API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 19th, 2015
331
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 74.43 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 2015-07-19 11:59:35 - Run 2
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kucyk\Desktop
  3. 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.11.9600.17914)
  5. Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
  6.  
  7. 3,89 Gb Total Physical Memory | 1,86 Gb Available Physical Memory | 47,71% Memory free
  8. 7,79 Gb Paging File | 5,17 Gb Available in Paging File | 66,44% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 465,42 Gb Total Space | 339,14 Gb Free Space | 72,87% Space Free | Partition Type: NTFS
  13.  
  14. Computer Name: KUCYK-KOMPUTER | User Name: Kucyk | Logged in as Administrator.
  15. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
  16. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  17.  
  18. [color=#E56717]========== Processes (SafeList) ==========[/color]
  19.  
  20. PRC - [2015-07-19 11:57:40 | 000,707,240 | ---- | M] (DTools LIMITED) -- C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
  21. PRC - [2015-07-19 10:22:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kucyk\Desktop\OTL.exe
  22. PRC - [2015-07-19 09:47:40 | 000,165,376 | ---- | M] () -- C:\Program Files (x86)\03AA02FC-1437292032-05AC-A006-640700080009\hnso581F.tmp
  23. PRC - [2015-07-19 09:47:33 | 000,199,168 | ---- | M] () -- C:\Program Files (x86)\03AA02FC-1437292032-05AC-A006-640700080009\jnsy38AB.tmp
  24. PRC - [2015-07-19 09:22:24 | 000,613,888 | ---- | M] () -- C:\Program Files (x86)\03AA02FC-1437292032-05AC-A006-640700080009\knso12ED.tmpfs
  25. PRC - [2015-07-17 11:57:06 | 003,286,672 | ---- | M] () -- C:\Users\Kucyk\AppData\Local\gmsd_pl_005010034\upgmsd_pl_005010034.exe
  26. PRC - [2015-07-17 11:57:00 | 003,981,968 | ---- | M] () -- C:\Program Files (x86)\gmsd_pl_005010034\gmsd_pl_005010034.exe
  27. PRC - [2015-07-16 05:23:52 | 000,673,976 | ---- | M] (XTab system) -- C:\Program Files (x86)\MiuiTab\HPNotify.exe
  28. PRC - [2015-07-16 05:23:52 | 000,125,112 | ---- | M] (XTab system) -- C:\Program Files (x86)\MiuiTab\ProtectService.exe
  29. PRC - [2015-07-16 05:23:50 | 000,031,928 | ---- | M] (SearchProtect) -- C:\Program Files (x86)\MiuiTab\cmdshell.exe
  30. PRC - [2015-07-04 14:04:14 | 000,377,000 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  31. PRC - [2015-06-18 20:43:48 | 001,994,592 | ---- | M] (BitTorrent Inc.) -- C:\Users\Kucyk\AppData\Roaming\uTorrent\uTorrent.exe
  32. PRC - [2015-06-18 20:29:04 | 000,568,904 | ---- | M] () -- C:\Program Files (x86)\puush\puush.exe
  33. PRC - [2015-04-30 13:45:34 | 001,058,352 | ---- | M] (Oracle Corporation) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
  34. PRC - [2015-02-17 13:00:10 | 000,270,368 | ---- | M] (SoftBrain Technologies Ltd.) -- C:\Users\Kucyk\AppData\Local\SmartWeb\SmartWebHelper.exe
  35. PRC - [2015-02-17 13:00:06 | 000,557,088 | ---- | M] (SoftBrain Technologies Ltd.) -- C:\Users\Kucyk\AppData\Local\SmartWeb\SmartWebApp.exe
  36. PRC - [2014-03-20 11:43:04 | 000,398,296 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  37. PRC - [2014-03-20 11:43:02 | 000,154,584 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
  38. PRC - [2014-02-21 07:56:54 | 000,292,848 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
  39. PRC - [2013-10-24 00:39:14 | 001,017,224 | ---- | M] (Flux Software LLC) -- C:\Users\Kucyk\AppData\Local\FluxSoftware\Flux\flux.exe
  40. PRC - [2010-01-21 04:34:06 | 016,405,736 | ---- | M] (BioWare) -- C:\Program Files (x86)\Mass Effect 2\Binaries\MassEffect2.exe
  41.  
  42.  
  43. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  44.  
  45. MOD - [2015-07-17 11:57:06 | 003,286,672 | ---- | M] () -- C:\Users\Kucyk\AppData\Local\gmsd_pl_005010034\upgmsd_pl_005010034.exe
  46. MOD - [2015-07-17 11:57:00 | 003,981,968 | ---- | M] () -- C:\Program Files (x86)\gmsd_pl_005010034\gmsd_pl_005010034.exe
  47. MOD - [2015-06-18 20:29:04 | 000,568,904 | ---- | M] () -- C:\Program Files (x86)\puush\puush.exe
  48. MOD - [2015-06-18 19:54:42 | 012,438,016 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6949c4470a81970ec3de0a575d93babc\System.Windows.Forms.ni.dll
  49. MOD - [2015-06-18 19:54:38 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5a401fd2a7689ff13fb54182953f9c40\System.Drawing.ni.dll
  50. MOD - [2015-06-18 19:54:37 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\007fc007edc388d9806dff94ee04f129\System.Configuration.ni.dll
  51. MOD - [2015-06-18 15:28:01 | 000,774,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\0967cf5c31691f38d013263304d2dacb\System.Runtime.Remoting.ni.dll
  52. MOD - [2015-06-18 15:27:41 | 005,467,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d49908aa93a23c84847b1f8b1b667860\System.Xml.ni.dll
  53. MOD - [2015-06-18 15:27:38 | 007,991,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\908ba9e296e92b4e14bdc2437edac603\System.ni.dll
  54. MOD - [2015-06-18 15:27:35 | 011,497,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\38bf604432e1a30c954b2ee40d6a2d1c\mscorlib.ni.dll
  55. MOD - [2015-04-17 20:26:21 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll
  56. MOD - [2009-10-29 15:07:34 | 000,197,912 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common\physxcudart_20.dll
  57. MOD - [2009-08-25 17:34:48 | 000,166,992 | ---- | M] () -- C:\Program Files (x86)\Mass Effect 2\Binaries\PhysXExtensions.dll
  58. MOD - [2008-08-20 10:28:46 | 000,167,936 | ---- | M] () -- C:\Program Files (x86)\Mass Effect 2\Binaries\cudart.dll
  59.  
  60.  
  61. [color=#E56717]========== Services (SafeList) ==========[/color]
  62.  
