Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 01-12-2014 Ran by macio at 2014-12-02 17:24:25 Run:3 Running from C:\Documents and Settings\ania\7M Loaded Profile: macio (Available profiles: macio & ania & Administrator) Boot Mode: Normal ============================================== Content of fixlist: ***************** Reg: reg add HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318} /v UpperFilters /t REG_MULTI_SZ /d PartMgr /f Reg: reg add HKLM\SYSTEM\CurrentControlSet\Control\Class\{71A27CDD-812A-11D0-BEC7-08002BE2092F} /v UpperFilters /t REG_MULTI_SZ /d VolSnap /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Services\gupdate /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Services\gupdatem /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Services\snapman /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Services\timounter /f Reg: reg delete HKLM\SOFTWARE\Google\Chrome /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Internet Explorer\Search" /f Reg: reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ffdshow_is1 /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome" /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PDFCreator Toolbar" /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IObit Malware Fighter_is1" /f Reg: reg delete HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ignite /f Reg: reg delete "HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Search" /f Reg: reg delete HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Google\Chrome /f Reg: reg delete HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\mountpoints2 /f Reg: reg delete HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Mozilla\SeaMonkey /f S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2283296 2014-10-28] (IObit) S2 StarWindServiceAE; E:\wav\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed] S4 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2004-12-13] (Ulead Systems, Inc.) [File not signed] S2 IMFservice; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [X] S2 JavaQuickStarterService; "C:\Program Files\Java\jre1.6.0_26\bin\jqs.exe" -service -config "C:\Program Files\Java\jre1.6.0_26\lib\deploy\jqs\jqs.conf" R0 tdrpman; C:\WINDOWS\System32\DRIVERS\tdrpman.sys [368480 2012-02-02] (Acronis) R2 tifsfilter; C:\WINDOWS\System32\DRIVERS\tifsfilt.sys [44384 2012-02-02] (Acronis) S3 FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys [X] S3 RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\regfilter.sys [X] S3 UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\UrlFilter.sys [X] HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service" HKLM\...\Run: [IObit Malware Fighter] => "C:\Program Files\IObit\IObit Malware Fighter\IMF.exe" /autostart Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-343818398-823518204-725345543-1003Core.job => C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-343818398-823518204-725345543-1003UA.job => C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\ReclaimerUpdateFiles_macio.job => C:\Documents and Settings\macio\Dane aplikacji\Real\Update\UpgradeHelper\RealPlayer\11.02\agent\rnupgagent.exe Task: C:\WINDOWS\Tasks\ReclaimerUpdateXML_macio.job => C:\Documents and Settings\macio\Dane aplikacji\Real\Update\UpgradeHelper\RealPlayer\11.02\agent\rnupgagent.exe Task: C:\WINDOWS\Tasks\RNUpgradeHelperLogonPrompt_macio.job => C:\Documents and Settings\macio\Dane aplikacji\Real\Update\UpgradeHelper\RealPlayer\11.02\agent\rnupgagent.exe HKU\S-1-5-21-343818398-823518204-725345543-1003\...\Run: [Google Update] => C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [116648 2013-07-02] (Google Inc.) HKU\S-1-5-21-343818398-823518204-725345543-1003\...