API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 15th, 2015
354
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 45.18 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 2015-08-15 07:57:28 - Run 1
  2. OTL by OldTimer - Version 3.2.69.0 Folder = E:\
  3. Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
  4. Internet Explorer (Version = 8.0.6001.18702)
  5. Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
  6.  
  7. 2,00 Gb Total Physical Memory | 1,02 Gb Available Physical Memory | 51,12% Memory free
  8. 3,35 Gb Paging File | 2,53 Gb Available in Paging File | 75,54% Paging File free
  9. Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
  12. Drive C: | 19,53 Gb Total Space | 3,60 Gb Free Space | 18,41% Space Free | Partition Type: NTFS
  13. Drive E: | 106,45 Gb Total Space | 34,11 Gb Free Space | 32,04% Space Free | Partition Type: NTFS
  14. Drive F: | 106,89 Gb Total Space | 34,48 Gb Free Space | 32,26% Space Free | Partition Type: NTFS
  15.  
  16. Computer Name: KOMP | User Name: admin | Logged in as Administrator.
  17. Boot Mode: Normal | Scan Mode: All users
  18. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  19.  
  20. [color=#E56717]========== Processes (SafeList) ==========[/color]
  21.  
  22. PRC - [2015-08-15 07:56:17 | 000,602,112 | ---- | M] (OldTimer Tools) -- E:\OTL.exe
  23. PRC - [2015-08-15 00:09:51 | 000,377,000 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
  24. PRC - [2015-07-28 23:21:29 | 006,109,776 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
  25. PRC - [2015-07-28 23:21:27 | 000,146,600 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
  26. PRC - [2014-01-21 04:00:39 | 011,897,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SoftwareDistribution\Download\Install\ndp40-kb2898855-v2-x86.exe
  27. PRC - [2014-01-08 05:28:12 | 000,078,992 | ---- | M] (Microsoft Corporation) -- f:\393e3cc83be2feb6e526\Setup.exe
  28. PRC - [2008-04-14 19:21:49 | 000,196,608 | ---- | M] () -- \\?\C:\WINDOWS\System32\WBEM\WMIADAP.EXE
  29. PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
  30. PRC - [2006-10-10 14:11:08 | 000,827,392 | ---- | M] () -- C:\WINDOWS\vsnp325.exe
  31.  
  32.  
  33. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  34.  
  35. MOD - [2015-08-14 20:55:18 | 002,962,432 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\15081406\algo.dll
  36. MOD - [2015-07-28 23:21:28 | 000,102,864 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\log.dll
  37. MOD - [2015-07-28 23:21:27 | 000,123,976 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
  38. MOD - [2015-04-30 22:18:59 | 040,540,672 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
  39. MOD - [2014-03-10 23:01:16 | 011,906,048 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\f0b0625c2db624ba9c97ad1b12490d79\System.Web.ni.dll
  40. MOD - [2014-03-10 22:16:52 | 000,978,944 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b6e70acd99dc22e29b7fc8f9ac340c4\System.Configuration.ni.dll
  41. MOD - [2014-03-10 22:13:09 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
  42. MOD - [2014-03-10 22:09:39 | 005,462,016 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\7faf645dc46781225cb722edf9e1e738\System.Xml.ni.dll
  43. MOD - [2014-03-10 22:09:33 | 012,434,432 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\1cdfe1998ad6794db3237006906c6fa2\System.Windows.Forms.ni.dll
  44. MOD - [2014-03-10 22:09:19 | 001,593,344 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\424bff3295c6e7539cc6df62b9425bd0\System.Drawing.ni.dll
  45. MOD - [2014-03-10 22:07:33 | 007,977,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\4b0455ae94e3cecca4bb3ba8c96828c9\System.ni.dll
  46. MOD - [2014-03-10 22:07:24 | 011,497,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\dae02331a443fb52216ca83292cb2f21\mscorlib.ni.dll
  47. MOD - [2014-01-07 11:28:22 | 000,016,384 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
  48. MOD - [2013-12-23 03:15:00 | 000,270,336 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
  49. MOD - [2010-03-16 12:22:12 | 000,014,848 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AxInterop.WBOCXLib.dll
  50. MOD - [2008-04-14 19:21:49 | 000,196,608 | ---- | M] () -- \\?\C:\WINDOWS\System32\WBEM\WMIADAP.EXE
  51. MOD - [2008-04-14 19:20:57 | 000,214,528 | ---- | M] () -- \\?\C:\WINDOWS\System32\WBEM\wbemcomn.dll
  52. MOD - [2006-10-10 14:11:08 | 000,827,392 | ---- | M] () -- C:\WINDOWS\vsnp325.exe
  53.  
