API tools faq
paste
Advertisement
Guest User

MartaK

a guest
Aug 11th, 2015
297
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 38.45 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 2015-08-12 00:06:11 - Run 1
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Marta\Downloads
  3. Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.11.9600.17914)
  5. Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
  6.  
  7. 2,75 Gb Total Physical Memory | 1,46 Gb Available Physical Memory | 53,25% Memory free
  8. 5,49 Gb Paging File | 3,88 Gb Available in Paging File | 70,64% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
  12. Drive C: | 108,24 Gb Total Space | 70,89 Gb Free Space | 65,49% Space Free | Partition Type: NTFS
  13. Drive D: | 357,42 Gb Total Space | 357,32 Gb Free Space | 99,97% Space Free | Partition Type: NTFS
  14.  
  15. Computer Name: MARTA-KOMPUTER | User Name: Marta | Logged in as Administrator.
  16. Boot Mode: Normal | Scan Mode: All users
  17. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  18.  
  19. [color=#E56717]========== Processes (SafeList) ==========[/color]
  20.  
  21. PRC - [2015-08-12 00:02:58 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Marta\Downloads\OTL (1).exe
  22. PRC - [2015-07-31 08:19:29 | 000,813,896 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
  23. PRC - [2015-07-15 21:47:39 | 000,245,576 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.28.1\GoogleCrashHandler.exe
  24. PRC - [2015-07-06 18:41:55 | 000,965,640 | ---- | M] (百度在线网络技术(北京)有限公司) -- C:\Program Files\Baidu\BaiduSd\4.0.0.6697\BaiduSdUpdate.exe
  25. PRC - [2015-06-18 08:39:50 | 001,133,880 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
  26. PRC - [2015-06-18 08:39:46 | 001,871,160 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
  27. PRC - [2015-06-18 08:39:34 | 006,554,424 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
  28. PRC - [2015-06-17 09:21:07 | 000,355,296 | ---- | M] (Tencent) -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\QQPCTray.exe
  29. PRC - [2015-06-17 09:21:07 | 000,297,608 | ---- | M] (Tencent) -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\QQPCRTP.exe
  30. PRC - [2015-06-08 08:03:22 | 000,805,896 | ---- | M] (百度在线网络技术(北京)有限公司) -- C:\Program Files\Baidu\BaiduSd\4.0.0.6697\BaiduSdSvc.exe
  31. PRC - [2015-06-08 08:03:06 | 000,064,008 | ---- | M] (百度在线网络技术(北京)有限公司) -- C:\Program Files\Common Files\Baidu\BaiduHips\1.2.0.751\BaiduHips.exe
  32. PRC - [2015-05-08 21:49:04 | 006,369,048 | ---- | M] (Piriform Ltd) -- C:\Program Files\CCleaner\CCleaner.exe
  33. PRC - [2015-05-07 23:21:06 | 000,406,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\GWX\GWX.exe
  34. PRC - [2013-05-11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
  35. PRC - [2012-11-23 04:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
  36. PRC - [2012-05-20 17:46:42 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
  37. PRC - [2010-01-13 22:04:26 | 000,372,736 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
  38. PRC - [2010-01-13 22:03:56 | 000,172,032 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
  39.  
  40.  
  41. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  42.  