  63. SRV:[b]64bit:[/b] - [2015-07-09 13:26:22 | 000,376,832 | ---- | M] (DownChecker) [Auto | Running] -- C:\Program Files\DownChecker\dchecker.exe -- (DownChecker)
  64. SRV:[b]64bit:[/b] - [2015-06-20 21:34:46 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
  65. SRV:[b]64bit:[/b] - [2015-06-18 14:57:18 | 001,268,568 | ---- | M] (Disc Soft Ltd) [On_Demand | Running] -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe -- (Disc Soft Lite Bus Service)
  66. SRV:[b]64bit:[/b] - [2015-05-25 20:19:13 | 001,255,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
  67. SRV:[b]64bit:[/b] - [2015-04-17 20:36:41 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
  68. SRV:[b]64bit:[/b] - [2014-11-21 04:12:40 | 000,244,736 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
  69. SRV:[b]64bit:[/b] - [2013-08-27 14:32:30 | 000,828,376 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
  70. SRV:[b]64bit:[/b] - [2013-08-27 14:32:14 | 000,747,520 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
  71. SRV:[b]64bit:[/b] - [2009-07-14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
  72. SRV:[b]64bit:[/b] - [2000-01-01 02:00:00 | 000,328,296 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\igfxCUIService.exe -- (igfxCUIService1.0.0.0)
  73. SRV - [2015-07-19 11:57:40 | 000,707,240 | ---- | M] (DTools LIMITED) [Auto | Running] -- C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -- (WindowsMangerProtect)
  74. SRV - [2015-07-19 09:47:40 | 000,165,376 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\03AA02FC-1437292032-05AC-A006-640700080009\hnso581F.tmp -- (vicoqudu)
  75. SRV - [2015-07-19 09:47:33 | 000,199,168 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\03AA02FC-1437292032-05AC-A006-640700080009\jnsy38AB.tmp -- (zejytose)
  76. SRV - [2015-07-19 09:22:24 | 000,613,888 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\03AA02FC-1437292032-05AC-A006-640700080009\knso12ED.tmpfs -- (gefokowe)
  77. SRV - [2015-07-16 05:23:52 | 000,125,112 | ---- | M] (XTab system) [Auto | Running] -- C:\Program Files (x86)\MiuiTab\ProtectService.exe -- (IHProtect Service)
  78. SRV - [2015-07-15 07:06:29 | 000,268,976 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
  79. SRV - [2015-07-04 14:04:14 | 000,148,136 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
  80. SRV - [2015-04-17 20:43:43 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
  81. SRV - [2014-03-20 11:43:04 | 000,398,296 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
  82. SRV - [2014-03-20 11:43:02 | 000,154,584 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
  83. SRV - [2012-07-09 00:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
  84. SRV - [2000-01-01 02:00:00 | 000,279,144 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
  85.  
  86.  
  87. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  88.  
  89. DRV:[b]64bit:[/b] - [2015-06-19 16:09:51 | 000,030,264 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtlitescsibus.sys -- (dtlitescsibus)
  90. DRV:[b]64bit:[/b] - [2015-04-17 21:00:29 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
  91. DRV:[b]64bit:[/b] - [2015-04-17 21:00:29 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
  92. DRV:[b]64bit:[/b] - [2015-04-17 20:34:59 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
  93. DRV:[b]64bit:[/b] - [2015-04-17 20:34:59 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
  94. DRV:[b]64bit:[/b] - [2015-04-17 20:27:28 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
  95. DRV:[b]64bit:[/b] - [2015-04-17 20:25:45 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
  96. DRV:[b]64bit:[/b] - [2015-04-17 20:25:45 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
  97. DRV:[b]64bit:[/b] - [2014-12-21 05:37:40 | 000,094,720 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
  98. DRV:[b]64bit:[/b] - [2014-11-21 04:40:00 | 018,959,360 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
  99. DRV:[b]64bit:[/b] - [2014-11-21 04:08:54 | 000,589,312 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
  100. DRV:[b]64bit:[/b] - [2014-06-17 14:13:54 | 000,941,272 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
  101. DRV:[b]64bit:[/b] - [2014-03-20 11:43:02 | 000,118,272 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
  102. DRV:[b]64bit:[/b] - [2014-02-21 07:56:18 | 000,020,464 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
  103. DRV:[b]64bit:[/b] - [2014-02-21 07:56:14 | 000,791,024 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
  104. DRV:[b]64bit:[/b] - [2014-02-21 07:56:14 | 000,370,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
  105. DRV:[b]64bit:[/b] - [2012-09-01 01:00:02 | 000,032,400 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtVlan620.sys -- (RTVLANPT)
  106. DRV:[b]64bit:[/b] - [2012-07-03 14:32:00 | 000,058,512 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtTeam620.sys -- (RTTEAMPT)
  107. DRV:[b]64bit:[/b] - [2011-06-15 15:11:20 | 000,032,544 | ---- | M] (Realtek ) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\RtNdPt60.sys -- (RtNdPt60)
  108. DRV:[b]64bit:[/b] - [2010-11-21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
  109. DRV:[b]64bit:[/b] - [2010-11-21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
  110. DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
  111. DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
  112. DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
  113. DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
  114. DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
  115. DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
  116. DRV:[b]64bit:[/b] - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
  117. DRV:[b]64bit:[/b] - [2000-01-01 02:00:00 | 004,761,016 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
  118. DRV:[b]64bit:[/b] - [2000-01-01 02:00:00 | 000,455,440 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
  119. DRV:[b]64bit:[/b] - [2000-01-01 02:00:00 | 000,031,472 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvI)
  120. DRV:[b]64bit:[/b] - [2000-01-01 02:00:00 | 000,010,368 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\whfltr2k.sys -- (whfltr2k)
  121. DRV - [2010-03-31 00:00:00 | 000,026,784 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 -- (EverestDriver)
  122. DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
  123.  
  124.  
  125. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  126.  
  127.  
  128. [color=#E56717]========== Internet Explorer ==========[/color]
  129.  
  130. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1437299826&z=f89d1ac5401380eefc81787g5z0ccmao9t3t0m9tab&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM
  131. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1437299826&z=f89d1ac5401380eefc81787g5z0ccmao9t3t0m9tab&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM&q={searchTerms}
  132. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1437299826&z=f89d1ac5401380eefc81787g5z0ccmao9t3t0m9tab&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM&q={searchTerms}
  133. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1437299826&z=f89d1ac5401380eefc81787g5z0ccmao9t3t0m9tab&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM
  134. IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  135. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  136. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1437299826&z=f89d1ac5401380eefc81787g5z0ccmao9t3t0m9tab&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM
  137. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1437299826&z=f89d1ac5401380eefc81787g5z0ccmao9t3t0m9tab&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM&q={searchTerms}
  138. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  139. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1437299826&z=f89d1ac5401380eefc81787g5z0ccmao9t3t0m9tab&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM&q={searchTerms}
  140. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1437299826&z=f89d1ac5401380eefc81787g5z0ccmao9t3t0m9tab&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM
  141. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  142. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  143.  
  144.  
  145. IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  146. IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  147.  
  148. IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  149. IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  150.  
