings.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\searchsettings64.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\snapdo.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\stinst32.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\stinst64.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\sweetimsetup.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\tbdelta.exetoolbar783881609.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\umbrella.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\utiljumpflip.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\volaro: Debugger - tasklist.exe File not found O27 - HKLM IFEO\vonteera: Debugger - tasklist.exe File not found O27 - HKLM IFEO\websteroids.exe: Debugger - tasklist.exe File not found O27 - HKLM IFEO\websteroidsservice.exe: Debugger - tasklist.exe File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2005-08-23 09:10:48 | 000,000,305 | ---- | M] () - C:\AUTO_BP.BAT -- [ FAT32 ] O32 - AutoRun File - [2005-08-23 09:10:56 | 000,000,329 | ---- | M] () - C:\AUTO_FR.BAT -- [ FAT32 ] O32 - AutoRun File - [2005-08-23 09:11:04 | 000,000,329 | ---- | M] () - C:\AUTO_GR.BAT -- [ FAT32 ] O32 - AutoRun File - [2005-08-23 09:11:12 | 000,000,302 | ---- | M] () - C:\AUTO_IE.BAT -- [ FAT32 ] O32 - AutoRun File - [2005-08-23 09:11:20 | 000,000,330 | ---- | M] () - C:\AUTO_IT.BAT -- [ FAT32 ] O32 - AutoRun File - [2005-08-23 09:11:26 | 000,000,329 | ---- | M] () - C:\AUTO_LA.BAT -- [ FAT32 ] O32 - AutoRun File - [2005-08-23 09:11:36 | 000,000,302 | ---- | M] () - C:\AUTO_PT.BAT -- [ FAT32 ] O32 - AutoRun File - [2005-08-23 09:11:44 | 000,000,329 | ---- | M] () - C:\AUTO_SP.BAT -- [ FAT32 ] O32 - AutoRun File - [2005-08-23 09:11:54 | 000,000,302 | ---- | M] () - C:\AUTO_US.BAT -- [ FAT32 ] O32 - AutoRun File - [2011-03-07 15:51:18 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ FAT32 ] O32 - AutoRun File - [2010-02-18 17:30:02 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ] O32 - AutoRun File - [2011-03-07 15:51:16 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2011-03-07 15:51:16 | 000,000,000 | RHSD | M] - F:\autorun.inf -- [ NTFS ] O33 - MountPoints2\{5714d9a1-3bf7-11e0-8524-0c60765c06b2}\Shell - "" = AutoRun O33 - MountPoints2\{5714d9a1-3bf7-11e0-8524-0c60765c06b2}\Shell\AutoRun\command - "" = E:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL haIhaEp.ExE O33 - MountPoints2\{fff76dae-2ab9-11e3-8a90-0c60765c06b2}\Shell - "" = AutoRun O33 - MountPoints2\{fff76dae-2ab9-11e3-8a90-0c60765c06b2}\Shell\AutoRun\command - "" = G:\Startme.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O36 - AppCertDlls: x64 - (e:\program files\movies toolbar\datamngr\x64\apcrtldr.dll) - File not found O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2014-11-29 20:04:59 | 001,109,504 | ---- | C] (Farbar) -- E:\Documents and Settings\monik\Pulpit\FRST.exe [2014-11-29 19:03:36 | 000,602,112 | ---- | C] (OldTimer Tools) -- E:\Documents and Settings\monik\Pulpit\OTL.exe [2014-11-29 18:28:47 | 000,000,000 | ---D | C] -- E:\Documents and Settings\monik\Dane aplikacji\Dropbox [2014-11-29 18:18:40 | 000,000,000 | ---D | C] -- E:\Documents and Settings\monik\Dane aplikacji\AVAST Software [2014-11-29 18:18:24 | 000,000,000 | ---D | C] -- E:\WINDOWS\jumpshot.com [2014-11-29 18:18:16 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Menu Start\Programy\AVAST Software [2014-11-29 18:17:48 | 000,057,928 | ---- | C] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswTdi.sys [2014-11-29 18:17:47 | 000,423,784 | ---- | C] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswsp.sys [2014-11-29 18:17:47 | 000,070,384 | ---- | C] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswMonFlt.sys [2014-11-29 18:17:46 | 000,787,800 | ---- | C] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswsnx.sys [2014-11-29 18:17:46 | 000,055,240 | ---- | C] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswRdr.sys [2014-11-29 18:17:43 | 000,291,352 | ---- | C] (AVAST Software) -- E:\WINDOWS\System32\aswBoot.exe [2014-11-29 18:17:41 | 000,043,152 | ---- | C] (AVAST Software) -- E:\WINDOWS\avastSS.scr [2014-11-29 18:13:56 | 000,000,000 | ---D | C] -- E:\Program Files\AVAST Software [2014-11-29 18:13:35 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Dane aplikacji\AVAST Software [2014-11-29 18:01:18 | 000,000,000 | ---D | C] -- E:\FRST [2014-11-29 18:00:49 | 005,006,864 | ---- | C] (AVAST