  43. MOD - [2015-07-31 08:19:27 | 001,405,768 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\44.0.2403.130\libglesv2.dll
  44. MOD - [2015-07-31 08:19:27 | 000,081,224 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\44.0.2403.130\libegl.dll
  45. MOD - [2015-06-17 09:21:17 | 000,194,912 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\xImage.dll
  46. MOD - [2015-06-17 09:21:17 | 000,088,416 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\zlib.dll
  47. MOD - [2015-06-17 09:21:16 | 000,100,704 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\tinyxml.dll
  48. MOD - [2015-06-17 09:21:16 | 000,092,184 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\xGraphic32.dll
  49. MOD - [2015-06-17 09:21:14 | 000,481,632 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\sqlite.dll
  50. MOD - [2015-06-17 09:21:14 | 000,268,640 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\plugins\StartupMgr\SoftMon.dll
  51. MOD - [2015-06-17 09:21:14 | 000,203,104 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\QQFileFlt.dll
  52. MOD - [2015-06-17 09:21:10 | 000,285,024 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\libjpegturbo.dll
  53. MOD - [2015-06-17 09:21:10 | 000,158,048 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\libpng.dll
  54. MOD - [2015-06-17 09:21:10 | 000,137,568 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\libexpatw.dll
  55. MOD - [2015-06-17 09:21:10 | 000,076,128 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\MemDefrag.dll
  56. MOD - [2015-06-17 09:21:10 | 000,018,784 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\oDayProtect.dll
  57. MOD - [2015-06-17 09:21:10 | 000,014,176 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\jgIOStub.dll
  58. MOD - [2015-06-17 09:21:09 | 000,045,920 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\jgImage.dll
  59. MOD - [2015-06-17 09:21:08 | 000,342,040 | ---- | M] () -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\arkGraphic.dll
  60. MOD - [2015-06-08 08:02:08 | 000,404,360 | ---- | M] () -- C:\Program Files\Baidu\BaiduSd\4.0.0.6697\BDMCommon.dll
  61. MOD - [2015-06-08 08:02:08 | 000,154,504 | ---- | M] () -- C:\Program Files\Baidu\BaiduSd\4.0.0.6697\BDKVDownloadProtect.dll
  62. MOD - [2015-05-08 20:50:20 | 000,061,440 | ---- | M] () -- C:\Program Files\CCleaner\Lang\lang-1045.dll
  63.  
  64.  
  65. [color=#E56717]========== Services (SafeList) ==========[/color]
  66.  
  67. SRV - File not found [Auto | Stopped] -- C:\Program Files\Rising\RSD\RsMgrSvc.exe -- (RsMgrSvc)
  68. SRV - [2015-06-26 13:02:56 | 000,235,696 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\3.11.149\McCHSvc.exe -- (McComponentHostService)
  69. SRV - [2015-06-19 20:13:19 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
  70. SRV - [2015-06-18 08:39:50 | 001,133,880 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
  71. SRV - [2015-06-18 08:39:46 | 001,871,160 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
  72. SRV - [2015-06-17 09:21:07 | 000,297,608 | ---- | M] (Tencent) [Auto | Running] -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\QQPCRTP.exe -- (QQPCRTP)
  73. SRV - [2015-06-08 08:03:22 | 000,805,896 | ---- | M] (百度在线网络技术(北京)有限公司) [Auto | Running] -- C:\Program Files\Baidu\BaiduSd\4.0.0.6697\BaiduSdSvc.exe -- (BDKVRTP)
  74. SRV - [2015-06-08 08:03:06 | 000,064,008 | ---- | M] (百度在线网络技术(北京)有限公司) [Auto | Running] -- C:\Program Files\Common Files\Baidu\BaiduHips\1.2.0.751\BaiduHips.exe -- (BaiduHips)
  75. SRV - [2015-05-25 20:01:45 | 000,853,504 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\diagtrack.dll -- (DiagTrack)
  76. SRV - [2013-06-25 09:42:49 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
  77. SRV - [2013-05-27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
  78. SRV - [2013-05-11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
  79. SRV - [2010-01-13 22:03:56 | 000,172,032 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
  80. SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
  81.  
  82.  
  83. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  84.  