  54.  
  55. [color=#E56717]========== Services (SafeList) ==========[/color]
  56.  
  57. SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)
  58. SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
  59. SRV - [2015-08-15 00:09:49 | 000,149,160 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
  60. SRV - [2015-07-28 23:21:27 | 000,146,600 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
  61. SRV - [2011-06-08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
  62. SRV - [2010-03-16 21:13:56 | 000,072,704 | ---- | M] (Macrovision ) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield Shared\Service\InstallShield Licensing Service.exe -- (InstallShield Licensing Service)
  63.  
  64.  
  65. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  66.  
  67. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
  68. DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\wanatw4.sys -- (wanatw)
  69. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
  70. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
  71. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
  72. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
  73. DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
  74. DRV - File not found [Kernel | On_Demand | Stopped] -- D:\CDriver.sys -- (MSICDSetup)
  75. DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
  76. DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
  77. DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
  78. DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\admin\USTAWI~1\Temp\ddxgb.sys -- (ddxgb)
  79. DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
  80. DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\admin\USTAWI~1\Temp\ASFWHide -- (ASFWHide)
  81. DRV - File not found [Kernel | On_Demand | Unknown] -- -- (as1xw6ls)
  82. DRV - [2015-07-28 23:21:31 | 000,433,264 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
  83. DRV - [2015-07-28 23:21:31 | 000,208,664 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
  84. DRV - [2015-07-28 23:21:31 | 000,161,472 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswStmXP.sys -- (aswStmXP)
  85. DRV - [2015-07-28 23:21:31 | 000,076,000 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswMonFlt.sys -- (aswMonFlt)
  86. DRV - [2015-07-28 23:21:31 | 000,057,888 | ---- | M] (AVAST Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
  87. DRV - [2015-07-28 23:21:31 | 000,055,200 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
  88. DRV - [2015-07-28 23:21:31 | 000,049,776 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
  89. DRV - [2015-07-28 23:21:31 | 000,024,016 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aswHwid.sys -- (aswHwid)
  90. DRV - [2015-07-28 23:21:23 | 000,788,784 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswSnx.sys -- (aswSnx)
  91. DRV - [2015-03-27 20:16:23 | 000,279,712 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
  92. DRV - [2015-03-27 20:16:23 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
  93. DRV - [2013-12-23 10:33:54 | 006,852,096 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
  94. DRV - [2012-05-14 08:12:12 | 000,103,040 | R--- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtihdXP3.sys -- (AtiHDAudioService)
  95. DRV - [2011-05-18 10:12:32 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
  96. DRV - [2011-05-18 10:12:28 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
  97. DRV - [2010-09-28 17:07:06 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri)
  98. DRV - [2010-09-28 17:06:37 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
  99. DRV - [2010-09-28 17:06:37 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
  100. DRV - [2010-07-09 13:18:54 | 000,020,328 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz134_x32.sys -- (cpuz134)
  101. DRV - [2010-07-06 04:13:10 | 000,234,392 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
  102. DRV - [2010-06-11 13:11:22 | 000,029,720 | ---- | M] (http://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\libusb0.sys -- (libusb0)
  103. DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
  104. DRV - [2008-04-13 20:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
  105. DRV - [2007-12-28 15:07:19 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
  106. DRV - [2007-08-16 21:55:45 | 000,682,232 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
  107. DRV - [2007-07-12 13:58:06 | 000,004,716 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
  108. DRV - [2007-03-07 16:58:30 | 010,260,864 | ---- | M] (Sonix Co. Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp325.sys -- (SNP325)
  109. DRV - [2007-02-10 23:55:50 | 000,013,824 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Amusbprt.sys -- (Amusbprt)
  110. DRV - [2007-01-24 17:46:48 | 000,008,704 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Amfilter.sys -- (Amfilter)
  111. DRV - [2006-11-15 08:34:00 | 004,225,920 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService)
  112. DRV - [2006-11-02 07:00:08 | 000,039,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (winusb)
  113. DRV - [2006-09-24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
  114. DRV - [2006-09-18 15:59:08 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se27unic.sys -- (se27unic)
  115. DRV - [2006-09-18 15:59:02 | 000,086,560 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27obex.sys -- (SE27obex)
  116. DRV - [2006-09-18 15:59:00 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se27nd5.sys -- (se27nd5)
  117. DRV - [2006-09-18 15:58:58 | 000,088,688 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27mgmt.sys -- (SE27mgmt)
  118. DRV - [2006-09-18 15:58:54 | 000,097,184 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27mdm.sys -- (SE27mdm)
  119. DRV - [2006-09-18 15:58:52 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27mdfl.sys -- (SE27mdfl)
  120. DRV - [2006-09-18 15:58:48 | 000,061,600 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27bus.sys -- (SE27bus)
  121. DRV - [2005-11-03 16:40:07 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfvfs02.sys -- (sfvfs02)
  122. DRV - [2005-08-10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01)
  123. DRV - [2005-05-16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02)
  124. DRV - [2002-05-07 11:44:04 | 000,081,700 | ---- | M] (FUJI PHOTO FILM CO.,LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\V4CB012D.SYS -- (FINEPIX_PCC)
  125. DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)
  126.  