  151. IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  152.  
  153. IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  154.  
  155. IE - HKU\S-1-5-21-414230462-2627049162-3180225127-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1437299826&z=f89d1ac5401380eefc81787g5z0ccmao9t3t0m9tab&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM
  156. IE - HKU\S-1-5-21-414230462-2627049162-3180225127-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1437299826&z=f89d1ac5401380eefc81787g5z0ccmao9t3t0m9tab&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM
  157. IE - HKU\S-1-5-21-414230462-2627049162-3180225127-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehp
  158. IE - HKU\S-1-5-21-414230462-2627049162-3180225127-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pl-PL
  159. IE - HKU\S-1-5-21-414230462-2627049162-3180225127-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F5 B8 A2 BC 34 AC D0 01 [binary data]
  160. IE - HKU\S-1-5-21-414230462-2627049162-3180225127-1000\..\SearchScopes,DefaultScope = {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
  161. IE - HKU\S-1-5-21-414230462-2627049162-3180225127-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM&ts=1437299870&type=default&q={searchTerms}
  162. IE - HKU\S-1-5-21-414230462-2627049162-3180225127-1000\..\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}: "URL" = http://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM&ts=1437299870&type=default&q={searchTerms}
  163. IE - HKU\S-1-5-21-414230462-2627049162-3180225127-1000\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM&ts=1437299870&type=default&q={searchTerms}
  164. IE - HKU\S-1-5-21-414230462-2627049162-3180225127-1000\..\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}: "URL" = http://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM&ts=1437299870&type=default&q={searchTerms}
  165. IE - HKU\S-1-5-21-414230462-2627049162-3180225127-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  166.  
  167. [color=#E56717]========== FireFox ==========[/color]
  168.  
  169. FF - prefs.js..browser.search.countryCode: "PL"
  170. FF - prefs.js..browser.search.defaultenginename: "istartsurf"
  171. FF - prefs.js..browser.search.region: "PL"
  172. FF - prefs.js..browser.search.searchengine.alias: "istartsurf"
  173. FF - prefs.js..browser.search.searchengine.desc: "this is my first firefox searchEngine"
  174. FF - prefs.js..browser.search.searchengine.iconURL: "http://www.istartsurf.com/favicon.ico"
  175. FF - prefs.js..browser.search.searchengine.name: "istartsurf"
  176. FF - prefs.js..browser.search.searchengine.ptid: "face"
  177. FF - prefs.js..browser.search.searchengine.uid: "ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM"
  178. FF - prefs.js..browser.search.searchengine.url: "http://www.istartsurf.com/web/?type=ds&ts=1437299826&z=f89d1ac5401380eefc81787g5z0ccmao9t3t0m9tab&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM&q={searchTerms}"
  179. FF - prefs.js..browser.search.selectedEngine: "istartsurf"
  180. FF - prefs.js..browser.search.useDBForOrder: true
  181. FF - prefs.js..browser.startup.homepage: "http://www.istartsurf.com/?type=hp&ts=1437299826&z=f89d1ac5401380eefc81787g5z0ccmao9t3t0m9tab&from=face&uid=ST500DM002-1BD142_Z6EARCHMXXXXZ6EARCHM"
  182. FF - prefs.js..extensions.enabledAddons: defsearchp%40gmail.com:1.0.0.1039
  183. FF - prefs.js..extensions.enabledAddons: deskCutv2%40gmail.com:0.0.10
  184. FF - prefs.js..extensions.enabledAddons: magit%40magit.com:1.0
  185. FF - prefs.js..extensions.enabledAddons: veggy%40veggyAddon.com:2.107529
  186. FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:39.0
  187.  
  188.  
  189. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll File not found
  190. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll ()
  191. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
  192. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
  193. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.45.2: C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
  194. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2: C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll (Oracle Corporation)
  195. FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
  196.  
  197. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\defsearchp@gmail.com: C:\Users\Kucyk\AppData\Roaming\Mozilla\Firefox\Profiles\1bd1gq3y.default\extensions\defsearchp@gmail.com [2015-07-19 09:54:18 | 000,000,000 | ---D | M]
  198. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\deskCutv2@gmail.com: C:\Users\Kucyk\AppData\Roaming\Mozilla\Firefox\Profiles\1bd1gq3y.default\extensions\deskCutv2@gmail.com [2015-07-19 09:54:26 | 000,000,000 | ---D | M]
  199. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 39.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
  200. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 39.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
  201. FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 39.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
  202. FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 39.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
  203.  
  204. [2015-06-18 16:57:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kucyk\AppData\Roaming\mozilla\Extensions
  205. [2015-07-19 11:57:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kucyk\AppData\Roaming\mozilla\Firefox\Profiles\1bd1gq3y.default\extensions
  206. [2015-07-19 09:54:18 | 000,000,000 | ---D | M] (Default SearchProtected) -- C:\Users\Kucyk\AppData\Roaming\mozilla\Firefox\Profiles\1bd1gq3y.default\extensions\defsearchp@gmail.com
  207. [2015-07-19 09:54:26 | 000,000,000 | ---D | M] ("deskCut") -- C:\Users\Kucyk\AppData\Roaming\mozilla\Firefox\Profiles\1bd1gq3y.default\extensions\deskCutv2@gmail.com
  208. [2015-07-19 10:06:07 | 000,000,000 | ---D | M] ("Magnify It") -- C:\Users\Kucyk\AppData\Roaming\mozilla\Firefox\Profiles\1bd1gq3y.default\extensions\magit@magit.com
  209. [2015-07-19 11:57:08 | 000,000,000 | ---D | M] ("Mozilla Firefox Hotfixer") -- C:\Users\Kucyk\AppData\Roaming\mozilla\Firefox\Profiles\1bd1gq3y.default\extensions\veggy@veggyAddon.com
  210. [2015-07-14 16:01:04 | 005,858,186 | ---- | M] () (No name found) -- C:\Users\Kucyk\AppData\Roaming\mozilla\firefox\profiles\1bd1gq3y.default\extensions\firefox@mega.co.nz.xpi
  211. [2015-07-08 05:28:58 | 000,083,484 | ---- | M] () (No name found) -- C:\Users\Kucyk\AppData\Roaming\mozilla\firefox\profiles\1bd1gq3y.default\extensions\jid1-7NbXi2AqS1oUFw@jetpack.xpi
  212. [2015-06-18 20:30:11 | 000,946,636 | ---- | M] () (No name found) -- C:\Users\Kucyk\AppData\Roaming\mozilla\firefox\profiles\1bd1gq3y.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
  213. [2015-06-21 20:19:38 | 000,067,226 | ---- | M] () (No name found) -- C:\Users\Kucyk\AppData\Roaming\mozilla\firefox\profiles\1bd1gq3y.default\extensions\{f3bd3dd2-2888-44c5-91a2-2caeb33fb898}.xpi
  214. [2015-07-19 11:57:12 | 000,002,124 | ---- | M] () -- C:\Users\Kucyk\AppData\Roaming\mozilla\firefox\profiles\1bd1gq3y.default\searchplugins\istartsurf.xml
  215. [2015-07-19 11:27:00 | 000,005,816 | ---- | M] () -- C:\Users\Kucyk\AppData\Roaming\mozilla\firefox\profiles\1bd1gq3y.default\searchplugins\webssearches.xml
  216. [2015-07-04 14:04:09 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
  217. [2015-07-04 14:04:14 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  218.  