  85. DRV - File not found [Kernel | Auto | Stopped] -- C:\Windows\system32\drivers\protreg.sys -- (rsdsys)
  86. DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Marta\AppData\Local\Temp\ehdrv.sys -- (eapihdrv)
  87. DRV - [2015-08-12 00:02:34 | 000,098,520 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
  88. DRV - [2015-08-12 00:01:56 | 000,030,392 | ---- | M] (Tencent) [Kernel | On_Demand | Running] -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\TS888.sys -- (TS888)
  89. DRV - [2015-08-05 23:14:20 | 000,135,816 | ---- | M] (Baidu) [Kernel | System | Running] -- C:\Windows\System32\drivers\BDDefense.sys -- (BDDefense)
  90. DRV - [2015-06-18 08:41:54 | 000,051,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mwac.sys -- (MBAMWebAccessControl)
  91. DRV - [2015-06-18 08:41:36 | 000,023,256 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
  92. DRV - [2015-06-17 09:21:17 | 000,204,920 | ---- | M] (电脑管家) [Kernel | System | Running] -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\TSKsp.sys -- (TSKSP)
  93. DRV - [2015-06-17 09:21:17 | 000,150,072 | ---- | M] (电脑管家) [File_System | System | Running] -- C:\Windows\System32\drivers\TFsFlt.sys -- (TFsFlt)
  94. DRV - [2015-06-17 09:21:17 | 000,138,552 | ---- | M] (Tencent Technology(Shenzhen) Company Limited) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\TAOKernel.sys -- (TAOKernelDriver)
  95. DRV - [2015-06-17 09:21:17 | 000,124,792 | ---- | M] (电脑管家) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TsFltMgr.sys -- (TsFltMgr)
  96. DRV - [2015-06-17 09:21:17 | 000,108,472 | ---- | M] (电脑管家) [File_System | Auto | Running] -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\QQSysMon.sys -- (QQSysMon)
  97. DRV - [2015-06-17 09:21:17 | 000,101,560 | ---- | M] (电脑管家) [Kernel | System | Running] -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\TSSysKit.sys -- (TSSysKit)
  98. DRV - [2015-06-17 09:21:17 | 000,077,016 | ---- | M] (Tencent) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\TAOAccelerator.sys -- (TAOAccelerator)
  99. DRV - [2015-06-17 09:21:17 | 000,062,392 | ---- | M] (Tencent) [Kernel | System | Running] -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\QMUdisk.sys -- (QMUdisk)
  100. DRV - [2015-06-17 09:21:17 | 000,049,464 | ---- | M] () [Kernel | System | Running] -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\QMIEProtect.sys -- (QMIEProtect)
  101. DRV - [2015-06-17 09:21:17 | 000,043,448 | ---- | M] (电脑管家) [Kernel | System | Running] -- C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\tscpm.sys -- (TSCPM)
  102. DRV - [2015-06-17 09:21:17 | 000,014,008 | ---- | M] (Tencent) [Kernel | System | Running] -- C:\Windows\System32\drivers\TSDefenseBt.sys -- (TSDefenseBt)
  103. DRV - [2015-06-08 08:03:24 | 000,169,672 | ---- | M] (Baidu) [Kernel | System | Running] -- C:\Windows\System32\drivers\bd0005.sys -- (bd0005)
  104. DRV - [2015-06-08 08:03:22 | 000,145,224 | ---- | M] (Baidu Technology) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\BDArKit.SYS -- (BDArKit)
  105. DRV - [2015-06-08 08:03:22 | 000,059,720 | ---- | M] (Baidu) [File_System | System | Running] -- C:\Windows\System32\drivers\bd0003.sys -- (bd0003)
  106. DRV - [2015-06-08 08:03:08 | 000,168,392 | ---- | M] (Baidu) [Kernel | System | Running] -- C:\Windows\System32\drivers\bd0002.sys -- (bd0002)
  107. DRV - [2015-06-08 08:03:08 | 000,086,344 | ---- | M] (Baidu) [Kernel | System | Running] -- C:\Windows\System32\drivers\bd0001.sys -- (bd0001)
  108. DRV - [2010-11-20 23:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
  109. DRV - [2010-11-20 23:29:03 | 000,130,432 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mpio.sys -- (mpio)
  110. DRV - [2010-11-20 23:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
  111. DRV - [2010-11-20 23:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
  112. DRV - [2010-01-28 09:33:30 | 000,100,352 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtiHdmi.sys -- (AtiHdmiService)
  113. DRV - [2010-01-13 22:25:18 | 005,281,792 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atipmdag.sys -- (amdkmdag)
  114. DRV - [2010-01-13 21:10:44 | 000,149,504 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
  115. DRV - [2009-07-14 01:11:04 | 000,053,760 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\intelppm.sys -- (intelppm)
  116. DRV - [2009-05-05 09:00:28 | 000,014,392 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AtiPcie.sys -- (AtiPcie)
  117. DRV - [2008-07-10 15:29:58 | 000,101,632 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
  118.  