  127.  
  128. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  129.  
  130.  
  131. [color=#E56717]========== Internet Explorer ==========[/color]
  132.  
  133. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=idd&from=idd&uid=5RY037BJ_ST3250310AS&ts=1346235712
  134. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.v9.com/?utm_source=b&utm_medium=idd&from=idd&uid=5RY037BJ_ST3250310AS&ts=1346235712
  135. IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
  136. IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
  137.  
  138.  
  139. IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  140.  
  141. IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  142.  
  143.  
  144.  
  145. IE - HKU\S-1-5-21-854245398-602162358-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=idd&from=idd&uid=5RY037BJ_ST3250310AS&ts=1346235712
  146. IE - HKU\S-1-5-21-854245398-602162358-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
  147. IE - HKU\S-1-5-21-854245398-602162358-839522115-1004\..\SearchScopes,DefaultScope = {5FFAC8DD-C610-4A53-B524-425CDDD99B75}
  148. IE - HKU\S-1-5-21-854245398-602162358-839522115-1004\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.v9.com/web/?q={searchTerms}
  149. IE - HKU\S-1-5-21-854245398-602162358-839522115-1004\..\SearchScopes\{5FFAC8DD-C610-4A53-B524-425CDDD99B75}: "URL" = http://www.google.pl/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}&rlz=1I7VASE_plPL513
  150. IE - HKU\S-1-5-21-854245398-602162358-839522115-1004\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
  151. IE - HKU\S-1-5-21-854245398-602162358-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  152. IE - HKU\S-1-5-21-854245398-602162358-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
  153. IE - HKU\S-1-5-21-854245398-602162358-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 12.12.12.12:1
  154.  
  155. [color=#E56717]========== FireFox ==========[/color]
  156.  
  157. FF - prefs.js..browser.search.countryCode: "PL"
  158. FF - prefs.js..browser.search.hiddenOneOffs: "DuckDuckGo"
  159. FF - prefs.js..browser.search.isUS: false
  160. FF - prefs.js..browser.search.region: "PL"
  161. FF - prefs.js..browser.search.useDBForOrder: true
  162. FF - prefs.js..browser.startup.homepage: "pajacyk.pl | pustamiska.pl"
  163. FF - prefs.js..extensions.enabledAddons: %7B5384767E-00D9-40E9-B72F-9CC39D655D6F%7D:1.5.0.6.1-signed
  164. FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:40.0.2
  165. FF - user.js - File not found
  166.  
  167. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll ()
  168. FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
  169. FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf: E:\Foxit Reader\plugins\npFoxitReaderPlugin.dll File not found
  170. FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
  171. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
  172. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  173. FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
  174. FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
  175. FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
  176. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll (Google Inc.)
  177. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll (Google Inc.)
  178. FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
  179. FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
  180. FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll File not found
  181.  
  182. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-03-09 21:00:30 | 000,000,000 | ---D | M]
  183. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-07-28 23:21:25 | 000,000,000 | ---D | M]
  184. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 40.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2015-08-15 00:09:38 | 000,000,000 | ---D | M]
  185. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 40.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2015-08-15 00:09:40 | 000,000,000 | ---D | M]
  186.  