\Run: [Advanced SystemCare 7] => "C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /auto HKU\S-1-5-21-343818398-823518204-725345543-1003\...\Run: [Yahoo! Search] => C:\Documents and Settings\macio\Dane aplikacji\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe [533352 2014-11-10] (Pay By Ads LTD) HKU\S-1-5-21-343818398-823518204-725345543-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://rts.dsrlte.com?affID=na HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type=ds&ts=1415003126&from=smt&uid=ST3500418AS_6VM2QEKCXXXX6VM2QEKC&q={searchTerms} HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type=ds&ts=1415003126&from=smt&uid=ST3500418AS_6VM2QEKCXXXX6VM2QEKC&q={searchTerms} HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&ts=1415003126&from=smt&uid=ST3500418AS_6VM2QEKCXXXX6VM2QEKC URLSearchHook: HKU\S-1-5-21-343818398-823518204-725345543-1003 - (No Name) - {D8278076-BC68-4484-9233-6E7F1628B56C} - No File URLSearchHook: HKU\S-1-5-21-343818398-823518204-725345543-1003 - (No Name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - No File URLSearchHook: HKU\S-1-5-21-343818398-823518204-725345543-1003 - (No Name) - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - No File SearchScopes: HKU\S-1-5-21-343818398-823518204-725345543-1003 -> DefaultScope {7BB22B29-1157-46CC-B5B7-A8E1DF62118C} URL = http://www.search.ask.com/web?tpid=ORJ-ST-SPE&o=APN11461&pf=V7&p2=^BE7^OSJ000^YY^PL&gct=sb&itbv=12.18.0.81&apn_uid=B99E999C-BAB2-48FF-98B9-AC7D90990771&apn_ptnrs=BE7&apn_dtid=^OSJ000^YY^PL&apn_dbr=Opera.exe_0_12.17.1863.0&doi=2014-10-28&trgb=IE&q={searchTerms}&psv=&pt=tb SearchScopes: HKU\S-1-5-21-343818398-823518204-725345543-1003 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear SearchScopes: HKU\S-1-5-21-343818398-823518204-725345543-1003 -> {7BB22B29-1157-46CC-B5B7-A8E1DF62118C} URL = http://www.search.ask.com/web?tpid=ORJ-ST-SPE&o=APN11461&pf=V7&p2=^BE7^OSJ000^YY^PL&gct=sb&itbv=12.18.0.81&apn_uid=B99E999C-BAB2-48FF-98B9-AC7D90990771&apn_ptnrs=BE7&apn_dtid=^OSJ000^YY^PL&apn_dbr=Opera.exe_0_12.17.1863.0&doi=2014-10-28&trgb=IE&q={searchTerms}&psv=&pt=tb SearchScopes: HKU\S-1-5-21-343818398-823518204-725345543-1003 -> {F4939972-756F-40CA-A72A-2482EB2993CC} URL = http://search.aol.pl/aol/search?s_it=tb50winamp&q={searchTerms} BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll No File BHO: Ads Removal -> {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} -> C:\Program Files\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll No File BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre1.6.0_26\lib\deploy\jqs\ie\jqs_plugin.dll No File Toolbar: HKLM - ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll No File Toolbar: HKU\S-1-5-21-343818398-823518204-725345543-1003 -> No Name - {B2E293EE-FD7E-4C71-A714-5F4750D8D7B7} - No File Toolbar: HKU\S-1-5-21-343818398-823518204-725345543-1003 -> No Name - {A0B1221C-A3FF-4F7C-A393-DC63AF5301E9} - No File Toolbar: HKU\S-1-5-21-343818398-823518204-725345543-1003 -> No Name - {4F524A2D-5350-4500-76A7-7A786E7484D7} - No File Toolbar: HKU\S-1-5-21-343818398-823518204-725345543-1003 -> No Name - {4F524A2D-5354-2D53-5045-7A786E7484D7} - No File DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.8.0/jinstall-1_8_0_25-windows-i586.cab DPF: {CAFEEFAC-0018-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinstall-1_8_0_25-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre1.6.0_26\lib\deploy\jqs\ff FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll No File FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre1.8.0_25\bin\new_plugin\npjp2.dll No File FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKU\S-1-5-21-343818398-823518204-725345543-1003: opencandy.com/Ignite -> C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Ignite\npOCDM.1.1.4.0.dll (OpenCandy, Inc.) CustomCLSID: HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{6fc9af94-39ee-5a57-935c-17c37e34e33b}\InprocServer32 -> C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Ignite\npOCDM.1.1.4.0.dll (OpenCandy, Inc.) CustomCLSID: HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.25.11\psuser.