Przeskanowałem oba kompy w jednym było mało infekcji a w drugi dostałem szoku było w nim ok 7tys. wirusów zdziwiłem się bo tydzien temu wykonywałem skan. Daje logi z OTL OTL2.txt z najbardziej zainfekowanego kompa.
OTL logfile created on: 2013-12-07 16:30:27 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Documents and Settings\Marcin\Moje dokumenty\Pobieranie
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
2,00 Gb Total Physical Memory | 1,29 Gb Available Physical Memory | 64,69% Memory free
3,85 Gb Paging File | 3,09 Gb Available in Paging File | 80,38% Paging File free
Paging file location(s): D:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files
Drive C: | 73,24 Gb Total Space | 26,07 Gb Free Space | 35,60% Space Free | Partition Type: NTFS
Drive D: | 75,80 Gb Total Space | 16,42 Gb Free Space | 21,66% Space Free | Partition Type: NTFS
Computer Name: MARCIN | User Name: Marcin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2013-12-03 14:55:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\Marcin\Moje dokumenty\Pobieranie\OTL_[www.programosy.pl].exe
PRC - [2013-11-16 10:38:59 | 000,275,568 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2013-05-25 09:54:47 | 000,181,664 | ---- | M] (Oracle Corporation) -- D:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2013-05-16 15:44:05 | 001,012,000 | ---- | M] (NVIDIA Corporation) -- D:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
PRC - [2013-05-16 15:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) -- D:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013-04-18 15:58:08 | 000,574,272 | ---- | M] (IObit) -- D:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
PRC - [2013-04-08 18:02:16 | 000,720,192 | ---- | M] (IObit) -- D:\Program Files\IObit\Advanced SystemCare 6\Monitor.exe
PRC - [2013-01-09 19:53:22 | 001,791,488 | ---- | M] (xwidget.com) -- D:\Program Files\XWidget\xwidget.exe
PRC - [2010-04-05 20:55:01 | 000,116,104 | ---- | M] () -- D:\Program Files\Canon\IJPLM\ijplmsvc.exe
PRC - [2008-08-04 17:04:40 | 000,772,096 | ---- | M] () -- D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
PRC - [2008-08-01 14:56:42 | 000,069,735 | ---- | M] () -- D:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
PRC - [2008-08-01 14:55:28 | 000,143,467 | ---- | M] () -- D:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\explorer.exe
PRC - [2007-09-13 15:54:10 | 000,258,560 | ---- | M] (ASUSTeK COMPUTER INC.) -- D:\WINDOWS\ATKKBService.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2013-11-16 10:38:58 | 003,363,952 | ---- | M] () -- D:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2013-10-09 16:54:51 | 016,233,864 | ---- | M] () -- D:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll
MOD - [2013-01-15 17:48:26 | 000,348,992 | ---- | M] () -- D:\Program Files\IObit\Advanced SystemCare 6\madexcept_.bpl
MOD - [2013-01-15 17:48:26 | 000,051,008 | ---- | M] () -- D:\Program Files\IObit\Advanced SystemCare 6\maddisAsm_.bpl
MOD - [2013-01-15 17:48:24 | 000,183,616 | ---- | M] () -- D:\Program Files\IObit\Advanced SystemCare 6\madbasic_.bpl
MOD - [2013-01-15 17:47:56 | 000,893,248 | ---- | M] () -- D:\Program Files\IObit\Advanced SystemCare 6\webres.dll
MOD - [2013-01-15 17:47:50 | 000,517,440 | ---- | M] () -- D:\Program Files\IObit\Advanced SystemCare 6\sqlite3.dll
MOD - [2013-01-15 17:47:02 | 000,143,168 | ---- | M] () -- D:\Program Files\IObit\Advanced SystemCare 6\ASCExtMenu.dll
MOD - [2012-11-19 08:33:34 | 000,065,656 | ---- | M] () -- D:\WINDOWS\system32\bdmpega.acm
MOD - [2010-04-05 20:55:01 | 000,116,104 | ---- | M] () -- D:\Program Files\Canon\IJPLM\ijplmsvc.exe
MOD - [2009-08-12 12:09:14 | 000,077,824 | ---- | M] () -- D:\Program Files\XWidget\Res\Lib\lib.dll
MOD - [2009-02-27 19:04:20 | 000,311,296 | ---- | M] () -- D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL
MOD - [2008-08-04 17:04:40 | 000,772,096 | ---- | M] () -- D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
MOD - [2008-08-01 14:58:14 | 000,622,693 | ---- | M] () -- D:\WINDOWS\system32\BSShell.dll
MOD - [2008-08-01 14:57:44 | 000,102,520 | ---- | M] () -- D:\Program Files\IVT Corporation\BlueSoleil\setup.dll
MOD - [2008-08-01 14:56:42 | 000,069,735 | ---- | M] () -- D:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
MOD - [2008-08-01 14:55:40 | 000,118,880 | ---- | M] () -- D:\WINDOWS\system32\BsMobileSDK.dll
MOD - [2008-08-01 14:55:28 | 000,143,467 | ---- | M] () -- D:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