  119.  
  120. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  121.  
  122.  
  123. [color=#E56717]========== Internet Explorer ==========[/color]
  124.  
  125. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
  126. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
  127. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
  128. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
  129. IE - HKLM\..\URLSearchHook: - No CLSID value found
  130. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  131. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  132.  
  133.  
  134. IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  135. IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  136.  
  137.  
  138.  
  139. IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  140. IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  141.  
  142. IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  143.  
  144. IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  145.  
  146. IE - HKU\S-1-5-21-117117196-327422274-3945288870-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
  147. IE - HKU\S-1-5-21-117117196-327422274-3945288870-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
  148. IE - HKU\S-1-5-21-117117196-327422274-3945288870-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  149. IE - HKU\S-1-5-21-117117196-327422274-3945288870-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
  150. IE - HKU\S-1-5-21-117117196-327422274-3945288870-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  151.  
  152.  
  153.  
  154. [color=#E56717]========== FireFox ==========[/color]
  155.  
  156. FF - prefs.js..browser.search.countryCode: "PL"
  157. FF - prefs.js..browser.search.highlightCount: 4
  158. FF - prefs.js..browser.search.isUS: false
  159. FF - prefs.js..browser.search.region: "PL"
  160. FF - prefs.js..browser.search.searchengine.desc: "this is my first firefox searchEngine"
  161. FF - prefs.js..browser.search.searchengine.ptid: "cor"
  162. FF - prefs.js..browser.search.searchengine.uid: "TOSHIBAXMQ01ABD050_62SWT1F1TXX62SWT1F1T"
  163. FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:38.0.5
  164. FF - user.js - File not found
  165.  
  166. FF - HKLM\Software\MozillaPlugins\@baidu.com/BaiduExpert-npplugin: C:\Users\Marta\AppData\Roaming\Baidu\BDWebAdapter\3.0.331.0\npBDExNP.dll (百度在线网络技术(北京)有限公司)
  167. FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  168. FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll ( Microsoft Corporation)
  169. FF - HKLM\Software\MozillaPlugins\@qq.com/npAndroidAssistant: C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3198\npQQPhoneManagerExt.dll File not found
  170. FF - HKLM\Software\MozillaPlugins\@rising.com.cn/nprising: File not found
  171. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll (Google Inc.)
  172. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll (Google Inc.)
  173. FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
  174. FF - HKCU\Software\MozillaPlugins\@rising.com.cn/nprising: File not found
  175. FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Marta\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
  176.  
  177. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 39.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
  178. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 39.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
  179.  
  180. [2014-08-31 21:12:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marta\AppData\Roaming\mozilla\Extensions
  181. [2015-08-11 23:19:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marta\AppData\Roaming\mozilla\Firefox\Profiles\jgj23zdr.default\extensions
  182. [2015-06-11 16:20:55 | 000,000,000 | ---D | M] (Search Enginer) -- C:\Users\Marta\AppData\Roaming\mozilla\Firefox\Profiles\jgj23zdr.default\extensions\1434032438_xpi
  183. [2015-06-11 16:20:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marta\AppData\Roaming\mozilla\Firefox\Profilesjgj23zdr.default\extensions
  184. [2015-06-11 16:20:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marta\AppData\Roaming\mozilla\Firefox\Profilesjgj23zdr.default\extensions\staged
  185. [2015-06-11 16:58:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
  186. [2015-08-11 23:42:07 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  187. [2015-07-15 00:01:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions
  188. [2015-07-15 00:01:28 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  189.  
  190. [color=#E56717]========== Chrome ==========[/color]
  191.  
  192. CHR - Extension: No name found = C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\deoeenbkoccjaefmmhpmlegngdjohdcm\0.1_0\
  193. CHR - Extension: No name found = C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
  194. CHR - Extension: No name found = C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch\3.1_0\
  195.  
