wklejto.pl

Dodane przez: ~wujekgrzyb (2013-01-04 19:48) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
OTL logfile created on: 2013-01-04 19:37:13 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
894,17 Mb Total Physical Memory | 622,23 Mb Available Physical Memory | 69,59% Memory free
1,46 Gb Paging File | 1,29 Gb Available in Paging File | 88,70% Paging File free
Paging file location(s): C:\pagefile.sys 672 1344 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55,88 Gb Total Space | 37,31 Gb Free Space | 66,77% Space Free | Partition Type: NTFS
Drive E: | 7,45 Gb Total Space | 6,34 Gb Free Space | 85,15% Space Free | Partition Type: FAT32
 
Computer Name: YOUR-D18FDB6592 | User Name: Gęga Mieczysław | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2013-01-04 19:16:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\OTL.exe
PRC - [2012-11-09 18:39:10 | 000,997,320 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
PRC - [2012-11-09 18:39:10 | 000,711,112 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
PRC - [2012-11-06 19:00:32 | 003,143,800 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgui.exe
PRC - [2012-10-22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe
PRC - [2012-10-22 13:04:32 | 001,116,792 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgnsx.exe
PRC - [2012-10-22 13:03:52 | 000,796,792 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgemcx.exe
PRC - [2008-04-14 18:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-10-16 17:32:18 | 000,249,856 | ---- | M] () -- C:\Program Files\USB Video Camera\Monitor.exe
PRC - [2004-10-08 22:44:24 | 000,098,394 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
PRC - [2004-08-27 23:33:00 | 000,110,592 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\DVDRAMSV.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-11-09 18:39:10 | 000,997,320 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
MOD - [2012-11-09 18:39:10 | 000,711,112 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
MOD - [2012-11-09 18:39:10 | 000,566,728 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\DNTInstaller\13.2.0\avgdttbx.dll
MOD - [2012-11-09 18:39:10 | 000,134,600 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\SiteSafety.dll
MOD - [2008-04-14 18:20:37 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007-10-16 17:32:18 | 000,249,856 | ---- | M] () -- C:\Program Files\USB Video Camera\Monitor.exe
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012-12-26 12:32:43 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-12-11 10:12:17 | 000,115,168 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-11-09 18:39:10 | 000,711,112 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe -- (vToolbarUpdater13.2.0)
SRV - [2012-11-09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-11-06 19:00:04 | 005,814,392 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012-10-22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2012-05-30 12:56:52 | 003,048,136 | ---- | M] (Skype Technologies S.A.) [Disabled | Stopped] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2007-08-09 08:27:52 | 000,073,728 | ---- | M] (HP) [Auto | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2004-08-27 23:33:00 | 000,110,592 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) [Auto | Running] -- C:\WINDOWS\system32\DVDRAMSV.exe -- (DVD-RAM_Service)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\ZDPSp50.sys -- (ZDPSp50)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\adiusbaw.sys -- (adiusbaw)
DRV - File not found [Kernel | Auto | Stopped] -- System32\Drivers\adildr.sys -- (ADILOADER)
DRV - [2012-11-09 18:39:10 | 000,026,984 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2012-10-22 13:02:46 | 000,179,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2012-10-15 03:48:52 | 000,055,776 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2012-10-05 03:32:50 | 000,093,536 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2012-10-02 03:30:38 | 000,159,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2012-09-21 03:46:06 | 000,164,832 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2012-09-21 03:46:00 | 000,177,376 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avglogx.sys -- (Avglogx)
DRV - [2012-09-21 03:45:54 | 000,019,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2012-09-14 03:05:20 | 000,035,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2009-09-05 11:21:37 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2008-04-13 19:56:49 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usb8023.sys -- (USB_RNDIS)
DRV - [2008-02-19 10:48:42 | 002,333,568 | ---- | M] (Digital Camera) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ca2001v.sys -- (Ca2001v)
DRV - [2005-06-29 07:01:58 | 001,241,088 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005-06-17 23:17:48 | 000,352,000 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\camc6hal.sys -- (CAMCHALA)
DRV - [2005-06-17 23:17:00 | 000,038,144 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\camc6aud.sys -- (CAMCAUD)
DRV - [2005-06-11 05:42:40 | 000,005,504 | ---- | M] (Quanta Computer Corp) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BoiHwSetup.sys -- (BoiHwsetup)
DRV - [2005-06-02 02:33:00 | 000,102,384 | ---- | M] (Matsushita Electric Industrial Co.,Ltd.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\meiudf.sys -- (meiudf)