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.25.11\psuser.dll (Google Inc.) C:\Documents and Settings\ania\Dane aplikacji\Real C:\Documents and Settings\ania\Dane aplikacji\IObit C:\Documents and Settings\macio\*.exe C:\Documents and Settings\macio\Dane aplikacji\IObit C:\Documents and Settings\macio\Dane aplikacji\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} C:\Documents and Settings\macio\Dane aplikacji\mystartsearch C:\Documents and Settings\macio\Dane aplikacji\Pay-By-Ads C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Chrome C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Ignite C:\Program Files\Common Files\Real C:\Program Files\Common Files\Ulead Systems C:\Program Files\Google\Update C:\Program Files\IObit C:\Program Files\Real C:\WINDOWS\Tasks\ImCleanDisabled C:\WINDOWS\system32\REN*.tmp C:\WINDOWS\system32\config\*.iobit C:\WINDOWS\system32\config\*.iodefrag.* C:\WINDOWS\system32\drivers\snapman.sys C:\WINDOWS\System32\DRIVERS\tdrpman.sys C:\WINDOWS\System32\DRIVERS\tifsfilt.sys C:\WINDOWS\system32\drivers\timntr.sys E:\wav\Alcohol 120 RestoreQuarantine: C:\FRST\Quarantine\C\Documents and Settings\All Users\Dane aplikacji\GG CMD: dir /a "C:\Documents and Settings\All Users\Dane aplikacji" CMD: dir /a "C:\Documents and Settings\ania\Dane aplikacji" CMD: dir /a "C:\Documents and Settings\ania\Ustawienia lokalne\Dane aplikacji" CMD: dir /a "C:\Documents and Settings\macio\Dane aplikacji" CMD: dir /a "C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji" CMD: dir /a "C:\Documents and Settings\LocalService\Dane aplikacji" CMD: dir /a "C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji" CMD: dir /a "C:\Documents and Settings\NetworkService\Dane aplikacji" CMD: dir /a "C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji" Reboot: ***************** ========= reg add HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318} /v UpperFilters /t REG_MULTI_SZ /d PartMgr /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg add HKLM\SYSTEM\CurrentControlSet\Control\Class\{71A27CDD-812A-11D0-BEC7-08002BE2092F} /v UpperFilters /t REG_MULTI_SZ /d VolSnap /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Services\gupdate /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Services\gupdatem /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Services\snapman /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Services\timounter /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\Google\Chrome /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Internet Explorer\Search" /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ffdshow_is1 /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome" /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PDFCreator Toolbar" /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IObit Malware Fighter_is1" /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ignite /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete "HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Search" /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Google\Chrome /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\mountpoints2 /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= ========= reg delete HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Mozilla\SeaMonkey /f ========= Operacja ukoÅ„czona pomyÅ›lnie ========= End of Reg: ========= LiveUpdateSvc => Service deleted successfully. StarWindServiceAE => Service deleted successfully. UleadBurningHelper => Service deleted successfully. IMFservice => Service deleted successfully. JavaQuickStarterService => Service deleted successfully. tdrpman => Unable to stop service tdrpman => Service deleted successfully. tifsfilter => Service stopped successfully. tifsfilter => Service deleted successfully. FileMonitor => Service deleted successfully. RegFilter => Service deleted successfully. UrlFilter => Service deleted successfully. "HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice" => Key deleted successfully. HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\IObit Malware Fighter => value deleted successfully. C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully. C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully. C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-343818398-823518204-725345543-1003Core.job => Moved successfully. C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-343818398-823518204-725345543-1003UA.job => Moved successfully. C:\WINDOWS\Tasks\ReclaimerUpdateFiles_macio.job => Moved successfully. C:\WINDOWS\Tasks\ReclaimerUpdateXML_macio.job => Moved successfully. C:\WINDOWS\Tasks\RNUpgradeHelperLogonPrompt_macio.job => Moved successfully. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => value deleted successfully. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run\\Advanced SystemCare 7 => value deleted successfully. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run\\Yahoo! Search => value deleted successfully. "HKU\S-1-5-21-343818398-823518204-725345543-1003\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{D8278076-BC68-4484-9233-6E7F1628B56C} => value deleted successfully. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{A3BC75A2-1F87-4686-AA43-5347D756017C} => value deleted successfully. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} => value deleted successfully. HKU\S-1-5-21-343818398-823518204-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully. "HKU\S-1-5-21-343818398-823518204-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => Key deleted successfully. "HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => Key not found. "HKU\S-1-5-21-343818398-823518204-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7BB22B29-1157-46CC-B5B7-A8E1DF62118C}" => Key deleted successfully. "HKCR\CLSID\{7BB22B29-1157-46CC-B5B7-A8E1DF62118C}" => Key not found. "HKU\S-1-5-21-343818398-823518204-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F4939972-756F-40CA-A72A-2482EB2993CC}" => Key deleted successfully. "HKCR\CLSID\{F4939972-756F-40CA-A72A-2482EB2993CC}" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => Key deleted successfully. "HKCR\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F}" => Key deleted successfully. "HKCR\CLSID\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}" => Key deleted successfully. "HKCR\CLSID\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}" => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{10921475-03CE-4E04-90CE-E2E7EF20C814} => value deleted successfully. "HKCR\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => Key not found. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{B2E293EE-FD7E-4C71-A714-5F4750D8D7B7} => value deleted successfully. "HKCR\CLSID\{B2E293EE-FD7E-4C71-A714-5F4750D8D7B7}" => Key not found. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{A0B1221C-A3FF-4F7C-A393-DC63AF5301E9} => value deleted successfully. "HKCR\CLSID\{A0B1221C-A3FF-4F7C-A393-DC63AF5301E9}" => Key not found. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4F524A2D-5350-4500-76A7-7A786E7484D7} => value deleted successfully. "HKCR\CLSID\{4F524A2D-5350-4500-76A7-7A786E7484D7}" => Key not found. HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4F524A2D-5354-2D53-5045-7A786E7484D7} => value deleted successfully. "HKCR\CLSID\{4F524A2D-5354-2D53-5045-7A786E7484D7}" => Key not found. "HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}" => Key deleted successfully. "HKCR\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0018-0000-0025-ABCDEFFEDCBA}" => Key deleted successfully. "HKCR\CLSID\{CAFEEFAC-0018-0000-0025-ABCDEFFEDCBA}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}" => Key deleted successfully. "HKCR\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}" => Key deleted successfully. HKLM\Software\Mozilla\Firefox\Extensions\\jqs@sun.com => value deleted successfully. "HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0" => Key deleted successfully. "HKLM\Software\MozillaPlugins\@java.com/JavaPlugin" => Key deleted successfully. "HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3" => Key deleted successfully. C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll => Moved successfully. "HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9" => Key deleted successfully. C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll not found. "HKU\S-1-5-21-343818398-823518204-725345543-1003\Software\MozillaPlugins\opencandy.com/Ignite" => Key deleted successfully. C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Ignite\npOCDM.1.1.4.0.dll => Moved successfully. "HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}" => Key deleted successfully. "HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}" => Key deleted successfully. "HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}" => Key deleted successfully. "HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}" => Key deleted successfully. "HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{6fc9af94-39ee-5a57-935c-17c37e34e33b}" => Key deleted successfully. "HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}" => Key deleted successfully. "HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}" => Key deleted successfully. "HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}" => Key deleted successfully. "HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}" => Key deleted successfully. "HKU\S-1-5-21-343818398-823518204-725345543-1003_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}" => Key deleted successfully. C:\Documents and Settings\ania\Dane aplikacji\Real => Moved successfully. C:\Documents and Settings\ania\Dane aplikacji\IObit => Moved successfully. C:\Documents and Settings\macio\*.exe => Moved successfully. C:\Documents and Settings\macio\Dane aplikacji\IObit => Moved successfully. C:\Documents and Settings\macio\Dane aplikacji\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} => Moved successfully. C:\Documents and Settings\macio\Dane aplikacji\mystartsearch => Moved successfully. C:\Documents and Settings\macio\Dane aplikacji\Pay-By-Ads => Moved successfully. C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Google\Chrome => Moved successfully. C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji\Ignite => Moved successfully. C:\Program Files\Common Files\Real => Moved successfully. C:\Program Files\Common Files\Ulead Systems => Moved successfully. C:\Program Files\Google\Update => Moved successfully. C:\Program Files\IObit => Moved successfully. C:\Program Files\Real => Moved successfully. C:\WINDOWS\Tasks\ImCleanDisabled => Moved successfully. C:\WINDOWS\system32\REN*.tmp => Moved successfully. C:\WINDOWS\system32\config\*.iobit => Moved successfully. C:\WINDOWS\system32\config\*.iodefrag.