  196. O1 HOSTS File: ([2015-07-23 20:17:33 | 000,000,854 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
  197. O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
  198. O2 - BHO: (WebGuardBHO) - {1B2639A9-EE25-4AE7-A2E3-B308F08125C4} - C:\Program Files\Baidu\BaiduSd\4.0.0.6697\WebGuardBHO.dll (百度在线网络技术(北京)有限公司)
  199. O4 - HKLM..\Run: [ QQPCTray] C:\Program Files\Tencent\QQPCMgr\10.9.16350.226\QQPCTray.exe (Tencent)
  200. O4 - HKU\S-1-5-21-117117196-327422274-3945288870-1000..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
  201. O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
  202. O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
  203. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 221
  204. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
  205. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  206. O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000 File not found
  207. O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105 File not found
  208. O13 - gopher Prefix: missing
  209. O15 - HKU\S-1-5-21-117117196-327422274-3945288870-1000\..Trusted Domains: baidu.com ([]http in Zaufane witryny)
  210. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
  211. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{35D1AF14-D59D-4ABD-B0F8-8DEC5E2E8AAB}: DhcpNameServer = 87.99.33.5 192.168.0.1
  212. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9961D035-E347-4463-875F-6BFCC87231D5}: DhcpNameServer = 192.168.1.1
  213. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  214. O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
  215. O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
  216. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  217. O32 - HKLM CDRom: AutoRun - 1
  218. O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
  219. O34 - HKLM BootExecute: (autocheck autochk *)
  220. O35 - HKLM\..comfile [open] -- "%1" %*
  221. O35 - HKLM\..exefile [open] -- "%1" %*
  222. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  223. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  224. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  225. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  226. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  227.  
  228. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  229.  
  230. [2015-08-11 10:24:11 | 000,098,520 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
  231. [2015-08-11 10:24:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
  232. [2015-08-11 10:23:59 | 000,094,936 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamchameleon.sys
  233. [2015-08-11 10:23:58 | 000,051,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mwac.sys
  234. [2015-08-11 10:23:58 | 000,023,256 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
  235. [2015-08-11 10:23:58 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes Anti-Malware
  236. [2015-08-11 10:23:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
  237. [2015-08-11 09:18:06 | 000,000,000 | ---D | C] -- C:\Windows\pss
  238. [2015-08-11 09:15:20 | 000,077,016 | ---- | C] (Tencent) -- C:\Windows\System32\drivers\TAOAccelerator.sys
  239. [2015-08-11 09:15:19 | 000,138,552 | ---- | C] (Tencent Technology(Shenzhen) Company Limited) -- C:\Windows\System32\drivers\TAOKernel.sys
  240. [2015-08-11 09:15:10 | 000,030,392 | ---- | C] (Tencent) -- C:\Windows\System32\drivers\TS888.sys
  241. [2015-08-11 09:15:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Tencent
  242. [2015-08-11 09:14:00 | 000,000,000 | ---D | C] -- C:\ProgramData\TXQMPC
  243. [2015-08-07 17:19:41 | 000,000,000 | ---D | C] -- C:\Users\Marta\AppData\Roaming\Tencent
  244. [2015-07-29 13:16:46 | 000,000,000 | ---D | C] -- C:\Users\Marta\Desktop\Chorwacja 23- 30.07.15
  245. [2015-07-27 09:15:14 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
  246. [2015-07-27 09:05:37 | 002,383,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
  247. [2015-07-27 09:05:22 | 001,805,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
  248. [2015-07-27 09:05:22 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msihnd.dll
  249. [2015-07-27 09:05:22 | 000,101,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
  250. [2015-07-27 09:05:22 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimsg.dll
  251. [2015-07-27 09:05:14 | 000,299,008 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
  252. [2015-07-27 09:05:14 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
  253. [2015-07-27 09:05:14 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
  254. [2015-07-27 09:05:14 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
  255. [2015-07-27 09:05:11 | 002,943,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
  256. [2015-07-27 09:05:11 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