  219. O1 HOSTS File: ([2015-07-19 10:38:56 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
  220. O2 - BHO: (GoodTab Class) - {1F91A9A1-01BA-4c81-863D-3BA0751E1419} - C:\Program Files (x86)\MiuiTab\SupTab.dll (Thinkgood Co. Limited)
  221. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll (Oracle Corporation)
  222. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll (Oracle Corporation)
  223. O4:[b]64bit:[/b] - HKLM..\Run: [cpuminer] C:\Windows\system32\cpuminer-gw64.exe File not found
  224. O4:[b]64bit:[/b] - HKLM..\Run: [gpuminer] C:\Users\Kucyk\AppData\Roaming\cpuminer\sgminer\sgminer.cmd File not found
  225. O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
  226. O4 - HKLM..\Run: [gmsd_pl_005010034] C:\Program Files (x86)\gmsd_pl_005010034\gmsd_pl_005010034.exe ()
  227. O4 - HKLM..\Run: [SmartWeb] C:\Users\Kucyk\AppData\Local\SmartWeb\SmartWebHelper.exe (SoftBrain Technologies Ltd.)
  228. O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.)
  229. O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
  230. O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
  231. O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
  232. O4 - HKU\S-1-5-21-414230462-2627049162-3180225127-1000..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
  233. O4 - HKU\S-1-5-21-414230462-2627049162-3180225127-1000..\Run: [DAEMON Tools Lite Automount] C:\Program Files\DAEMON Tools Lite\DTAgent.exe (Disc Soft Ltd)
  234. O4 - HKU\S-1-5-21-414230462-2627049162-3180225127-1000..\Run: [f.lux] C:\Users\Kucyk\AppData\Local\FluxSoftware\Flux\flux.exe (Flux Software LLC)
  235. O4 - HKU\S-1-5-21-414230462-2627049162-3180225127-1000..\Run: [puush] C:\Program Files (x86)\puush\puush.exe ()
  236. O4 - HKU\S-1-5-21-414230462-2627049162-3180225127-1000..\Run: [uTorrent] C:\Users\Kucyk\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
  237. O4 - HKLM..\RunOnce: [upgmsd_pl_005010034.exe] C:\Users\Kucyk\AppData\Local\gmsd_pl_005010034\upgmsd_pl_005010034.exe ()
  238. O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
  239. O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
  240. O4 - Startup: C:\Users\Kucyk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk = C:\Users\Kucyk\AppData\Local\SmartWeb\SmartWebHelper.exe (SoftBrain Technologies Ltd.)
  241. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
  242. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
  243. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
  244. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  245. O13[b]64bit:[/b] - gopher Prefix: missing
  246. O13 - gopher Prefix: missing
  247. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
  248. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{50F6A89F-EE10-4BFA-9ED5-D62DDD80B2C9}: DhcpNameServer = 192.168.1.1 192.168.1.1
  249. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{50F6A89F-EE10-4BFA-9ED5-D62DDD80B2C9}: NameServer = 52.18.92.32,8.8.8.8
  250. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{846ee342-7039-11de-9d20-806e6f6e6963}: NameServer = 52.18.92.32,8.8.8.8
  251. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  252. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  253. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
  254. O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
  255. O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  256. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  257. O32 - HKLM CDRom: AutoRun - 1
  258. O33 - MountPoints2\{c91d2034-15f4-11e5-aedb-fcaa14aca064}\Shell - "" = AutoRun
  259. O33 - MountPoints2\{c91d2034-15f4-11e5-aedb-fcaa14aca064}\Shell\AutoRun\command - "" = D:\Setup.exe
  260. O33 - MountPoints2\D\Shell - "" = AutoRun
  261. O33 - MountPoints2\D\Shell\AutoRun\command - "" = D:\Setup.exe
  262. O34 - HKLM BootExecute: (autocheck autochk *)
  263. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
  264. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
  265. O35 - HKLM\..comfile [open] -- "%1" %*
  266. O35 - HKLM\..exefile [open] -- "%1" %*
  267. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
  268. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
  269. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  270. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  271. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  272. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  273. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  274.  
  275. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  276.  
  277. [2015-07-19 11:59:17 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup
  278. [2015-07-19 11:58:21 | 000,000,000 | -HSD | C] -- C:\Users\Kucyk\AppData\Roaming\AnyProtectEx
  279. [2015-07-19 11:58:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AnyProtectEx
  280. [2015-07-19 11:57:51 | 000,000,000 | ---D | C] -- C:\ProgramData\IHProtectUpDate
  281. [2015-07-19 11:57:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MiuiTab
  282. [2015-07-19 11:57:40 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsMangerProtect
  283. [2015-07-19 11:57:38 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Local\gmsd_pl_005010034
  284. [2015-07-19 11:57:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\gmsd_pl_005010034
  285. [2015-07-19 11:57:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP
  286. [2015-07-19 11:57:07 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Roaming\istartsurf
  287. [2015-07-19 11:57:00 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Local\SmartWeb
  288. [2015-07-19 11:22:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FriendlyError
  289. [2015-07-19 10:38:25 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\Desktop\MBR Regenerator v4.5
  290. [2015-07-19 10:24:22 | 000,000,000 | ---D | C] -- C:\AdwCleaner
  291. [2015-07-19 10:22:48 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Kucyk\Desktop\OTL.exe
  292. [2015-07-19 10:18:39 | 000,000,000 | ---D | C] -- C:\Program Files\DownChecker
  293. [2015-07-19 10:18:18 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Local\Chromium
  294. [2015-07-19 10:12:58 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Quick Access
  295. [2015-07-19 10:12:15 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Flash
  296. [2015-07-19 10:11:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
  297. [2015-07-19 10:11:26 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
  298. [2015-07-19 09:47:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\03AA02FC-1437292032-05AC-A006-640700080009
  299. [2015-07-19 09:46:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Loader
  300. [2015-07-15 03:18:14 | 000,254,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cewmdm.dll
  301. [2015-07-15 03:18:14 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cewmdm.dll
  302. [2015-07-15 03:18:14 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
  303. [2015-07-15 03:18:14 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
  304. [2015-07-15 03:18:14 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
  305. [2015-07-15 03:18:14 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
  306. [2015-07-15 03:18:13 | 003,154,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
  307. [2015-07-15 03:18:13 | 000,696,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
  308. [2015-07-15 03:18:13 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
  309. [2015-07-15 03:18:13 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
  310. [2015-07-15 03:18:13 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
  311. [2015-07-15 03:18:13 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
  312. [2015-07-15 03:18:13 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSetupUI.dll
  313. [2015-07-15 03:18:13 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
  314. [2015-07-15 03:18:13 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
  315. [2015-07-15 03:18:13 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
  316. [2015-07-15 03:18:13 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wu.upgrade.ps.dll
  317. [2015-07-15 03:18:05 | 003,180,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
  318. [2015-07-15 03:18:05 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RdpGroupPolicyExtension.dll
  319. [2015-07-15 03:18:03 | 005,923,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
  320. [2015-07-15 03:18:03 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
  321. [2015-07-15 03:18:03 | 000,404,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
  322. [2015-07-15 03:18:02 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