MOD - [2008-08-01 14:54:12 | 000,102,499 | ---- | M] () -- D:\WINDOWS\system32\Bs2Res.dll
MOD - [2008-08-01 14:46:30 | 017,907,824 | ---- | M] () -- D:\WINDOWS\system32\BsLangInDepRes.dll
MOD - [2008-07-09 14:12:50 | 000,061,440 | ---- | M] () -- D:\Program Files\IVT Corporation\BlueSoleil\Mobile\ExtraLib.dll
MOD - [2008-07-09 14:12:02 | 000,237,568 | ---- | M] () -- D:\Program Files\IVT Corporation\BlueSoleil\Mobile\BaseLib.dll
MOD - [2007-09-16 18:07:00 | 000,466,944 | ---- | M] () -- D:\WINDOWS\system32\nvshell.dll
MOD - [2003-05-01 16:23:28 | 000,041,472 | ---- | M] () -- D:\Program Files\IVT Corporation\BlueSoleil\Mobile\CsCvt.dll
MOD - [2001-10-26 20:27:02 | 000,015,360 | ---- | M] () -- D:\WINDOWS\system32\tsd32.dll
[color=#E56717]========== Services (SafeList) ==========[/color]
SRV - [2013-11-16 10:38:58 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013-10-09 16:54:53 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- D:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013-05-25 09:54:47 | 000,181,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- D:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2013-05-16 15:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- D:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013-04-18 15:58:08 | 000,574,272 | ---- | M] (IObit) [Auto | Running] -- D:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe -- (AdvancedSystemCareService6)
SRV - [2013-04-04 13:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013-04-04 13:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- D:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2010-04-05 20:55:01 | 000,116,104 | ---- | M] () [Auto | Running] -- D:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2008-08-04 17:04:40 | 000,772,096 | ---- | M] () [Auto | Running] -- D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe -- (BlueSoleilCS)
SRV - [2008-08-01 14:56:42 | 000,069,735 | ---- | M] () [On_Demand | Running] -- D:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe -- (BsHelpCS)
SRV - [2008-08-01 14:55:28 | 000,143,467 | ---- | M] () [Auto | Running] -- D:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe -- (BsMobileCS)
SRV - [2007-09-13 15:54:10 | 000,258,560 | ---- | M] (ASUSTeK COMPUTER INC.) [Auto | Running] -- D:\WINDOWS\ATKKBService.exe -- (ATKKeyboardService)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ggsemc.sys -- (ggsemc)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ggflt.sys -- (ggflt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (catchme)
DRV - [2013-12-03 14:44:07 | 000,040,776 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2013-11-25 17:20:33 | 005,582,552 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2013-11-25 17:20:31 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2013-11-25 17:20:28 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2013-11-25 17:13:25 | 000,168,040 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- D:\WINDOWS\system32\drivers\nvgts.sys -- (nvgts)
DRV - [2013-11-25 17:07:40 | 000,031,880 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\VcommMgr.sys -- (VcommMgr)
DRV - [2013-11-25 16:58:08 | 000,014,336 | ---- | M] ((Standard mouse types)) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\Amusbprt.sys -- (Amusbprt)
DRV - [2013-11-25 16:58:08 | 000,008,704 | ---- | M] ((Standard mouse types)) [Kernel | System | Running] -- D:\WINDOWS\system32\drivers\Amfilter.sys -- (Amfilter)
DRV - [2013-11-25 16:50:50 | 000,128,672 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\nvhda32.sys -- (NVHDA)
DRV - [2013-04-04 13:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2013-01-14 19:33:01 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- D:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2013-01-14 19:32:59 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- D:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2012-11-18 15:50:32 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2012-08-24 08:57:00 | 000,113,104 | ---- | M] (Power Software Ltd) [Kernel | System | Running] -- D:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2010-11-26 18:02:52 | 000,014,776 | ---- | M] () [Kernel | Boot | Running] -- D:\WINDOWS\system32\drivers\SmartDefragDriver.sys -- (SmartDefragDriver)
DRV - [2010-11-01 06:08:46 | 000,014,416 | ---- | M] (OpenLibSys.org) [File_System | On_Demand | Stopped] -- D:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys -- (WinRing0_1_2_0)