  187. [2009-11-02 22:38:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Extensions
  188. [2015-07-28 23:53:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\i9e9y8hv.default-1409036703921\extensions
  189. [2015-05-29 20:46:49 | 000,000,000 | ---D | M] (EPUBReader) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\i9e9y8hv.default-1409036703921\extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}
  190. [2015-07-02 21:53:23 | 000,000,000 | ---D | M] (ADB Helper) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\i9e9y8hv.default-1409036703921\extensions\adbhelper@mozilla.org
  191. [2015-07-28 23:53:26 | 000,963,213 | ---- | M] () (No name found) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\i9e9y8hv.default-1409036703921\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
  192. [2014-12-03 00:18:32 | 000,002,299 | ---- | M] () -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\i9e9y8hv.default-1409036703921\searchplugins\tibiawiki-en.xml
  193. [2014-08-26 09:21:21 | 000,002,096 | ---- | M] () -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\i9e9y8hv.default-1409036703921\searchplugins\wyszukiwarka-filmw-w-youtube.xml
  194. [2015-08-15 00:09:38 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
  195. [2015-08-15 00:09:51 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  196. [2015-08-15 00:09:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\Vista-Black 1.0\Extensions
  197.  
  198. [color=#E56717]========== Chrome ==========[/color]
  199.  
  200. CHR - Extension: No name found = C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
  201. CHR - Extension: No name found = C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
  202. CHR - Extension: No name found = C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.33_0\
  203. CHR - Extension: No name found = C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\
  204. CHR - Extension: No name found = C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.1.0_0\
  205. CHR - Extension: No name found = C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
  206.  
  207. O1 HOSTS File: ([2012-04-08 19:56:58 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
  208. O1 - Hosts: 127.0.0.1 localhost
  209. O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
  210. O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
  211. O3 - HKU\S-1-5-21-854245398-602162358-839522115-1004\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
  212. O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
  213. O4 - HKLM..\Run: [snp325] C:\WINDOWS\vsnp325.exe ()
  214. O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
  215. O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
  216. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
  217. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
  218. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
  219. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
  220. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
  221. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
  222. O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
  223. O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
  224. O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
  225. O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
  226. O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
  227. O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
  228. O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
  229. O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
  230. O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
  231. O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
  232. O7 - HKU\S-1-5-21-854245398-602162358-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
  233. O7 - HKU\S-1-5-21-854245398-602162358-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
  234. O7 - HKU\S-1-5-21-854245398-602162358-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
  235. O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
  236. O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
  237. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2B80D1F6-0F43-44EE-AF3C-B3159F0EFD83}: NameServer = 10.1.1.1,192.168.12.1
  238. O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
  239. O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
  240. O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
  241. O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
  242. O24 - Desktop WallPaper: E:\Moje dokumenty\Moje obrazy\space.bmp
  243. O24 - Desktop BackupWallPaper: E:\Moje dokumenty\Moje obrazy\space.bmp
  244. O32 - HKLM CDRom: AutoRun - 1
  245. O32 - AutoRun File - [2007-07-12 11:27:29 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
  246. O32 - AutoRun File - [2010-04-22 22:09:06 | 000,000,000 | RH-D | M] - C:\autorun.inf -- [ NTFS ]
  247. O32 - AutoRun File - [2010-04-22 22:09:06 | 000,000,000 | RH-D | M] - E:\autorun.inf -- [ NTFS ]
  248. O32 - AutoRun File - [2010-04-22 22:09:06 | 000,000,000 | R--D | M] - F:\autorun.inf -- [ NTFS ]
  249. O34 - HKLM BootExecute: (autocheck autochk *)
  250. O35 - HKLM\..comfile [open] -- "%1" %*
  251. O35 - HKLM\..exefile [open] -- "%1" %*
  252. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  253. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  254. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  255. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  256.  
  257. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  258.  