  323. [2015-07-15 03:17:52 | 000,479,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
  324. [2015-07-15 03:17:51 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
  325. [2015-07-15 03:16:28 | 000,720,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
  326. [2015-07-15 03:16:28 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
  327. [2015-07-15 03:16:28 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
  328. [2015-07-15 03:16:28 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
  329. [2015-07-15 03:16:28 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
  330. [2015-07-15 03:16:28 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
  331. [2015-07-15 03:16:28 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
  332. [2015-07-15 03:16:28 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
  333. [2015-07-15 03:16:28 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
  334. [2015-07-15 03:16:28 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
  335. [2015-07-15 03:16:27 | 002,052,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
  336. [2015-07-15 03:16:27 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
  337. [2015-07-15 03:16:27 | 000,664,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
  338. [2015-07-15 03:16:27 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
  339. [2015-07-15 03:16:27 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
  340. [2015-07-15 03:16:26 | 002,125,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
  341. [2015-07-15 03:16:26 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
  342. [2015-07-15 03:16:26 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
  343. [2015-07-15 03:16:26 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
  344. [2015-07-15 03:16:26 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
  345. [2015-07-15 03:16:26 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
  346. [2015-07-15 03:16:26 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
  347. [2015-07-15 03:16:25 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
  348. [2015-07-15 03:16:25 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
  349. [2015-07-15 03:16:25 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
  350. [2015-07-15 03:16:25 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
  351. [2015-07-15 03:16:25 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
  352. [2015-07-15 03:16:25 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
  353. [2015-07-15 03:16:24 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
  354. [2015-07-15 03:16:24 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
  355. [2015-07-15 03:16:24 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
  356. [2015-07-15 03:16:23 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
  357. [2015-07-15 03:16:23 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
  358. [2015-07-15 03:16:23 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
  359. [2015-07-15 03:14:11 | 007,077,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
  360. [2015-07-15 03:14:11 | 000,429,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
  361. [2015-07-15 03:14:10 | 006,131,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
  362. [2015-07-15 03:14:10 | 001,057,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdvidcrl.dll
  363. [2015-07-15 03:14:10 | 000,856,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdvidcrl.dll
  364. [2015-07-15 03:14:10 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
  365. [2015-07-15 03:14:10 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
  366. [2015-07-15 03:14:09 | 002,087,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
  367. [2015-07-15 03:14:07 | 001,480,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
  368. [2015-07-15 03:14:07 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
  369. [2015-07-15 03:14:07 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
  370. [2015-07-15 03:13:55 | 001,461,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
  371. [2015-07-15 03:13:55 | 001,216,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
  372. [2015-07-15 03:13:54 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
  373. [2015-07-15 03:13:54 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
  374. [2015-07-15 03:13:54 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
  375. [2015-07-15 03:13:54 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
  376. [2015-07-15 03:13:54 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
  377. [2015-07-15 03:13:54 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
  378. [2015-07-15 03:13:54 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
  379. [2015-07-15 03:13:54 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
  380. [2015-07-15 03:13:54 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
  381. [2015-07-15 03:13:54 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
  382. [2015-07-15 03:13:54 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptbase.dll
  383. [2015-07-15 03:13:54 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
  384. [2015-07-15 03:13:54 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
  385. [2015-07-15 03:13:39 | 003,242,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
  386. [2015-07-15 03:13:39 | 001,941,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
  387. [2015-07-15 03:13:39 | 001,805,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
  388. [2015-07-15 03:13:39 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msihnd.dll
  389. [2015-07-15 03:13:39 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msihnd.dll
  390. [2015-07-15 03:13:39 | 000,112,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
  391. [2015-07-15 03:13:39 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msimsg.dll
  392. [2015-07-15 03:13:39 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msimsg.dll
  393. [2015-07-15 03:13:27 | 001,085,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
  394. [2015-07-15 03:13:26 | 001,145,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
  395. [2015-07-15 03:13:26 | 000,765,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
  396. [2015-07-15 03:13:26 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
  397. [2015-07-15 03:13:26 | 000,433,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
  398. [2015-07-15 03:13:26 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
  399. [2015-07-15 03:13:26 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
  400. [2015-07-15 03:13:26 | 000,017,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CompatTelRunner.exe
  401. [2015-07-15 03:13:25 | 000,372,224 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
  402. [2015-07-15 03:13:25 | 000,299,008 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
  403. [2015-07-15 03:13:25 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
  404. [2015-07-15 03:13:25 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
  405. [2015-07-15 03:13:25 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
  406. [2015-07-15 03:13:25 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll
  407. [2015-07-15 03:13:25 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
  408. [2015-07-15 03:13:25 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll
  409. [2015-07-09 21:06:29 | 018,524,336 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
  410. [2015-07-09 06:29:30 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Roaming\Opera Software
  411. [2015-07-09 06:29:30 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Local\Opera Software
  412. [2015-07-09 06:28:42 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Roaming\CDisplayEx
  413. [2015-07-09 06:28:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera
  414. [2015-07-09 06:28:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDisplayEx
  415. [2015-07-09 06:28:36 | 000,000,000 | ---D | C] -- C:\Program Files\CDisplayEx
  416. [2015-07-09 06:24:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDisplay
  417. [2015-07-09 06:24:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CDisplay
  418. [2015-07-09 05:30:54 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\Desktop\manga
  419. [2015-07-09 05:20:44 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MangaRipper
  420. [2015-07-09 05:20:32 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Local\Deployment
  421. [2015-07-09 05:20:32 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Local\Apps