DRV - [2005-05-25 00:39:44 | 000,465,952 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2005-05-09 14:17:06 | 000,031,360 | ---- | M] (Quanta Computer, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\qkbfiltr.sys -- (qkbfiltr)
DRV - [2005-05-05 13:27:38 | 000,007,936 | ---- | M] (Quanta Computer, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\qmofiltr.sys -- (qmofiltr)
DRV - [2005-04-01 01:08:02 | 000,211,200 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWATI.sys -- (HSFHWATI)
DRV - [2005-04-01 00:08:46 | 001,034,240 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2005-04-01 00:08:00 | 000,714,880 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2004-12-03 00:36:08 | 000,070,912 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004-08-03 23:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\..\SearchScopes,DefaultScope = {73C68C15-4D50-475E-A3BC-8C7B4BAC188D}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{73C68C15-4D50-475E-A3BC-8C7B4BAC188D}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR
IE - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR
IE - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.co.uk
IE - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\..\SearchScopes\{73C68C15-4D50-475E-A3BC-8C7B4BAC188D}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADFA_plPL456
IE - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={379A3B68-604F-4B34-8243-5374A1A2C4C6}&mid=&lang=pl&ds=AVG&pr=fr&d=2012-08-04 13:02:37&v=13.2.0.5&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.startup.homepage: "http://www.wp.pl/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search\FireFoxExt\13.2.0.5 [2012-11-09 18:41:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-12-11 10:12:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
 
[2013-01-02 15:27:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\Mozilla\Extensions
[2012-12-11 10:11:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-12-11 10:11:55 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012-12-11 10:12:19 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-02-28 16:37:08 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-11-09 18:41:34 | 000,003,499 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012-02-28 16:37:08 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-02-28 16:37:08 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-02-28 16:37:08 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-02-28 16:37:08 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-02-28 16:37:08 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2012-06-20 19:47:39 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (Sonic Solutions)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll ()
O3 - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\..\Toolbar\WebBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\..\Toolbar\WebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No CLSID value found.
O3 - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [ROC_ROC_JULY_P1] C:\Program Files\AVG Secure Search\ROC_ROC_JULY_P1.exe ()
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Monitor.lnk = C:\Program Files\USB Video Camera\Monitor.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3854572448-3036114693-4066534885-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1082\en-gb\msntb.dll/search.htm File not found
O8 - Extra context menu item: Open in new background tab - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\en-gb\msntabres.dll/229?1499baf0d9dc47f399ef52ec7ccaa3c File not found
O8 - Extra context menu item: Open in new foreground tab - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\en-gb\msntabres.dll/230?1499baf0d9dc47f399ef52ec7ccaa3c File not found
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\NPJPI150_02.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab (Java Plug-in 1.5.0_02)
O16 - DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab (Java Plug-in 1.5.0_02)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.231.1.206 217.172.224.160
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0D934B37-1F2C-4075-AB16-2761094DF2EF}: DhcpNameServer = 89.231.1.206 217.172.224.160
O18 - Protocol\Handler\linkscanner - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005-08-10 10:29:16 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2013-01-04 19:36:34 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\OTL.exe
[2013-01-04 18:56:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\GlarySoft
[2013-01-04 18:40:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Recuva
[2013-01-04 18:40:09 | 000,000,000 | ---D | C] -- C:\Program Files\Recuva
[2013-01-04 18:39:38 | 003,427,424 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\rcsetup144.exe
[2013-01-02 18:13:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Menu Start\Programy\Convar
[2013-01-02 17:53:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\Skype
[2013-01-02 17:38:16 | 000,000,000 | ---D | C] -- C:\Program Files\Convar
[2013-01-02 17:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Moje dokumenty\Pobieranie
[2013-01-02 17:12:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ustawienia lokalne\Dane aplikacji\KodakGallery
[2013-01-02 17:10:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ustawienia lokalne\Dane aplikacji\Google
[2013-01-02 17:10:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\Google
[2013-01-02 17:09:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\AVG Secure Search
[2013-01-02 16:35:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\Macromedia