* => Moved successfully. C:\WINDOWS\system32\drivers\snapman.sys => Moved successfully. C:\WINDOWS\System32\DRIVERS\tdrpman.sys => Moved successfully. C:\WINDOWS\System32\DRIVERS\tifsfilt.sys => Moved successfully. C:\WINDOWS\system32\drivers\timntr.sys => Moved successfully. E:\wav\Alcohol 120 => Moved successfully. RestoreQuarantine: C:\FRST\Quarantine\C\Documents and Settings\All Users\Dane aplikacji\GG=> Restoring from Quarantine completed. ========= dir /a "C:\Documents and Settings\All Users\Dane aplikacji" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 887B-F11E Katalog: C:\Documents and Settings\All Users\Dane aplikacji 2014-12-02 17:29 . 2014-12-02 17:29 .. 2008-03-08 13:50 ABBYY 2014-09-22 18:10 Adobe 2014-10-28 20:54 APN 2012-03-04 10:02 Apple 2012-11-25 12:24 Apple Computer 2007-10-12 07:23 Autodesk 2013-12-21 19:55 AVAST Software 2011-02-17 16:50 avg8 2013-08-03 18:14 Brother 2013-08-03 18:14 ControlCenter4 2013-10-19 18:54 CyberLink 2007-09-07 02:34 62 desktop.ini 2014-10-19 09:08 Freemake 2008-04-20 13:14 520 GetRight.001 2008-12-28 20:13 47 GetRight.snk 2014-12-02 17:29 GG 2011-06-26 11:57 GlobalSCAPE 2011-05-30 10:32 Google 2008-03-28 09:36 486 GRFolder.ini 2008-06-01 20:31 9 420 GRGames.ini 2011-12-16 11:41 hps 2007-10-05 17:45 InstallShield 2014-09-22 18:03 IObit 2014-08-14 22:08 ipla 2014-10-15 08:07 0 LauncherAccess.dt 2014-10-15 07:17 Leawo 2013-09-17 14:35 M-Photo 2009-07-21 18:56 Malwarebytes 2014-09-27 19:02 Microsoft 2012-08-23 17:57 Mozilla 2012-01-28 18:30 mpSOFT 2013-07-05 20:12 muzo 2014-07-05 10:52 Nero 2013-01-30 11:11 Norton 2010-06-02 17:01 NortonInstaller 2007-09-06 20:00 NVIDIA 2014-10-28 21:42 Oracle 2014-12-02 16:58 ProductData 2008-09-14 14:09 1 755 QTSBandwidthCache 2013-09-26 10:23 RDRM 2012-09-23 19:19 Real 2011-09-17 11:40 regid.1986-12.com.adobe 2012-02-02 18:51 Seagate 2014-10-08 15:34 Skype 2009-12-30 12:24 SolidDocuments 2009-03-07 08:09 Spybot - Search & Destroy 2010-07-18 17:05 Sun 2010-06-02 17:01 Symantec 2013-08-23 08:39 Tenda Driver 2009-03-08 16:15 Trend Micro 2008-11-04 20:42 TVU Networks 2007-09-06 19:57 Windows Genuine Advantage 2014-10-15 07:36 {01BD4FC9-2F86-4706-A62E-774BB7E9D308} 2014-09-23 09:04 {1C533CDB-BAC7-4600-B3DE-0B628D9AC643} 2014-09-19 17:11 {3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} 2012-03-04 10:04 {429CAD59-35B1-4DBC-BB6D-1DB246563521} 2013-07-05 20:12 120 {738611E3-FE95-B2C9-660D-5564-53AFEACA}.ini 2012-04-21 20:18 116 {B45BDB07-8A0B-E3CA-BC69-29F7-BDD618F5}.ini 2012-12-09 21:47 {C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} 9 plik(ów) 12 526 bajtów 52 katalog(ów) 20 789 788 672 bajtów wolnych ========= End of CMD: ========= ========= dir /a "C:\Documents and Settings\ania\Dane aplikacji" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 887B-F11E Katalog: C:\Documents and Settings\ania\Dane aplikacji 2014-12-02 17:29 . 2014-12-02 17:29 .. 2008-05-13 07:31 Adobe 2008-03-12 20:34 AdobeUM 2014-09-19 17:11 Apple Computer 2013-12-21 20:02 AVAST Software 2012-09-29 14:29 Brother 2013-08-22 16:05 ControlCenter4 2007-09-07 02:34 62 desktop.ini 2012-03-08 17:27 Foxit Software 2008-04-08 15:31 GetRight 2007-10-25 20:04 Google 2007-10-07 18:28 Identities 2013-08-23 08:38 InstallShield 2013-05-11 18:55 ipla 2012-09-29 13:50 Jasc Software Inc 2007-10-07 18:39 Macromedia 2013-12-21 17:53 Malwarebytes 2012-08-29 11:01 Microsoft 2009-11-04 17:21 Mozilla 2010-01-08 20:08 Nowe Gadu-Gadu 2010-09-08 07:39 OpenOffice.ux.pl2 2008-01-22 08:04 Opera 2013-12-03 14:53 Opera Software 2014-09-19 17:12 ProductData 2013-04-22 17:52 SolidDocuments 2011-01-04 14:27 Sun 2013-08-23 09:32 vlc 1 plik(ów) 62 bajtów 27 katalog(ów) 20 789 788 672 bajtów wolnych ========= End of CMD: ========= ========= dir /a "C:\Documents and Settings\ania\Ustawienia lokalne\Dane aplikacji" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 887B-F11E Katalog: C:\Documents and Settings\ania\Ustawienia lokalne\Dane aplikacji 2014-12-01 17:56 . 