  422. [2015-07-04 17:11:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
  423. [2015-07-04 17:11:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
  424. [2015-07-04 17:11:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
  425. [2015-07-04 17:10:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BioWare
  426. [2015-07-04 16:56:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mass Effect 2
  427. [2015-07-04 14:04:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
  428. [2015-07-03 13:11:20 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
  429. [2015-06-27 19:31:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy GIF Animator
  430. [2015-06-27 19:31:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Easy GIF Animator
  431. [2015-06-27 19:28:32 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Local\gtk-2.0
  432. [2015-06-27 19:27:42 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\.thumbnails
  433. [2015-06-27 19:25:12 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Local\fontconfig
  434. [2015-06-27 19:25:11 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Local\gegl-0.2
  435. [2015-06-27 19:25:11 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\.gimp-2.8
  436. [2015-06-27 19:21:38 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP 2
  437. [2015-06-24 13:14:04 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\Desktop\PIKERS-ŚPIESZ SIĘ MNIE KOCHAĆ MIXTAPE 2015
  438. [2015-06-21 17:03:10 | 000,778,416 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
  439. [2015-06-21 17:03:10 | 000,142,512 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
  440. [2015-06-21 17:01:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
  441. [2015-06-21 17:01:09 | 000,097,888 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
  442. [2015-06-21 17:00:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
  443. [2015-06-21 17:00:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
  444. [2015-06-21 17:00:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
  445. [2015-06-21 16:52:26 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
  446. [2015-06-21 04:02:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
  447. [2015-06-20 03:19:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Damian Pasternak
  448. [2015-06-19 22:10:48 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Roaming\TS3Client
  449. [2015-06-19 22:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
  450. [2015-06-19 22:10:46 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client
  451. [2015-06-19 18:30:09 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Roaming\livestreamer
  452. [2015-06-19 18:30:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Livestreamer
  453. [2015-06-19 17:35:33 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Roaming\LolClient
  454. [2015-06-19 16:50:49 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Roaming\vlc
  455. [2015-06-19 16:49:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
  456. [2015-06-19 16:49:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
  457. [2015-06-19 16:26:12 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\Documents\BioWare
  458. [2015-06-19 16:25:27 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
  459. [2015-06-19 16:25:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mass Effect
  460. [2015-06-19 16:13:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGB-GT
  461. [2015-06-19 16:13:34 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Local\Disc_Soft_Ltd
  462. [2015-06-19 16:13:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
  463. [2015-06-19 16:09:51 | 000,030,264 | ---- | C] (Disc Soft Ltd) -- C:\Windows\SysNative\drivers\dtlitescsibus.sys
  464. [2015-06-19 16:09:51 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Roaming\DAEMON Tools Lite
  465. [2015-06-19 16:09:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
  466. [2015-06-19 16:09:49 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
  467. [2015-06-19 16:09:27 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
  468. [2015-06-19 14:57:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Riot Games
  469. [2015-06-19 14:42:14 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
  470. [2015-06-19 14:42:14 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
  471. [2015-06-19 14:42:11 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
  472. [2015-06-19 14:41:39 | 000,000,000 | ---D | C] -- C:\Riot Games
  473. [2015-06-19 14:38:42 | 000,000,000 | ---D | C] -- C:\Users\Kucyk\AppData\Roaming\Riot Games
  474. [2 C:\Users\Kucyk\AppData\Local\*.tmp files -> C:\Users\Kucyk\AppData\Local\*.tmp -> ]
  475. [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
  476.  
  477. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  478.  
  479. [2015-07-19 11:59:27 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\APSnotifierPP3.job
  480. [2015-07-19 11:59:26 | 000,000,378 | ---- | M] () -- C:\Windows\tasks\APSnotifierPP1.job
  481. [2015-07-19 11:59:26 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\APSnotifierPP2.job
  482. [2015-07-19 11:59:17 | 000,001,045 | ---- | M] () -- C:\Users\Kucyk\Desktop\AnyProtect.lnk
  483. [2015-07-19 11:57:07 | 000,001,276 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
  484. [2015-07-19 11:57:07 | 000,001,265 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
  485. [2015-07-19 11:57:00 | 000,001,058 | ---- | M] () -- C:\Users\Kucyk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk
  486. [2015-07-19 11:25:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  487. [2015-07-19 11:25:52 | 3135,516,672 | -HS- | M] () -- C:\hiberfil.sys
  488. [2015-07-19 11:25:24 | 000,016,656 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  489. [2015-07-19 11:25:24 | 000,016,656 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  490. [2015-07-19 11:24:30 | 002,248,704 | ---- | M] () -- C:\Users\Kucyk\Desktop\adwcleaner_4.208.exe
  491. [2015-07-19 11:23:06 | 000,000,000 | ---- | M] () -- C:\Windows\prleth.sys
  492. [2015-07-19 11:23:06 | 000,000,000 | ---- | M] () -- C:\Windows\hgfs.sys
  493. [2015-07-19 11:05:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
  494. [2015-07-19 10:38:56 | 000,000,824 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
  495. [2015-07-19 10:38:20 | 001,046,170 | ---- | M] () -- C:\Users\Kucyk\Desktop\MBR Regenerator v4.5.rar
  496. [2015-07-19 10:25:59 | 000,000,352 | ---- | M] () -- C:\Windows\tasks\Bidaily Synchronize Task[973b].job
  497. [2015-07-19 10:22:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kucyk\Desktop\OTL.exe
  498. [2015-07-19 10:17:51 | 000,000,004 | ---- | M] () -- C:\Windows\SysWow64\029B560A371F4E00AB32838EBC01B9E7
  499. [2015-07-19 10:11:27 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
  500. [2015-07-16 12:49:57 | 057,078,416 | ---- | M] () -- C:\Users\Kucyk\Desktop\2012-02-11_-331782835.rar
  501. [2015-07-16 03:24:28 | 000,267,360 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
  502. [2015-07-15 07:06:29 | 000,778,416 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
  503. [2015-07-15 07:06:29 | 000,142,512 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
  504. [2015-07-15 07:06:25 | 018,524,336 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
  505. [2015-07-13 05:31:29 | 000,000,880 | ---- | M] () -- C:\Users\Kucyk\Desktop\CDisplayEx.lnk
  506. [2015-07-12 14:39:32 | 000,002,920 | ---- | M] () -- C:\Users\Kucyk\AppData\Local\recently-used.xbel
  507. [2015-07-09 19:59:59 | 000,017,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CompatTelRunner.exe
  508. [2015-07-09 19:58:56 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
  509. [2015-07-09 19:58:56 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
  510. [2015-07-09 19:58:56 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
  511. [2015-07-09 19:58:55 | 003,154,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
  512. [2015-07-09 19:58:55 | 000,696,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
  513. [2015-07-09 19:58:55 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
  514. [2015-07-09 19:58:41 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
  515. [2015-07-09 19:58:34 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WinSetupUI.dll
  516. [2015-07-09 19:58:31 | 000,765,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
  517. [2015-07-09 19:58:26 | 000,433,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
  518. [2015-07-09 19:58:25 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wu.upgrade.ps.dll