[2013-01-02 15:34:28 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\PrivacIE
[2013-01-02 15:27:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ustawienia lokalne\Dane aplikacji\Mozilla
[2013-01-02 15:27:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\Mozilla
[2013-01-02 15:26:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\AVG2013
[2013-01-02 15:26:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ustawienia lokalne\Dane aplikacji\AVG Secure Search
[2013-01-02 15:24:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ustawienia lokalne\Dane aplikacji\Avg2013
[2013-01-02 15:23:09 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\IETldCache
[2013-01-02 15:23:09 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Cookies
[2013-01-02 15:23:01 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\Microsoft
[2013-01-02 15:23:01 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\SendTo
[2013-01-02 15:23:01 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Recent
[2013-01-02 15:23:01 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji
[2013-01-02 15:23:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ulubione
[2013-01-02 15:23:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Moje dokumenty\Moje obrazy
[2013-01-02 15:23:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Moje dokumenty
[2013-01-02 15:23:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Moje dokumenty\Moja muzyka
[2013-01-02 15:23:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Menu Start
[2013-01-02 15:23:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Menu Start\Programy\Autostart
[2013-01-02 15:23:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Menu Start\Programy\Akcesoria
[2013-01-02 15:23:01 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Szablony
[2013-01-02 15:23:01 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\PrintHood
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\TuneUp Software
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\toshiba
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\Symantec
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\Sonic
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Nethood
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\MSN Search Toolbar
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\Identities
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ustawienia lokalne\Dane aplikacji\Help
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\Help
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ustawienia lokalne\Dane aplikacji\ApplicationHistory
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\AdobeUM
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ustawienia lokalne\Dane aplikacji\Adobe
[2013-01-02 15:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\Adobe
[2013-01-02 15:23:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ustawienia lokalne
[2013-01-02 15:23:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ustawienia lokalne\Dane aplikacji\Microsoft
[2013-01-02 15:23:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ustawienia lokalne\Dane aplikacji\{3248F0A6-6813-11D6-A77B-00B0D0150020}
[2012-12-26 11:48:53 | 000,697,272 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012-12-11 10:11:53 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012-12-10 10:20:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AVG
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2013-01-04 19:33:38 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013-01-04 19:29:21 | 000,000,330 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2013-01-04 19:28:13 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013-01-04 19:27:53 | 937,676,800 | -HS- | M] () -- C:\hiberfil.sys
[2013-01-04 19:16:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\OTL.exe
[2013-01-04 18:40:15 | 000,001,512 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Recuva.lnk
[2013-01-04 18:36:12 | 003,427,424 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\rcsetup144.exe
[2013-01-04 18:25:17 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013-01-03 18:30:10 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2013-01-02 17:38:22 | 000,000,975 | ---- | M] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\PC Inspector File Recovery.lnk
[2013-01-02 17:24:14 | 001,075,522 | ---- | M] () -- C:\logfile
[2013-01-02 17:08:31 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2013-01-02 17:04:27 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\Word.lnk
[2013-01-02 15:23:41 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\Windows Media Player.lnk
[2012-12-26 12:32:41 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012-12-26 12:32:41 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012-12-21 13:52:43 | 000,262,232 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-12-20 13:35:20 | 000,000,393 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\Moje dokumenty.lnk
[2012-12-16 13:23:59 | 000,290,560 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll
[2012-12-16 13:23:59 | 000,290,560 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\atmfd.dll
[2012-12-14 19:30:53 | 000,439,776 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2012-12-14 19:30:52 | 000,383,588 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012-12-14 19:30:52 | 000,068,752 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2012-12-14 19:30:52 | 000,053,942 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012-12-12 12:22:02 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012-12-10 10:20:04 | 000,000,732 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2013.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013-01-04 18:40:10 | 000,001,512 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Recuva.lnk