  257. [2015-07-27 09:05:11 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
  258. [2015-07-27 09:05:11 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
  259. [2015-07-27 09:05:11 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSetupUI.dll
  260. [2015-07-27 09:05:11 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
  261. [2015-07-27 09:05:11 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
  262. [2015-07-27 09:05:11 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
  263. [2015-07-27 09:05:11 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wu.upgrade.ps.dll
  264. [2015-07-27 09:05:06 | 000,932,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
  265. [2015-07-27 09:05:06 | 000,924,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appraiser.dll
  266. [2015-07-27 09:05:06 | 000,628,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\invagent.dll
  267. [2015-07-27 09:05:06 | 000,587,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
  268. [2015-07-27 09:05:06 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devinv.dll
  269. [2015-07-27 09:05:06 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
  270. [2015-07-27 09:05:06 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\acmigration.dll
  271. [2015-07-27 09:05:06 | 000,015,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CompatTelRunner.exe
  272. [2015-07-27 09:05:00 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
  273. [2015-07-27 09:04:59 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
  274. [2015-07-27 09:04:59 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msaudite.dll
  275. [2015-07-27 09:04:59 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll
  276. [2015-07-27 09:04:59 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
  277. [2015-07-27 09:04:59 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
  278. [2015-07-27 03:16:48 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
  279. [2015-07-27 03:16:47 | 000,479,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
  280. [2015-07-27 03:16:11 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cewmdm.dll
  281. [2015-07-27 03:07:08 | 004,520,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
  282. [2015-07-27 03:07:07 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
  283. [2015-07-27 03:06:49 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
  284. [2015-07-27 03:06:49 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
  285. [2015-07-27 03:06:49 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
  286. [2015-07-27 03:06:48 | 000,685,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
  287. [2015-07-27 03:06:48 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
  288. [2015-07-27 03:06:48 | 000,342,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
  289. [2015-07-27 03:06:48 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
  290. [2015-07-27 03:06:47 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
  291. [2015-07-27 03:06:47 | 000,689,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
  292. [2015-07-27 03:06:47 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
  293. [2015-07-27 03:06:47 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
  294. [2015-07-27 03:06:47 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
  295. [2015-07-27 03:06:45 | 002,052,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
  296. [2015-07-27 03:06:45 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
  297. [2015-07-27 03:06:45 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
  298. [2015-07-27 03:06:43 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
  299. [2015-07-27 03:06:42 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
  300. [2015-07-27 03:06:39 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
  301. [2015-07-27 03:06:38 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
  302. [2015-07-27 03:06:38 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
  303. [2015-07-23 20:17:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
  304. [2015-07-23 20:17:23 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee Security Scan
  305. [2015-07-21 17:29:24 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
  306. [2015-07-21 00:07:15 | 000,000,000 | ---D | C] -- C:\Users\Marta\AppData\Local\Opera Software
  307. [2015-07-21 00:07:14 | 000,000,000 | ---D | C] -- C:\Users\Marta\AppData\Roaming\Opera Software
  308. [2015-07-21 00:06:23 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
  309. [2015-07-20 23:57:41 | 000,000,000 | ---D | C] -- C:\Users\Marta\Desktop\mama
  310. [2015-07-18 16:12:27 | 000,145,224 | ---- | C] (Baidu Technology) -- C:\Windows\System32\drivers\BDArKit.SYS
  311.  
  312. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  313.  