2014-12-01 17:56 .. 2012-01-21 11:36 Adobe 2007-10-07 18:29 Ashampoo 2014-09-11 18:48 AVG 2013-08-23 09:32 29 696 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-09-19 17:13 82 952 GDIPFONTCACHEV1.DAT 2014-10-21 08:35 Google 2008-05-13 07:43 5 903 170 IconCache.db 2014-09-11 18:37 Microsoft 2009-11-04 17:21 Mozilla 2009-01-20 09:43 Opera 2013-12-03 14:53 Opera Software 2012-01-24 15:12 Sun 2014-12-01 17:41 temp 2008-01-22 08:03 WMTools Downloaded Files 3 plik(ów) 6 015 818 bajtów 13 katalog(ów) 20 789 784 576 bajtów wolnych ========= End of CMD: ========= ========= dir /a "C:\Documents and Settings\macio\Dane aplikacji" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 887B-F11E Katalog: C:\Documents and Settings\macio\Dane aplikacji 2014-12-02 17:29 . 2014-12-02 17:29 .. 2007-09-16 14:46 ABBYY 2011-09-17 11:43 Adobe 2011-10-21 15:14 Adobe Mini Bridge CS5.1 2011-10-03 11:59 132 Adobe PNG Format CS5 Prefs 2008-05-06 08:06 AdobeUM 2008-09-14 14:25 Ahead 2014-11-28 09:50 AIMP3 2014-10-15 07:49 AnvSoft 2014-11-18 14:07 Apple Computer 2009-03-08 20:46 Ashampoo 2013-11-30 21:49 Audacity 2007-12-27 21:04 Autodesk 2009-07-26 19:07 AutoUpdate 2013-12-21 20:25 AVAST Software 2014-08-30 21:41 AVG 2011-02-17 17:20 AVG10 2014-09-11 08:12 avidemux 2013-06-10 18:50 26 AVSDVDPlayer.m3u 2010-11-21 19:58 Bayer04 Publisher 2011-01-18 18:02 Boolat Games 2009-10-25 10:40 Broad Intelligence 2008-10-08 21:02 Brother 2013-11-04 21:03 1 089 burnaware.ini 2011-09-16 16:37 com.adobe.downloadassistant.AdobeDownloadAssistant 2011-07-17 10:51 com.flashgallerycom.photoGalleryBuilder.BE456FDD426FDC61C9F8B47A33E5FBCFF9D5695C.1 2013-08-03 18:19 ControlCenter4 2008-08-15 22:17 Cool Record Edit Pro 2007-10-05 17:55 Corel 2011-09-27 07:09 283 DarkAdapted Preferences 2007-09-07 02:34 62 desktop.ini 2010-09-30 07:01 DMCache 2014-09-01 15:01 Dropbox 2010-11-24 18:15 dvdcss 2014-10-15 07:36 DVDVideoSoft 2013-12-09 14:02 Easy Watermark Studio 2009-07-21 20:33 eSkiMoS R2 2009-05-13 21:18 81 920 ezpinst.exe 2014-02-07 20:13 FileZilla 2009-07-21 21:00 Foxit 2012-02-08 19:35 Foxit Software 2014-04-17 10:14 FTPRush 2007-09-06 21:27 Gadu-Gadu 2013-03-06 18:16 Gadu-Gadu 10 2014-05-16 09:50 92 400 GDIPFONTCACHEV1.DAT 2010-08-22 20:57 GetRight 2014-09-17 19:20 GG 2011-06-26 11:57 GlobalSCAPE 2007-10-17 17:57 Google 2012-06-02 18:15 GrabIt 2014-03-08 12:15 Grupa IMAGE 2014-02-18 10:11 gtk-2.0 2007-09-10 09:44 Help 2007-09-06 18:54 Identities 2007-09-06 19:04 InstallShield 2014-08-14 22:09 ipla 2007-09-27 19:41 Jasc Software Inc 2014-10-15 07:17 Leawo 2007-09-20 17:09 Macromedia 2009-07-21 18:56 Malwarebytes 2014-07-05 10:49 Microsoft 2014-08-10 12:29 MOVAVI 2014-11-11 10:06 Mozilla 2014-08-30 22:13 MusicBee 2013-07-05 20:12 muzo 2014-07-05 10:56 Nero 2009-11-15 17:07 Nowe Gadu-Gadu 2014-10-15 07:35 OpenCandy 2009-07-24 13:15 OpenFM 2014-02-01 16:12 OpenOffice 2010-11-22 15:12 OpenOffice.org 2010-11-21 19:45 OpenOffice.ux.pl2 2011-01-27 18:57 Opera 2013-08-23 18:38 Opera Software 2014-09-20 08:24 OperaPlugin 2009-05-13 21:18 7 176 pcouffin.cat 2009-05-13 21:18 1 144 pcouffin.inf 2009-05-13 21:18 47 360 pcouffin.sys 2010-03-07 09:50 Pegasys Inc 2009-01-06 12:38 Podcast 2009-03-06 20:45 PPMate 2008-03-01 16:30 ppStream 2014-09-20 12:17 ProductData 2010-11-17 07:27 RDRM 2008-02-27 09:39 Real 2014-10-15 07:35 RHEng 2009-05-13 20:24 Samsung 2014-11-30 01:32 Skype 2013-01-30 13:05 