DRV - [2008-07-31 19:45:42 | 000,020,616 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- D:\WINDOWS\system32\drivers\BtHidBus.sys -- (BtHidBus)
DRV - [2008-07-02 13:58:48 | 000,026,248 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\IvtBtBus.sys -- (IvtBtBUs)
DRV - [2008-07-02 13:58:28 | 000,038,920 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\btcusb.sys -- (Btcsrusb)
DRV - [2008-01-21 18:28:12 | 000,014,600 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\btnetdrv.sys -- (BT)
DRV - [2008-01-21 18:27:50 | 000,014,856 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\VComm.sys -- (VComm)
DRV - [2007-09-13 15:54:14 | 000,012,416 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\asusgsb.sys -- (asusgsb)
DRV - [2007-09-13 15:54:14 | 000,010,752 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\Video3D32.sys -- (Video3D)
DRV - [2007-09-13 15:54:12 | 000,012,288 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- D:\WINDOWS\system32\drivers\EIO.sys -- (EIO)
DRV - [2007-09-13 15:54:10 | 000,011,136 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | System | Running] -- D:\WINDOWS\system32\drivers\atkkbnt.sys -- (asuskbnt)
DRV - [2007-06-19 08:51:20 | 000,107,304 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s816mdm.sys -- (s816mdm)
DRV - [2007-06-19 08:51:18 | 000,099,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s816mgmt.sys -- (s816mgmt)
DRV - [2007-06-19 08:51:18 | 000,097,704 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s816unic.sys -- (s816unic)
DRV - [2007-06-19 08:51:18 | 000,097,320 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s816obex.sys -- (s816obex)
DRV - [2007-06-19 08:51:18 | 000,021,928 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s816nd5.sys -- (s816nd5)
DRV - [2007-06-19 08:51:18 | 000,013,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s816mdfl.sys -- (s816mdfl)
DRV - [2007-06-19 08:51:16 | 000,081,832 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\s816bus.sys -- (s816bus)
DRV - [2006-02-16 20:28:32 | 000,013,056 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2006-02-16 20:28:30 | 000,034,176 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2005-11-03 15:40:07 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- D:\WINDOWS\system32\drivers\sfvfs02.sys -- (sfvfs02)
DRV - [2005-08-10 15:06:28 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- D:\WINDOWS\system32\drivers\sfsync02.sys -- (sfsync02)
DRV - [2005-08-10 13:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- D:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01)
DRV - [2005-05-16 14:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- D:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.google.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: " URL " = http://search.live.com/results.aspx?q={searchTerms} & src={referrer:source?}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10 & ctid=CT1392740
IE - HKCU\..\URLSearchHook: {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - D:\Program Files\MyPlayCity\tbMyPl.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: " URL " = http://www.bing.com/search?q={searchTerms} & FORM=IE8SRC
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: " URL " = http://www.bing.com/search?q={searchTerms} & FORM=IE8SRC
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: " URL " = http://search.conduit.com/ResultsExt.aspx?q={searchTerms} & SearchSource=4 & ctid=CT1392740
IE - HKCU\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: " URL " = http://mystart.incredibar.com/mb201/?search={searchTerms} & loc=IB_DS & a=6OyXtJYjSI & i=26
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: " ProxyEnable " = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..extensions.enabledAddons: ascsurfingprotection%40iobit.com:1.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0.1
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: D:\WINDOWS\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@ganymede/GanymedeNetPlugin,version=1.0: D:\Program Files\Ganymede\Plugins\npganymedenet.dll ( )
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: D:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: D:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: D:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: D:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: D:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: D:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: D:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: D:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: D:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: D:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Components: D:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins
[2012-11-18 17:13:17 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\Extensions
[2013-12-03 14:48:28 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\Firefox\Profiles\ggp8q2ir.default-1384607664640\extensions
[2013-12-03 14:48:28 | 000,000,000 | ---D | M] (Advanced SystemCare Surfing Protection) -- D:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\Firefox\Profiles\ggp8q2ir.default-1384607664640\extensions\ascsurfingprotection@iobit.com
[2013-11-16 14:26:50 | 000,915,554 | ---- | M] () (No name found) -- D:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\Firefox\Profiles\ggp8q2ir.default-1384607664640\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013-11-16 10:38:49 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\browser\extensions
[2013-11-16 10:38:59 | 000,000,000 | ---D | M] (Default) -- D:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\PROGRAM FILES\IOBIT APPS TOOLBAR\FF
[2013-01-28 18:40:48 | 000,000,736 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\22apple.xml
[2013-09-16 11:29:13 | 000,000,817 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\qvo6.xml
[color=#E56717]========== Chrome ==========[/color]
CHR - default_search_provider: qvo6 (Enabled)
CHR - default_search_provider: search_url = http://search.qvo6.com/web/?utm_source=b & utm_medium=air & utm_campaign=eXQ & utm_content=ds & from=air & uid=ST3160815AS_9RA7A344XXXX9RA7A344 & ts=1379327352 & type=default & q={searchTerms}
CHR - default_search_provider: suggest_url = ,
CHR - homepage: http://www.qvo6.com/?utm_source=b & utm_medium=air & utm_campaign=eXQ & utm_content=hp & from=air & uid=ST3160815AS_9RA7A344XXXX9RA7A344 & ts=1379327351
CHR - plugin: Shockwave Flash (Enabled) = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\31.0.1650.57\pdf.dll
CHR - plugin: Microsoft\\u00AE DRM (Enabled) = D:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = D:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft\\u00AE DRM (Enabled) = D:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: Dysk Google = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: Adblock Plus = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6.1_0\
CHR - Extension: Szukaj w Google = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Shopping price comparison = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gbdabnfmdemcjjadpkpjibhhacggangd\2.2.4_0\
CHR - Extension: Facebook for Chrome = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gdalhedleemkkdjddjgfjmcnbpejpapp\6.3.1_0\
CHR - Extension: AdBlock = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.10_0\
CHR - Extension: Download videos = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\hbkglaboababckmiklpfggkomcpmhcdh\1.3.6_0\
CHR - Extension: JamDeck = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jbkilbgofafobojkifhjflhnnbiojbjb\1.1.1_0\
CHR - Extension: IDM Integration = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.15.9.1_0\
CHR - Extension: SmallringFX DarkBlue Theme = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\kbfijmgohofmpjlcgmjplbpmkpchdhpk\1.7_0\
CHR - Extension: Center Youtube player December 2012 = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\klfgeapfhhmhmidgbjmklfjaokbignpa\1.1_0\
CHR - Extension: Mapy Google = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0\
CHR - Extension: Zegar = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mjocghlclkpgheifflemilcnblodjohg\1.16_0\
CHR - Extension: Kapsel Tymbark = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mnojlbipdcpbccmdifkheninbboihpnd\1.1.3_0\
CHR - Extension: Advanced SystemCare Surfing Protection = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\
CHR - Extension: IncrediBar for Chrome\u2122 = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\niogeckbkdcabhnapjbkeiklablhjoca\1.0.5_0\
CHR - Extension: Chrome In-App Payments service = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Google Quick Scroll = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc\2.1.2_0\
CHR - Extension: Google Calendar Checker (by Google) = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ookhcbgokankfmjafalglpofmolfopek\1.4.0_0\