  314. [2015-08-12 00:09:42 | 000,028,352 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  315. [2015-08-12 00:09:42 | 000,028,352 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  316. [2015-08-12 00:02:34 | 000,098,520 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
  317. [2015-08-12 00:01:56 | 000,030,392 | ---- | M] (Tencent) -- C:\Windows\System32\drivers\TS888.sys
  318. [2015-08-12 00:01:49 | 000,001,032 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  319. [2015-08-12 00:01:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  320. [2015-08-12 00:01:04 | 2211,397,632 | -HS- | M] () -- C:\hiberfil.sys
  321. [2015-08-11 23:49:23 | 000,451,904 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
  322. [2015-08-11 10:52:46 | 000,021,747 | ---- | M] () -- C:\Users\Marta\Desktop\rachunki.ods
  323. [2015-08-11 10:24:03 | 000,001,060 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
  324. [2015-08-11 09:40:20 | 001,125,041 | ---- | M] () -- C:\Users\Marta\Desktop\baidu2.png
  325. [2015-08-11 09:21:05 | 000,362,140 | ---- | M] () -- C:\Users\Marta\Desktop\baidu jeden.png
  326. [2015-08-11 00:52:08 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-117117196-327422274-3945288870-1000Core.job
  327. [2015-08-06 20:45:55 | 000,002,135 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
  328. [2015-08-05 23:14:20 | 000,135,816 | ---- | M] (Baidu) -- C:\Windows\System32\drivers\BDDefense.sys
  329. [2015-07-31 08:22:37 | 000,050,937 | ---- | M] () -- C:\Users\Marta\Desktop\11822572_1612540952328705_7820695393318305985_n.jpg
  330. [2015-07-30 00:09:39 | 000,739,932 | ---- | M] () -- C:\Windows\System32\perfh015.dat
  331. [2015-07-30 00:09:39 | 000,653,724 | ---- | M] () -- C:\Windows\System32\perfh009.dat
  332. [2015-07-30 00:09:39 | 000,155,474 | ---- | M] () -- C:\Windows\System32\perfc015.dat
  333. [2015-07-30 00:09:39 | 000,121,596 | ---- | M] () -- C:\Windows\System32\perfc009.dat
  334. [2015-07-29 13:26:24 | 002,056,693 | ---- | M] () -- C:\Users\Marta\Desktop\DSC04463.JPG
  335. [2015-07-28 11:09:56 | 000,056,985 | ---- | M] () -- C:\Users\Marta\Desktop\10994043_1568038686789481_571214640996350745_n.jpg
  336. [2015-07-27 10:45:58 | 000,097,631 | ---- | M] () -- C:\Users\Marta\Desktop\20130630_022226.jpg
  337. [2015-07-27 06:31:56 | 002,173,029 | ---- | M] () -- C:\Users\Marta\Desktop\DSC04468.JPG
  338. [2015-07-27 02:00:50 | 002,262,083 | ---- | M] () -- C:\Users\Marta\Desktop\DSC04424.JPG
  339. [2015-07-25 22:47:10 | 001,669,113 | ---- | M] () -- C:\Users\Marta\Desktop\WP_20150725_014.jpg
  340. [2015-07-23 20:17:31 | 000,002,015 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
  341. [2015-07-21 20:54:18 | 001,201,755 | ---- | M] () -- C:\Users\Marta\Desktop\WP_20150721_019.jpg
  342. [2015-07-21 20:48:14 | 001,131,684 | ---- | M] () -- C:\Users\Marta\Desktop\WP_20150721_008.jpg
  343. [2015-07-21 17:29:27 | 000,000,965 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
  344. [2015-07-21 00:06:31 | 000,002,351 | ---- | M] () -- C:\Users\Marta\Desktop\Flvto YouTube Downloader.lnk
  345. [2015-07-15 21:47:56 | 000,001,036 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  346. [2015-07-15 04:55:37 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
  347. [2015-07-15 04:55:35 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
  348. [2015-07-15 04:55:32 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
  349. [2015-07-15 03:52:35 | 000,299,008 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
  350.  
  351. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  352.  