skypePM 2014-11-28 22:45 SolidDocuments 2009-03-07 07:38 SopCast 2011-10-21 15:14 StageManager.BD092818F67280F4B42B04877600987F0111B594.1 2008-12-13 19:31 Sun 2014-10-21 08:11 Systweak 2014-03-31 17:04 TeamViewer 2014-11-22 19:03 Thunderbird 2014-10-15 07:17 tiger-k 2012-12-09 21:47 TuneUp Software 2008-11-04 20:42 TVU Networks 2014-02-03 22:17 UpdateStar Drivers 2014-11-28 21:04 vlc 2009-05-13 21:19 Vso 2009-07-21 17:11 VSRevoGroup 2013-05-02 16:10 XBMC 10 plik(ów) 231 592 bajtów 95 katalog(ów) 20 789 764 096 bajtów wolnych ========= End of CMD: ========= ========= dir /a "C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 887B-F11E Katalog: C:\Documents and Settings\macio\Ustawienia lokalne\Dane aplikacji 2014-12-02 17:29 . 2014-12-02 17:29 .. 2011-02-18 15:38 ABBYY 2013-11-18 09:23 Adobe 2012-03-04 10:03 Apple 2014-10-14 08:11 Apple Computer 2009-03-08 20:41 Ashampoo 2007-10-12 07:23 Autodesk 2014-08-30 21:41 AVG 2013-11-28 18:35 Avg2014 2009-09-02 12:25 cache 2009-06-11 10:34 Chat Republic Games 2012-05-24 11:38 ChomikBox 2014-08-30 22:00 CrashRpt 2013-06-24 08:28 Cyberlink 2014-10-14 16:13 118 272 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-03-31 10:01 Deployment 2011-10-07 14:38 DOSBox 2011-11-01 17:29 Flircik 2011-10-07 14:14 free-downloads.net 2014-08-10 12:29 92 744 GDIPFONTCACHEV1.DAT 2011-06-26 11:57 GlobalSCAPE 2014-11-03 09:29 globalUpdate 2014-08-26 17:35 Google 2007-09-10 09:44 Help 2007-09-19 15:32 Identities 2008-11-04 20:42 LocalLow 2009-10-24 19:47 Logitech-LS 2013-09-17 14:36 M-Photo_Ltd 2013-11-28 18:35 MFAData 2014-10-28 19:54 Microsoft 2014-08-10 12:29 Movavi 2008-06-22 10:11 Mozilla 2012-09-14 17:56 mSejf_sp._z_o._o 2013-11-11 15:43 myBabylon_English 2011-01-27 18:57 Opera 2013-08-23 18:38 Opera Software 2014-01-30 15:58 Skype 2007-12-06 18:59 Sun 2014-08-26 17:07 temp 2014-11-22 19:03 Thunderbird 2014-09-23 09:26 TNT2 2008-11-04 20:42 TVU Networks 2009-10-25 14:07 WMTools Downloaded Files 2 plik(ów) 211 016 bajtów 42 katalog(ów) 20 789 760 000 bajtów wolnych ========= End of CMD: ========= ========= dir /a "C:\Documents and Settings\LocalService\Dane aplikacji" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 887B-F11E Katalog: C:\Documents and Settings\LocalService\Dane aplikacji 2014-12-01 17:21 . 2014-12-01 17:21 .. 2012-03-04 10:03 Apple Computer 2009-03-06 20:54 Microsoft 0 plik(ów) 0 bajtów 4 katalog(ów) 20 789 760 000 bajtów wolnych ========= End of CMD: ========= ========= dir /a "C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 887B-F11E Katalog: C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji 2014-08-30 21:48 . 2014-08-30 21:48 .. 2014-08-30 21:48 AVG 2011-05-29 15:27 Google 2009-03-08 16:19 Microsoft 2014-10-19 10:29 347 922 WPFFontCache_v0400-System.dat 1 plik(ów) 347 922 bajtów 5 katalog(ów) 20 789 760 000 bajtów wolnych ========= End of CMD: ========= ========= dir /a "C:\Documents and Settings\NetworkService\Dane aplikacji" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 887B-F11E Katalog: C:\Documents and Settings\NetworkService\Dane aplikacji 2007-09-06 18:51 . 2007-09-06 18:51 .. 2009-03-06 20:54 Microsoft 0 plik(ów) 0 bajtów 3 katalog(ów) 20 789 760 000 bajtów wolnych ========= End of CMD: ========= ========= dir /a "C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 887B-F11E Katalog: C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji 2013-06-24 10:24 . 2013-06-24 10:24 .. 2012-03-12 11:24 Apple 2014-01-06 11:24 BrotherSoft_Extreme 2011-05-29 15:32 Google 2010-08-04 08:00 Microsoft 2013-11-18 11:24 myBabylon_English 0 plik(ów) 0 bajtów 7 katalog(ów) 20 789 760 000 bajtów wolnych ========= End of CMD: ========= The system needed a reboot. ==== End of Fixlog ====