  259. [2015-08-15 08:00:15 | 000,000,000 | -HSD | C] -- C:\Config.Msi
  260. [2015-08-15 00:09:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
  261. [2015-08-14 22:52:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Dane aplikacji\HD Tune Pro
  262. [2015-08-14 22:52:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\HD Tune Pro
  263. [2015-08-14 22:52:37 | 000,000,000 | ---D | C] -- C:\Program Files\HD Tune Pro
  264. [2015-08-13 00:02:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CPUID
  265. [2015-08-12 23:56:50 | 000,000,000 | ---D | C] -- C:\Program Files\CrystalDiskInfo
  266. [2015-08-12 00:15:49 | 000,000,000 | ---D | C] -- C:\Program Files\Recuva
  267. [2015-08-05 10:54:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Menu Start\Programy\Rockstar Games
  268. [2015-08-05 10:54:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Dane aplikacji\InstallShield Installation Information
  269. [2015-08-05 10:54:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
  270. [2015-08-04 23:25:35 | 000,000,000 | ---D | C] -- E:\Moje dokumenty\GTA Undr Ground___ Files
  271. [2015-08-02 17:56:31 | 000,000,000 | ---D | C] -- E:\Moje dokumenty\GTA Vice City User Files
  272. [2015-07-31 13:06:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\tibianic
  273. [2015-07-31 13:05:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Package Cache
  274. [2015-07-28 23:21:39 | 000,161,472 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswStmXP.sys
  275. [2015-07-28 23:21:32 | 000,313,472 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
  276. [2015-07-28 23:21:28 | 000,043,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
  277. [2015-07-24 20:12:08 | 000,000,000 | ---D | C] -- C:\Program Files\Digital Image Recovery
  278. [2015-07-24 20:12:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Digital Image Recovery
  279. [2015-07-18 23:35:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Dane aplikacji\No Company Name
  280. [2015-07-17 22:19:13 | 000,000,000 | ---D | C] -- E:\Moje dokumenty\NewBlueFX
  281. [2015-07-17 22:17:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe
  282. [2015-07-17 22:17:20 | 000,000,000 | ---D | C] -- E:\Moje dokumenty\Adobe
  283. [1 C:\Documents and Settings\admin\Pulpit\*.tmp files -> C:\Documents and Settings\admin\Pulpit\*.tmp -> ]
  284.  
  285. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  286.  
  287. [2015-08-15 08:04:52 | 000,568,646 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
  288. [2015-08-15 08:04:52 | 000,505,372 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
  289. [2015-08-15 08:04:52 | 000,111,772 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
  290. [2015-08-15 08:04:52 | 000,089,218 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
  291. [2015-08-15 08:01:28 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
  292. [2015-08-15 07:47:28 | 000,000,364 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
  293. [2015-08-15 07:47:16 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
  294. [2015-08-15 07:47:15 | 000,000,222 | ---- | M] () -- C:\WINDOWS\tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job
  295. [2015-08-15 07:47:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
  296. [2015-08-15 07:47:09 | 2147,012,608 | -HS- | M] () -- C:\hiberfil.sys
  297. [2015-08-14 23:12:37 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
  298. [2015-08-14 20:56:29 | 000,778,440 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
  299. [2015-08-14 20:56:29 | 000,142,536 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
  300. [2015-08-14 19:16:00 | 000,161,280 | ---- | M] () -- C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  301. [2015-08-14 19:11:05 | 000,065,685 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\1k.jpg
  302. [2015-08-14 18:55:27 | 000,017,408 | -H-- | M] () -- C:\Documents and Settings\admin\Pulpit\photothumb.db
  303. [2015-08-14 18:50:52 | 000,033,487 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\IMG_151.PNG
  304. [2015-08-14 18:50:02 | 000,023,271 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\IMG_151.jpg
  305. [2015-08-14 18:49:43 | 000,013,273 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\Facebook_logo_thumbs_up_like_transparent.jpg
  306. [2015-08-14 18:47:18 | 000,105,369 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\Facebook_like_thumb.png
  307. [2015-08-14 18:42:50 | 000,239,781 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\tło.png
  308. [2015-08-14 18:17:31 | 000,094,490 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\1000fans_es-2200x800.jpg
  309. [2015-08-14 17:50:14 | 000,602,294 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\bez tytułu.PNG
  310. [2015-08-14 07:57:35 | 000,001,984 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
  311. [2015-08-14 00:13:23 | 000,000,327 | RHS- | M] () -- C:\boot.ini
  312. [2015-08-13 12:09:55 | 000,029,157 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\Potwierdzenie R.Dębczyński.pdf