  519. [2015-07-09 19:58:24 | 001,085,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
  520. [2015-07-09 19:58:23 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
  521. [2015-07-09 19:58:23 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
  522. [2015-07-09 19:58:20 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
  523. [2015-07-09 19:58:20 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
  524. [2015-07-09 19:50:11 | 001,145,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
  525. [2015-07-09 19:43:25 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
  526. [2015-07-09 19:43:25 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
  527. [2015-07-09 19:43:25 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
  528. [2015-07-09 19:43:24 | 000,566,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
  529. [2015-07-09 19:42:47 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
  530. [2015-07-09 09:27:30 | 001,669,190 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
  531. [2015-07-09 09:27:30 | 000,740,098 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
  532. [2015-07-09 09:27:30 | 000,653,930 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
  533. [2015-07-09 09:27:30 | 000,155,672 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
  534. [2015-07-09 09:27:30 | 000,121,802 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
  535. [2015-07-09 06:24:52 | 000,000,943 | ---- | M] () -- C:\Users\Kucyk\Desktop\CDisplay.lnk
  536. [2015-07-09 05:20:44 | 000,000,352 | ---- | M] () -- C:\Users\Kucyk\Desktop\MangaRipper.appref-ms
  537. [2015-07-09 05:20:29 | 000,002,246 | ---- | M] () -- C:\Users\Kucyk\Desktop\MangaRipper.application
  538. [2015-07-04 20:07:11 | 002,087,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
  539. [2015-07-04 17:11:21 | 000,001,097 | ---- | M] () -- C:\Users\Kucyk\Desktop\Mass Effect 2.lnk
  540. [2015-07-03 20:05:54 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll
  541. [2015-07-03 20:05:43 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
  542. [2015-07-03 20:05:34 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll
  543. [2015-07-03 20:05:26 | 000,046,080 | ---- | M] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
  544. [2015-07-03 19:56:59 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
  545. [2015-07-03 19:56:52 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
  546. [2015-07-03 18:52:31 | 000,372,224 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
  547. [2015-07-03 18:42:38 | 000,299,008 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
  548. [2015-07-03 04:07:51 | 000,469,156 | ---- | M] () -- C:\Users\Kucyk\Desktop\1434930028407862101.webm
  549. [2015-07-02 22:46:34 | 000,479,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
  550. [2015-07-02 22:12:26 | 000,615,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
  551. [2015-07-01 22:49:45 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
  552. [2015-07-01 22:49:45 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
  553. [2015-07-01 22:49:42 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
  554. [2015-07-01 22:49:41 | 001,216,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
  555. [2015-07-01 22:49:23 | 000,309,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
  556. [2015-07-01 22:49:11 | 001,461,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
  557. [2015-07-01 22:48:34 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cryptbase.dll
  558. [2015-07-01 22:47:18 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
  559. [2015-07-01 22:43:51 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
  560. [2015-07-01 22:43:37 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
  561. [2015-07-01 22:39:24 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
  562. [2015-07-01 22:29:46 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
  563. [2015-07-01 22:27:04 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
  564. [2015-07-01 22:26:52 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
  565. [2015-07-01 22:24:59 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
  566. [2015-06-27 19:31:47 | 000,001,051 | ---- | M] () -- C:\Users\Kucyk\Desktop\Easy GIF Animator.lnk
  567. [2015-06-27 04:47:11 | 000,814,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
  568. [2015-06-27 04:43:26 | 005,923,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
  569. [2015-06-27 03:58:17 | 000,620,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
  570. [2015-06-21 17:44:08 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
  571. [2015-06-21 17:00:56 | 000,097,888 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
  572. [2015-06-20 22:06:50 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
  573. [2015-06-20 21:50:10 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
  574. [2015-06-20 21:49:17 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
  575. [2015-06-20 21:49:09 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
  576. [2015-06-20 21:49:08 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
  577. [2015-06-20 21:48:29 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
  578. [2015-06-20 21:39:43 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
  579. [2015-06-20 21:34:46 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
  580. [2015-06-20 21:34:45 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
  581. [2015-06-20 21:34:42 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
  582. [2015-06-20 21:25:28 | 000,968,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
  583. [2015-06-20 21:21:39 | 000,490,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
  584. [2015-06-20 21:13:07 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
  585. [2015-06-20 21:08:16 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
  586. [2015-06-20 21:07:37 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
  587. [2015-06-20 21:05:03 | 000,316,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
  588. [2015-06-20 20:48:40 | 000,720,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
  589. [2015-06-20 20:48:26 | 000,801,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
  590. [2015-06-20 20:46:53 | 001,359,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
  591. [2015-06-20 20:46:48 | 002,125,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
  592. [2015-06-20 20:02:50 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
  593. [2015-06-20 03:19:01 | 000,001,192 | ---- | M] () -- C:\Users\Public\Desktop\CWK.lnk
  594. [2015-06-20 03:12:41 | 001,640,180 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  595. [2015-06-19 22:10:46 | 000,000,967 | ---- | M] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
  596. [2015-06-19 20:25:35 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
  597. [2015-06-19 20:24:43 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
  598. [2015-06-19 20:24:27 | 000,341,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
  599. [2015-06-19 20:23:26 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
  600. [2015-06-19 20:16:51 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
  601. [2015-06-19 20:13:15 | 000,664,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
  602. [2015-06-19 20:13:10 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
  603. [2015-06-19 19:57:45 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
  604. [2015-06-19 19:53:49 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
  605. [2015-06-19 19:52:57 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
  606. [2015-06-19 19:40:04 | 002,052,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
  607. [2015-06-19 19:39:13 | 001,155,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
  608. [2015-06-19 19:11:02 | 000,710,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
  609. [2015-06-19 16:49:13 | 000,001,066 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
  610. [2015-06-19 16:25:27 | 000,001,318 | ---- | M] () -- C:\Users\Public\Desktop\Mass Effect.lnk
  611. [2015-06-19 16:09:51 | 000,030,264 | ---- | M] (Disc Soft Ltd) -- C:\Windows\SysNative\drivers\dtlitescsibus.sys
  612. [2015-06-19 16:09:51 | 000,001,773 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
  613. [2015-06-19 14:41:39 | 000,001,613 | ---- | M] () -- C:\Users\Public\Desktop\League of Legends.lnk
  614. [2 C:\Users\Kucyk\AppData\Local\*.tmp files -> C:\Users\Kucyk\AppData\Local\*.tmp -> ]
  615. [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
  616.  
  617. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  618.  