  353. [2015-08-11 23:49:05 | 000,451,904 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
  354. [2015-08-11 10:24:03 | 000,001,060 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
  355. [2015-08-11 09:40:20 | 001,125,041 | ---- | C] () -- C:\Users\Marta\Desktop\baidu2.png
  356. [2015-08-11 09:21:04 | 000,362,140 | ---- | C] () -- C:\Users\Marta\Desktop\baidu jeden.png
  357. [2015-07-31 08:22:32 | 000,050,937 | ---- | C] () -- C:\Users\Marta\Desktop\11822572_1612540952328705_7820695393318305985_n.jpg
  358. [2015-07-29 13:34:18 | 002,173,029 | ---- | C] () -- C:\Users\Marta\Desktop\DSC04468.JPG
  359. [2015-07-29 13:33:58 | 002,056,693 | ---- | C] () -- C:\Users\Marta\Desktop\DSC04463.JPG
  360. [2015-07-29 13:32:44 | 002,262,083 | ---- | C] () -- C:\Users\Marta\Desktop\DSC04424.JPG
  361. [2015-07-28 11:09:55 | 000,056,985 | ---- | C] () -- C:\Users\Marta\Desktop\10994043_1568038686789481_571214640996350745_n.jpg
  362. [2015-07-27 10:45:54 | 000,097,631 | ---- | C] () -- C:\Users\Marta\Desktop\20130630_022226.jpg
  363. [2015-07-27 09:40:30 | 001,669,113 | ---- | C] () -- C:\Users\Marta\Desktop\WP_20150725_014.jpg
  364. [2015-07-21 22:46:49 | 001,201,755 | ---- | C] () -- C:\Users\Marta\Desktop\WP_20150721_019.jpg
  365. [2015-07-21 22:46:08 | 001,131,684 | ---- | C] () -- C:\Users\Marta\Desktop\WP_20150721_008.jpg
  366. [2015-07-21 17:29:27 | 000,000,965 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
  367. [2015-07-21 00:06:31 | 000,002,186 | ---- | C] () -- C:\Users\Marta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flvto YouTube Downloader.lnk
  368. [2015-07-21 00:06:31 | 000,001,323 | ---- | C] () -- C:\Users\Marta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Uninstall Flvto YouTube Downloader.lnk
  369. [2015-06-17 09:54:03 | 000,182,328 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
  370. [2013-06-24 22:01:35 | 000,000,437 | ---- | C] () -- C:\Users\Marta\Desktop.lnk
  371.  
  372. [color=#E56717]========== ZeroAccess Check ==========[/color]
  373.  
  374. [2009-07-14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
  375.  
  376. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  377.  
  378. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  379.  
  380. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  381. "" = %SystemRoot%\system32\shell32.dll -- [2015-02-13 07:26:18 | 012,875,264 | ---- | M] (Microsoft Corporation)
  382. "ThreadingModel" = Apartment
  383.  
  384. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  385. "" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
  386. "ThreadingModel" = Free
  387.  
  388. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  389. "" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
  390. "ThreadingModel" = Both
  391.  
  392. [color=#E56717]========== LOP Check ==========[/color]
  393.  
  394. [2015-08-05 09:16:14 | 000,000,000 | ---D | M] -- C:\Users\Marta\AppData\Roaming\Baidu
  395. [2015-06-17 17:12:18 | 000,000,000 | ---D | M] -- C:\Users\Marta\AppData\Roaming\BavMini
  396. [2015-03-26 12:22:55 | 000,000,000 | ---D | M] -- C:\Users\Marta\AppData\Roaming\FlvtoConverter
  397. [2014-07-04 14:32:45 | 000,000,000 | ---D | M] -- C:\Users\Marta\AppData\Roaming\iPlus
  398. [2015-06-12 10:35:56 | 000,000,000 | ---D | M] -- C:\Users\Marta\AppData\Roaming\OpenOffice
  399. [2015-07-21 00:07:14 | 000,000,000 | ---D | M] -- C:\Users\Marta\AppData\Roaming\Opera Software
  400. [2015-08-11 11:14:56 | 000,000,000 | ---D | M] -- C:\Users\Marta\AppData\Roaming\Tencent
  401.  
  402. [color=#E56717]========== Purity Check ==========[/color]
  403.  
  404.  
  405.  
  406. [color=#E56717]========== Files - Unicode (All) ==========[/color]
  407. (C:\Users\Marta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\????) -- C:\Users\Marta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
  408. (C:\ProgramData\Microsoft\Windows\Start Menu\Programs\????) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯软件
  409.  
  410. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!