  313. [2015-08-12 17:18:18 | 000,045,798 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\07-2015.pdf
  314. [2015-08-12 17:08:41 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
  315. [2015-08-12 09:52:51 | 001,413,713 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\5427691534_d2eeab1207_o_d.jpg
  316. [2015-08-06 11:02:59 | 000,268,397 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\Rachunek_Idea_Money_Nr_8.pdf
  317. [2015-08-05 11:00:00 | 000,000,642 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\Skrót do gta-vc.exe.lnk
  318. [2015-07-28 23:21:31 | 000,433,264 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
  319. [2015-07-28 23:21:31 | 000,208,664 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswVmm.sys
  320. [2015-07-28 23:21:31 | 000,161,472 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswStmXP.sys
  321. [2015-07-28 23:21:31 | 000,076,000 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys
  322. [2015-07-28 23:21:31 | 000,057,888 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
  323. [2015-07-28 23:21:31 | 000,055,200 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
  324. [2015-07-28 23:21:31 | 000,049,776 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRvrt.sys
  325. [2015-07-28 23:21:31 | 000,024,016 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswHwid.sys
  326. [2015-07-28 23:21:28 | 000,313,472 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
  327. [2015-07-28 23:21:28 | 000,043,112 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
  328. [2015-07-28 23:21:23 | 000,788,784 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
  329. [2015-07-19 17:23:02 | 002,612,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
  330. [1 C:\Documents and Settings\admin\Pulpit\*.tmp files -> C:\Documents and Settings\admin\Pulpit\*.tmp -> ]
  331.  
  332. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  333.  
  334. [2015-08-14 19:11:05 | 000,065,685 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\1k.jpg
  335. [2015-08-14 18:50:52 | 000,033,487 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\IMG_151.PNG
  336. [2015-08-14 18:50:21 | 000,017,408 | -H-- | C] () -- C:\Documents and Settings\admin\Pulpit\photothumb.db
  337. [2015-08-14 18:49:47 | 000,023,271 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\IMG_151.jpg
  338. [2015-08-14 18:48:49 | 000,013,273 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\Facebook_logo_thumbs_up_like_transparent.jpg
  339. [2015-08-14 18:47:18 | 000,105,369 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\Facebook_like_thumb.png
  340. [2015-08-14 18:42:41 | 000,239,781 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\tło.png
  341. [2015-08-14 18:17:12 | 000,094,490 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\1000fans_es-2200x800.jpg
  342. [2015-08-14 17:50:14 | 000,602,294 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\bez tytułu.PNG
  343. [2015-08-13 12:09:55 | 000,029,157 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\Potwierdzenie R.Dębczyński.pdf
  344. [2015-08-12 17:18:18 | 000,045,798 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\07-2015.pdf
  345. [2015-08-12 09:52:49 | 001,413,713 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\5427691534_d2eeab1207_o_d.jpg
  346. [2015-08-06 11:02:59 | 000,268,397 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\Rachunek_Idea_Money_Nr_8.pdf
  347. [2015-08-05 11:00:00 | 000,000,642 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\Skrót do gta-vc.exe.lnk
  348. [2015-05-23 22:36:20 | 000,016,126 | ---- | C] () -- C:\WINDOWS\DIIUnin.dat
  349. [2015-04-10 17:31:24 | 000,000,142 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LaunchURL.bat
  350. [2014-06-03 19:22:26 | 000,000,026 | ---- | C] () -- C:\WINDOWS\Viewer.INI
  351. [2014-05-15 16:46:14 | 000,139,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
  352. [2014-05-15 16:46:08 | 000,282,296 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
  353. [2014-05-15 16:46:00 | 000,076,888 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
  354. [2014-04-18 15:35:16 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\admin\Dane aplikacji\PnkBstrK.sys
  355. [2013-10-15 11:56:38 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
  356. [2013-10-15 11:56:31 | 000,710,269 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
  357. [2012-03-04 12:24:32 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
  358. [2010-12-03 14:01:36 | 000,013,842 | ---- | C] () -- C:\Documents and Settings\admin\.recently-used.xbel
  359. [2009-11-06 22:25:05 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\admin\mm.cfg
  360. [2008-02-02 15:16:41 | 000,299,008 | ---- | C] () -- C:\Program Files\bestplayer1.0.exe
  361. [2007-12-30 14:25:19 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\ezsid.dat
  362. [2007-11-02 12:14:03 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\PUTTY.RND
  363. [2007-07-15 20:33:22 | 000,161,280 | ---- | C] () -- C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  364.  