  619. [2015-07-19 11:59:19 | 000,000,376 | ---- | C] () -- C:\Windows\tasks\APSnotifierPP3.job
  620. [2015-07-19 11:59:18 | 000,000,378 | ---- | C] () -- C:\Windows\tasks\APSnotifierPP1.job
  621. [2015-07-19 11:59:18 | 000,000,376 | ---- | C] () -- C:\Windows\tasks\APSnotifierPP2.job
  622. [2015-07-19 11:59:17 | 000,001,045 | ---- | C] () -- C:\Users\Kucyk\Desktop\AnyProtect.lnk
  623. [2015-07-19 11:57:00 | 000,001,058 | ---- | C] () -- C:\Users\Kucyk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk
  624. [2015-07-19 11:24:30 | 002,248,704 | ---- | C] () -- C:\Users\Kucyk\Desktop\adwcleaner_4.208.exe
  625. [2015-07-19 11:23:06 | 000,000,000 | ---- | C] () -- C:\Windows\prleth.sys
  626. [2015-07-19 11:23:06 | 000,000,000 | ---- | C] () -- C:\Windows\hgfs.sys
  627. [2015-07-19 10:38:20 | 001,046,170 | ---- | C] () -- C:\Users\Kucyk\Desktop\MBR Regenerator v4.5.rar
  628. [2015-07-19 10:19:05 | 000,000,352 | ---- | C] () -- C:\Windows\tasks\Bidaily Synchronize Task[973b].job
  629. [2015-07-19 10:11:27 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
  630. [2015-07-19 10:08:23 | 000,001,277 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
  631. [2015-07-19 10:08:23 | 000,001,265 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
  632. [2015-07-19 09:52:02 | 000,000,004 | ---- | C] () -- C:\Windows\SysWow64\029B560A371F4E00AB32838EBC01B9E7
  633. [2015-07-16 12:04:09 | 057,078,416 | ---- | C] () -- C:\Users\Kucyk\Desktop\2012-02-11_-331782835.rar
  634. [2015-07-12 14:39:32 | 000,002,920 | ---- | C] () -- C:\Users\Kucyk\AppData\Local\recently-used.xbel
  635. [2015-07-09 06:29:28 | 000,001,288 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
  636. [2015-07-09 06:29:28 | 000,001,276 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
  637. [2015-07-09 06:28:36 | 000,000,880 | ---- | C] () -- C:\Users\Kucyk\Desktop\CDisplayEx.lnk
  638. [2015-07-09 06:24:52 | 000,000,943 | ---- | C] () -- C:\Users\Kucyk\Desktop\CDisplay.lnk
  639. [2015-07-09 05:20:44 | 000,000,352 | ---- | C] () -- C:\Users\Kucyk\Desktop\MangaRipper.appref-ms
  640. [2015-07-09 05:20:29 | 000,002,246 | ---- | C] () -- C:\Users\Kucyk\Desktop\MangaRipper.application
  641. [2015-07-04 17:11:21 | 000,001,097 | ---- | C] () -- C:\Users\Kucyk\Desktop\Mass Effect 2.lnk
  642. [2015-07-03 04:07:51 | 000,469,156 | ---- | C] () -- C:\Users\Kucyk\Desktop\1434930028407862101.webm
  643. [2015-06-27 19:31:47 | 000,001,051 | ---- | C] () -- C:\Users\Kucyk\Desktop\Easy GIF Animator.lnk
  644. [2015-06-27 19:21:59 | 000,000,894 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
  645. [2015-06-21 17:44:08 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
  646. [2015-06-21 17:03:10 | 000,000,930 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
  647. [2015-06-20 03:19:01 | 000,001,204 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CWK.lnk
  648. [2015-06-20 03:19:01 | 000,001,192 | ---- | C] () -- C:\Users\Public\Desktop\CWK.lnk
  649. [2015-06-19 22:10:46 | 000,000,967 | ---- | C] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
  650. [2015-06-19 16:49:13 | 000,001,066 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
  651. [2015-06-19 16:25:27 | 000,001,318 | ---- | C] () -- C:\Users\Public\Desktop\Mass Effect.lnk
  652. [2015-06-19 16:09:51 | 000,001,773 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
  653. [2015-06-19 14:41:39 | 000,001,613 | ---- | C] () -- C:\Users\Public\Desktop\League of Legends.lnk
  654. [2015-06-18 17:37:24 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
  655. [2015-06-18 17:35:23 | 000,186,368 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
  656. [2015-06-18 17:35:22 | 016,646,824 | ---- | C] () -- C:\Windows\SysWow64\igd11dxva32.dll
  657. [2015-06-18 17:26:47 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
  658. [2015-06-18 17:07:40 | 001,640,180 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  659. [2014-11-21 04:33:08 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
  660. [2014-11-21 04:33:08 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
  661. [2014-11-21 04:16:24 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
  662. [2014-11-21 04:16:24 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
  663. [2014-11-20 21:35:00 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
  664. [2013-08-27 14:00:08 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
  665.  
  666. [color=#E56717]========== ZeroAccess Check ==========[/color]
  667.  
  668. [2009-07-14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
  669.  
  670. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  671.  
  672. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  673.  
  674. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
  675.  
  676. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  677.  
  678. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  679. "" = C:\Windows\SysNative\shell32.dll -- [2015-04-17 20:58:35 | 014,177,280 | ---- | M] (Microsoft Corporation)
  680. "ThreadingModel" = Apartment
  681.  
  682. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  683. "" = %SystemRoot%\system32\shell32.dll -- [2015-04-17 20:58:36 | 012,875,264 | ---- | M] (Microsoft Corporation)
  684. "ThreadingModel" = Apartment
  685.  
  686. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
  687. "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
  688. "ThreadingModel" = Free
  689.  
  690. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  691. "" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
  692. "ThreadingModel" = Free
  693.  
  694. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
  695. "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
  696. "ThreadingModel" = Both
  697.  
  698. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  699.  
  700. [color=#E56717]========== LOP Check ==========[/color]
  701.  
  702. [2015-07-19 11:58:21 | 000,000,000 | -HSD | M] -- C:\Users\Kucyk\AppData\Roaming\AnyProtectEx
  703. [2015-07-09 09:23:16 | 000,000,000 | ---D | M] -- C:\Users\Kucyk\AppData\Roaming\CDisplayEx
  704. [2015-07-19 10:11:58 | 000,000,000 | ---D | M] -- C:\Users\Kucyk\AppData\Roaming\DAEMON Tools Lite
  705. [2015-07-19 11:57:07 | 000,000,000 | ---D | M] -- C:\Users\Kucyk\AppData\Roaming\istartsurf
  706. [2015-06-18 17:15:13 | 000,000,000 | ---D | M] -- C:\Users\Kucyk\AppData\Roaming\library_dir
  707. [2015-06-19 18:31:08 | 000,000,000 | ---D | M] -- C:\Users\Kucyk\AppData\Roaming\livestreamer
  708. [2015-06-19 17:35:33 | 000,000,000 | ---D | M] -- C:\Users\Kucyk\AppData\Roaming\LolClient
  709. [2015-06-18 23:43:18 | 000,000,000 | ---D | M] -- C:\Users\Kucyk\AppData\Roaming\MPC-HC
  710. [2015-07-09 06:29:30 | 000,000,000 | ---D | M] -- C:\Users\Kucyk\AppData\Roaming\Opera Software
  711. [2015-06-18 20:28:46 | 000,000,000 | ---D | M] -- C:\Users\Kucyk\AppData\Roaming\puush
  712. [2015-06-19 14:42:26 | 000,000,000 | ---D | M] -- C:\Users\Kucyk\AppData\Roaming\Riot Games
  713. [2015-07-19 10:11:58 | 000,000,000 | ---D | M] -- C:\Users\Kucyk\AppData\Roaming\TS3Client
  714. [2015-07-19 12:03:00 | 000,000,000 | ---D | M] -- C:\Users\Kucyk\AppData\Roaming\uTorrent
  715.  
  716. [color=#E56717]========== Purity Check ==========[/color]
  717.  
  718.  
  719.  
  720. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!