[2013-01-02 17:38:22 | 000,000,975 | ---- | C] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\PC Inspector File Recovery.lnk
[2013-01-02 17:18:14 | 000,001,662 | ---- | C] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\Navigo - Cyfrowy Atlas Polski.lnk
[2013-01-02 17:18:03 | 000,000,800 | ---- | C] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\Mapa.lnk
[2013-01-02 17:17:54 | 000,000,741 | ---- | C] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\Glary Utilities.lnk
[2013-01-02 17:17:47 | 000,003,232 | ---- | C] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\BGZ_certifykat.p12
[2013-01-02 17:04:27 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\Word.lnk
[2013-01-02 15:23:54 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Menu Start\Programy\Internet Explorer.lnk
[2013-01-02 15:23:41 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Menu Start\Programy\Windows Media Player.lnk
[2013-01-02 15:23:41 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Pulpit\Windows Media Player.lnk
[2013-01-02 15:23:04 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Menu Start\Programy\Pomoc zdalna.lnk
[2013-01-02 15:23:04 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Menu Start\Programy\Outlook Express.lnk
[2013-01-02 15:23:04 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2012-12-26 11:48:57 | 000,000,930 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012-12-20 13:35:20 | 000,000,393 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\Moje dokumenty.lnk
[2012-06-20 19:07:12 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012-06-20 19:07:12 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012-06-20 19:07:12 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012-06-20 19:07:12 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012-06-20 19:07:12 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012-02-17 20:11:58 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011-11-05 17:38:13 | 000,127,576 | ---- | C] () -- C:\Program Files\cc_20111105_173756.reg
[2011-05-08 18:43:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009-12-12 20:08:21 | 000,001,759 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\QTSBandwidthCache
[2006-09-04 20:23:50 | 000,000,305 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\addr_file.html
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2005-08-10 10:35:16 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-14 18:20:47 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 11:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008-04-14 18:20:57 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2005-08-10 15:06:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\MSN Search Toolbar
[2005-08-10 14:36:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\toshiba
[2010-09-29 18:04:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2012-08-04 11:52:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
[2012-11-09 18:41:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search
[2012-11-05 10:31:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2013
[2012-08-04 11:55:42 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2009-09-05 11:24:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2013-01-04 18:34:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData
[2005-08-10 15:06:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\MSN Search Toolbar
[2005-08-10 14:36:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\toshiba
[2012-11-09 18:47:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\TuneUp Software
[2012-08-04 12:28:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław\Dane aplikacji\Auslogics
[2012-08-04 12:02:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław\Dane aplikacji\AVG Secure Search
[2012-11-05 10:36:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław\Dane aplikacji\AVG2013
[2009-09-05 11:25:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław\Dane aplikacji\DAEMON Tools Lite
[2012-08-04 12:24:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław\Dane aplikacji\GlarySoft
[2012-07-27 08:03:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław\Dane aplikacji\Image Zone Express
[2006-04-22 20:02:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław\Dane aplikacji\InterVideo
[2006-05-05 19:35:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław\Dane aplikacji\toshiba
[2012-11-05 10:30:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław\Dane aplikacji\TuneUp Software
[2013-01-02 17:09:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\AVG Secure Search
[2013-01-02 15:26:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\AVG2013
[2013-01-04 18:56:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\GlarySoft
[2005-08-10 15:06:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\MSN Search Toolbar
[2005-08-10 14:36:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\toshiba
[2012-11-09 18:47:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gęga Mieczysław.YOUR-D18FDB6592\Dane aplikacji\TuneUp Software
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
< End of report >
 
Wygenerowano w 0.137s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!