  365. [color=#E56717]========== ZeroAccess Check ==========[/color]
  366.  
  367. [2007-08-31 17:04:03 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
  368.  
  369. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  370.  
  371. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  372.  
  373. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  374. "" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-14 19:20:47 | 001,499,136 | ---- | M] (Microsoft Corporation)
  375. "ThreadingModel" = Apartment
  376.  
  377. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  378. "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
  379. "ThreadingModel" = Free
  380.  
  381. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  382. "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 19:20:57 | 000,273,920 | ---- | M] (Microsoft Corporation)
  383. "ThreadingModel" = Both
  384.  
  385. [color=#E56717]========== LOP Check ==========[/color]
  386.  
  387. [2011-08-10 00:29:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\AnvSoft
  388. [2010-08-31 10:49:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Any Video Converter
  389. [2013-10-03 19:50:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Audacity
  390. [2014-06-19 11:37:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\AVAST Software
  391. [2013-10-03 19:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Cool Record Edit Pro
  392. [2011-04-03 19:53:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Fit3DLive
  393. [2013-09-29 20:14:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Foxit Software
  394. [2007-08-31 16:57:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Gadu-Gadu
  395. [2009-11-29 11:26:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\GHISLER
  396. [2013-07-03 23:55:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Grupa IMAGE
  397. [2010-12-02 15:54:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\gtk-2.0
  398. [2010-09-27 20:05:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Hardcore
  399. [2015-08-14 22:52:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\HD Tune Pro
  400. [2010-04-25 13:31:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\id Software
  401. [2007-08-06 20:45:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\IrfanView
  402. [2012-05-11 14:45:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\LolClient
  403. [2012-05-29 13:38:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\LolClient2
  404. [2009-01-14 20:30:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\MyPhoneExplorer
  405. [2015-07-18 23:35:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\No Company Name
  406. [2011-07-30 16:01:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Nokia
  407. [2015-05-03 08:27:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Notepad++
  408. [2007-10-22 21:59:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\OpenOffice.ux.pl2
  409. [2011-04-22 10:44:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Opera
  410. [2012-07-05 21:17:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Oracle
  411. [2014-05-29 08:16:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Origin
  412. [2007-08-12 16:11:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\PC Suite
  413. [2015-07-06 09:23:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\PhotoScape
  414. [2009-07-04 12:57:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\play2p
  415. [2007-11-20 20:48:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Teleca
  416. [2013-09-05 20:01:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Tibia
  417. [2010-03-21 14:45:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Tibiacast
  418. [2009-05-11 09:57:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Tlen.pl
  419. [2013-03-08 18:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Unity
  420. [2015-08-14 22:56:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\uTorrent
  421. [2009-03-17 18:48:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\VitySoft
  422. [2013-10-03 20:13:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\WAV To MP3
  423. [2007-09-10 21:38:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\WNR
  424. [2011-01-01 19:38:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AlawarWrapper
  425. [2015-04-30 22:50:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Auslogics
  426. [2014-06-04 08:58:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
  427. [2011-07-13 17:16:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BVRP Software
  428. [2014-05-29 08:20:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Core
  429. [2014-05-29 08:20:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Logs
  430. [2015-03-27 16:08:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
  431. [2009-10-25 09:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fugazo
  432. [2010-05-18 17:01:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Hagel Technologies
  433. [2011-07-30 16:41:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
  434. [2008-02-05 13:56:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MailFrontier
  435. [2015-03-27 16:08:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Origin
  436. [2015-08-10 10:30:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Package Cache
  437. [2007-07-25 18:32:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
  438. [2013-10-20 00:08:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PMB Files
  439. [2015-07-17 22:17:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe
  440. [2014-11-01 12:19:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
  441. [2010-09-12 22:35:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tlen.pl
  442. [2014-10-12 20:35:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\tmp
  443. [2013-09-19 14:57:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Foxit Software
  444.  
  445. [color=#E56717]========== Purity Check ==========[/color]
  446.  
  447.  
  448.  
  449. [color=#E56717]========== Alternate Data Streams ==========[/color]
  450.  
  451. @Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:8FF81EB0
  452.  
  453. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!