CHR - Extension: Gmail = D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2013-03-26 19:28:31 | 000,000,027 | --S- | M]) - D:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - D:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (MyPlayCity Toolbar) - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - D:\Program Files\MyPlayCity\tbMyPl.dll (Conduit Ltd.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Advanced SystemCare Browser Protection) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - D:\Program Files\IObit\Advanced SystemCare 6\BrowerProtect\ASCPlugin_Protection.dll (IObit)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (MyPlayCity Toolbar) - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - D:\Program Files\MyPlayCity\tbMyPl.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - D:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - D:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [NvCplDaemon] D:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] D:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [Nvtmru] D:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4 - HKCU..\Run: [Advanced SystemCare 6] D:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe (IObit)
O4 - HKCU..\Run: [AutoConnect] D:\Program Files\AutoConnect\AutoConnect.exe (http://autoconnect.prv.pl)
O4 - HKCU..\Run: [uTorrent] D:\Program Files\uTorrent\uTorrent.exe (BitTorrent Inc.)
O4 - HKCU..\Run: [xwidget] D:\Program Files\XWidget\xwidget.exe (xwidget.com)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa & ver - D:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Wyslij przez wiadomosc( & M)... - D:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm ()
O8 - Extra context menu item: Wyślij przez Bluetooth - D:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm ()
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{66183C61-EE4A-472E-867A-5683601DA9C6}: NameServer = 10.6.24.161 10.6.1.18
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\WINDOWS\system32\skype4com.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (D:\WINDOWS\system32\userinit.exe) - D:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: D:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\Firefox\Tapeta pulpitu.bmp
O24 - Desktop BackupWallPaper: D:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\Firefox\Tapeta pulpitu.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011-08-19 12:04:46 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- " %1 " %*
O35 - HKLM\..exefile [open] -- " %1 " %*
O37 - HKLM\...com [@ = ComFile] -- " %1 " %*
O37 - HKLM\...exe [@ = exefile] -- " %1 " %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2013-12-07 16:02:18 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Doctor Web
[2013-12-05 18:40:22 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Pulpit\Duke Nukem 3D Atomic Edition
[2013-12-04 16:50:34 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Pulpit\usb
[2013-12-03 14:44:46 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dane aplikacji\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
[2013-12-03 14:44:07 | 000,040,776 | ---- | C] (Malwarebytes Corporation) -- D:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2013-12-02 16:40:06 | 000,000,000 | R--D | C] -- D:\Documents and Settings\Marcin\Pulpit\Żulionerzy NG
[2013-12-02 15:38:44 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Start\Programy\Deluxe PocMon
[2013-12-02 15:38:41 | 000,000,000 | ---D | C] -- D:\Program Files\Deluxe PocMon
[2013-12-02 14:56:41 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\MyPlayCity
[2013-12-02 14:56:41 | 000,000,000 | ---D | C] -- D:\Program Files\Conduit
[2013-12-02 14:56:40 | 000,000,000 | ---D | C] -- D:\Program Files\MyPlayCity
[2013-12-02 14:56:37 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Start\Programy\MyPlayCity.com
[2013-12-02 14:56:29 | 000,000,000 | ---D | C] -- D:\Program Files\MyPlayCity.com
[2013-12-02 14:42:46 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dokumenty\AlawarWrapper
[2013-12-02 14:42:41 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dane aplikacji\AlawarWrapper
[2013-12-02 14:42:32 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Menu Start\Programy\Alawar.pl
[2013-12-02 14:42:31 | 000,000,000 | ---D | C] -- D:\Program Files\Alawar.pl
[2013-12-01 12:51:53 | 000,641,536 | ---- | C] (LinGon) -- D:\Documents and Settings\Marcin\Pulpit\NFSHP+16-Trainer-LinGon.exe