Software) -- E:\Documents and Settings\monik\Pulpit\avast_free_antivirus_setup_online.exe [2014-11-29 17:55:51 | 002,117,632 | ---- | C] (Farbar) -- E:\Documents and Settings\monik\Pulpit\FRST64.exe [2014-11-23 14:06:10 | 000,000,000 | ---D | C] -- E:\Documents and Settings\monik\Pulpit\di wywyołania [2012-02-22 07:33:58 | 002,371,152 | ---- | C] (DownVision ) -- E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\setup.exe [3 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ] [1 E:\WINDOWS\System32\*.tmp files -> E:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2014-11-29 20:05:04 | 001,109,504 | ---- | M] (Farbar) -- E:\Documents and Settings\monik\Pulpit\FRST.exe [2014-11-29 19:56:29 | 000,000,314 | -H-- | M] () -- E:\WINDOWS\tasks\avast! Emergency Update.job [2014-11-29 19:56:19 | 000,001,032 | ---- | M] () -- E:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2014-11-29 19:56:17 | 000,000,314 | -HS- | M] () -- E:\WINDOWS\tasks\Qzfkkxzk.job [2014-11-29 19:56:13 | 000,002,278 | ---- | M] () -- E:\WINDOWS\System32\wpa.dbl [2014-11-29 19:56:11 | 000,002,048 | --S- | M] () -- E:\WINDOWS\bootstat.dat [2014-11-29 19:31:01 | 000,001,036 | ---- | M] () -- E:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2014-11-29 19:06:13 | 000,001,002 | ---- | M] () -- E:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1645522239-602162358-725345543-1004UA.job [2014-11-29 19:06:12 | 000,000,980 | ---- | M] () -- E:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1645522239-602162358-725345543-1004Core.job [2014-11-29 19:04:33 | 000,602,112 | ---- | M] (OldTimer Tools) -- E:\Documents and Settings\monik\Pulpit\OTL.exe [2014-11-29 18:24:36 | 000,001,819 | ---- | M] () -- E:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk [2014-11-29 18:18:17 | 000,001,731 | ---- | M] () -- E:\Documents and Settings\All Users\Pulpit\Avast Free Antivirus.lnk [2014-11-29 18:18:11 | 000,787,800 | ---- | M] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswsnx.sys [2014-11-29 18:18:08 | 000,423,784 | ---- | M] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswsp.sys [2014-11-29 18:17:41 | 000,291,352 | ---- | M] (AVAST Software) -- E:\WINDOWS\System32\aswBoot.exe [2014-11-29 18:17:41 | 000,206,248 | ---- | M] () -- E:\WINDOWS\System32\drivers\aswVmm.sys [2014-11-29 18:17:41 | 000,070,384 | ---- | M] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswMonFlt.sys [2014-11-29 18:17:41 | 000,057,928 | ---- | M] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswTdi.sys [2014-11-29 18:17:41 | 000,055,240 | ---- | M] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswRdr.sys [2014-11-29 18:17:41 | 000,049,944 | ---- | M] () -- E:\WINDOWS\System32\drivers\aswRvrt.sys [2014-11-29 18:17:41 | 000,043,152 | ---- | M] (AVAST Software) -- E:\WINDOWS\avastSS.scr [2014-11-29 18:17:41 | 000,024,184 | ---- | M] () -- E:\WINDOWS\System32\drivers\aswHwid.sys [2014-11-29 18:00:58 | 005,006,864 | ---- | M] (AVAST Software) -- E:\Documents and Settings\monik\Pulpit\avast_free_antivirus_setup_online.exe [2014-11-29 17:55:59 | 002,117,632 | ---- | M] (Farbar) -- E:\Documents and Settings\monik\Pulpit\FRST64.exe [2014-11-29 16:51:30 | 000,054,496 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\10818978_805509142842963_70548782_n.jpg [2014-11-27 23:15:40 | 000,012,525 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\geo.odt [2014-11-27 18:14:47 | 000,155,136 | ---- | M] () -- E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2014-11-27 18:13:03 | 000,770,004 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\img115.jpg [2014-11-27 18:11:25 | 000,386,441 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\img114.jpg [2014-11-24 22:56:05 | 000,027,974 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\1392078_622247034552600_6221026817585256578_n.jpg [2014-11-24 10:41:00 | 225,298,457 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\Projekt.mp4 [2014-11-23 19:19:16 | 000,048,182 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\czapka-krasnal-napis-bad-hair-day (1).jpg [2014-11-23 19:19:14 | 000,051,085 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\czapka-krasnal-napis-bad-hair-day.jpg [2014-11-23 18:38:47 | 000,773,136 | ---- | M] ( ) -- E:\Documents and Settings\monik\Pulpit\Windows-Movie-Maker(11546)-dp.exe [2014-11-23 18:22:10 | 002,603,176 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\AdobeDownloadAssistant.exe [2014-11-20 23:12:03 | 000,533,685 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\1lo.3d.1w.kampania.wrzesniowa.pdf [2014-11-20 18:24:59 | 000,086,045 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\10703834_683656065075824_6708523767761331001_n.jpg [2014-11-19 22:06:51 | 000,086,574 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\1920112_606728129432581_6537817209073476139_n.jpg [2014-11-18 20:50:14 | 000,026,391 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\10606049_1526222704263355_7700247099583837149_n.jpg [2014-11-16 20:37:44 | 000,013,048 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\ddd.odt [2014-11-15 14:13:17 | 000,063,599 | ---- | M] () -- E:\Documents and Settings\monik\Pulpit\10730941_534079056695597_4208467300204784725_n.jpg [3 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ] [1 E:\WINDOWS\System32\*.tmp files -> E:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2014-11-29 18:18:17 | 000,001,731 | ---- | C] () -- E:\Documents and Settings\All Users\Pulpit\Avast Free Antivirus.lnk [2014-11-29 18:18:06 | 000,000,314 | -H-- | C] () -- E:\WINDOWS\tasks\avast! Emergency Update.job [2014-11-29 18:17:48 | 000,206,248 | ---- | C] () -- E:\WINDOWS\System32\drivers\aswVmm.sys [2014-11-29 18:17:47 | 000,049,944 | ---- | C] () -- E:\WINDOWS\System32\drivers\aswRvrt.sys [2014-11-29 18:17:47 | 000,024,184 | ---- | C] () -- E:\WINDOWS\System32\drivers\aswHwid.sys [2014-11-29 16:51:29 | 000,054,496 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\10818978_805509142842963_70548782_n.jpg [2014-11-27 18:13:03 | 000,770,004 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\img115.jpg [2014-11-27 18:11:25 | 000,386,441 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\img114.jpg [2014-11-27 17:35:51 | 000,012,525 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\geo.odt [2014-11-24 22:56:04 | 000,027,974 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\1392078_622247034552600_6221026817585256578_n.jpg [2014-11-24 22:08:03 | 225,298,457 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\Projekt.mp4 [2014-11-23 19:19:16 | 000,048,182 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\czapka-krasnal-napis-bad-hair-day (1).jpg [2014-11-23 19:19:13 | 000,051,085 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\czapka-krasnal-napis-bad-hair-day.jpg [2014-11-23 18:38:43 | 000,773,136 | ---- | C] ( ) -- E:\Documents and Settings\monik\Pulpit\Windows-Movie-Maker(11546)-dp.exe [2014-11-23 18:21:59 | 002,603,176 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\AdobeDownloadAssistant.exe [2014-11-20 23:12:02 | 000,533,685 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\1lo.3d.1w.kampania.wrzesniowa.pdf [2014-11-20 22:39:18 | 000,000,044 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\Track47.cda [2014-11-20 18:24:57 | 000,086,045 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\10703834_683656065075824_6708523767761331001_n.jpg [2014-11-19 22:33:33 | 001,754,831 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\Zdjęcie3407.jpg [2014-11-19 22:32:47 | 000,052,441 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\PB1340167590584.jpg [2014-11-19 22:31:10 | 001,699,614 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\Zdjęcie1053.jpg [2014-11-19 22:30:28 | 000,951,899 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\23042012304.jpg [2014-11-19 22:06:49 | 000,086,574 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\1920112_606728129432581_6537817209073476139_n.jpg [2014-11-18 20:50:12 | 000,026,391 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\10606049_1526222704263355_7700247099583837149_n.jpg [2014-11-16 20:37:42 | 000,013,048 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\ddd.odt [2014-11-15 14:13:15 | 000,063,599 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\10730941_534079056695597_4208467300204784725_n.jpg [2014-11-14 15:19:38 | 732,840,347 | ---- | C] () -- E:\Documents and Settings\monik\Pulpit\Kiler-ów 2-óch.avi [2014-11-01 18:52:14 | 000,034,857 | ---- | C] () -- E:\Documents and Settings\monik\Moje dokumenty\wok.odt_0.odt [2014-01-21 21:12:05 | 000,000,857 | ---- | C] () -- E:\Documents and Settings\monik\.recently-used.xbel [2010-02-20 10:14:58 | 000,155,136 | ---- | C] () -- E:\Documents and Settings\monik\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [color=#E56717]========== ZeroAccess Check ==========[/color] [2010-06-16 19:19:39 | 000,000,227 | RHS- | M] () -- E:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2010-04-16 16:37:03 | 001,506,304 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = E:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 11:22:07 | 000,473,088 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = E:\WINDOWS\system32\wbem\wbemess.dll -- [2004-08-04 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2010-03-18 14:22:49 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\AlawarWrapper [2013-04-14 18:16:42 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\APN [2013-10-18 13:08:18 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Applications [2012-10-23 15:32:34 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\ashampoo [2013-01-26 16:38:57 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Ask [2014-11-29 18:13:56 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\AVAST Software [2011-11-11 19:10:13 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Babylon [2012-03-26 06:15:55 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess [2010-06-16 19:22:35 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts [2012-10-06 10:30:05 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\EPSON [2010-03-18 14:27:27 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\FarmFrenzy-PizzaParty [2010-02-19 06:17:09 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-05-08 11:37:31 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Home Ftp Server [2011-11-11 19:16:23 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\IM [2011-11-11 19:15:26 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\IncrediMail [2012-12-22 16:38:08 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\install_clap [2010-05-02 12:10:58 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\NFS Underground Demo [2010-12-31 19:20:59 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2014-07-31 21:08:10 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\PMB Files [2014-07-19 08:56:48 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Riot Games [2012-12-22 16:38:09 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Temp [2012-10-06 10:21:33 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\UDL [2014-01-23 16:33:48 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Wincert [2012-09-25 14:43:35 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\AIMP [2014-11-29 19:54:37 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\AIMP3 [2012-10-23 15:32:44 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\Ashampoo [2012-05-12 09:24:00 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\Audacity [2014-11-29 18:18:40 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\AVAST Software [2011-11-11 19:10:13 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\Babylon [2011-11-13 15:08:20 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\BabylonToolbar [2013-05-29 19:18:05 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\Desk 365 [2014-11-29 18:29:10 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\Dropbox [2013-03-23 12:40:04 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\Epson [2011-11-07 18:20:41 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\Gadu-Gadu 10 [2013-01-28 19:46:00 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\gtk-2.0 [2013-05-11 20:31:00 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\LolClient [2011-12-03 19:36:03 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\Nvu [2010-09-28 17:53:57 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\OpenCandy [2010-02-19 06:53:15 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\OpenFM [2010-04-30 07:00:42 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\OpenOffice.org [2010-02-18 19:08:41 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\Opera [2014-11-29 19:40:28 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\PriceGong [2011-10-28 13:53:46 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\Rovio [2012-05-01 08:46:19 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\searchquband [2012-05-01 08:47:06 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\searchqutoolbar [2010-03-14 19:07:40 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\Thinstall [2013-01-26 16:39:03 | 000,000,000 | ---D | M] -- E:\Documents and Settings\monik\Dane aplikacji\WebcamMax [color=#E56717]========== Purity Check ==========[/color] < End of report >