[2013-11-25 18:39:27 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\Marcin\Recent
[2013-11-25 17:53:15 | 000,000,000 | ---D | C] -- D:\Program Files\Uniblue
[2013-11-25 17:43:53 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\All Users\Dane aplikacji\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
[2013-11-25 17:42:31 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dane aplikacji\{6AD8E59C-250C-4201-B5BA-56ADEF76FF46}
[2013-11-25 17:31:38 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\PackageAware
[2013-11-25 17:13:07 | 000,372,840 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvraiins.dll
[2013-11-25 17:13:07 | 000,372,840 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvraidco.dll
[2013-11-25 17:13:07 | 000,168,040 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\drivers\nvgts.sys
[2013-11-25 17:13:07 | 000,018,024 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoPtb.dll
[2013-11-25 17:13:07 | 000,017,512 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoSv.dll
[2013-11-25 17:13:07 | 000,017,512 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoRu.dll
[2013-11-25 17:13:07 | 000,017,512 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoNo.dll
[2013-11-25 17:13:07 | 000,017,512 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoNl.dll
[2013-11-25 17:13:07 | 000,015,464 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoKo.dll
[2013-11-25 17:13:07 | 000,014,952 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoZht.dll
[2013-11-25 17:13:07 | 000,014,952 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoZhc.dll
[2013-11-25 17:13:06 | 000,018,024 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoIt.dll
[2013-11-25 17:13:06 | 000,018,024 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoFr.dll
[2013-11-25 17:13:06 | 000,018,024 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoEsm.dll
[2013-11-25 17:13:06 | 000,018,024 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoEs.dll
[2013-11-25 17:13:06 | 000,018,024 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoDe.dll
[2013-11-25 17:13:06 | 000,017,512 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoFi.dll
[2013-11-25 17:13:06 | 000,017,512 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoDa.dll
[2013-11-25 17:13:06 | 000,017,000 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoENU.dll
[2013-11-25 17:13:06 | 000,017,000 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoEng.dll
[2013-11-25 17:13:06 | 000,015,464 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoJa.dll
[2013-11-25 17:00:14 | 001,049,888 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvdispco3233182.dll
[2013-11-25 17:00:14 | 000,893,728 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvdispgenco3233182.dll
[2013-11-25 16:58:48 | 000,215,656 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\NVCOSMB.DLL
[2013-11-25 16:58:08 | 000,014,336 | ---- | C] ((Standard mouse types)) -- D:\WINDOWS\System32\drivers\Amusbprt.sys
[2013-11-25 16:58:08 | 000,008,704 | ---- | C] ((Standard mouse types)) -- D:\WINDOWS\System32\drivers\Amfilter.sys
[2013-11-25 16:46:33 | 000,892,704 | ---- | C] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvhdagenco32.dll
[2013-11-25 15:14:23 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Start\Programy\Uniblue
[2013-11-25 15:05:22 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Uniblue
[2013-11-25 15:05:17 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Dane aplikacji\Uniblue
[2013-11-25 14:21:36 | 000,000,000 | ---D | C] -- D:\WINDOWS\pss
[2013-11-25 14:13:42 | 000,000,000 | ---D | C] -- D:\Program Files\VS Revo Group
[2013-11-25 14:13:42 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Menu Start\Programy\Revo Uninstaller
[2013-11-23 15:29:06 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Moje dokumenty\FLiNGTrainer
[2013-11-21 20:31:52 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\Ubisoft Game Launcher
[2013-11-21 20:24:56 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Dane aplikacji\PunkBuster
[2013-11-16 10:38:47 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Firefox
[2013-11-13 18:46:28 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Pulpit\k
[2013-11-11 22:01:52 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Dane aplikacji\Ubisoft
[2013-11-11 22:01:52 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2013-11-08 11:20:06 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Dane aplikacji\PhotoScape
[2013-11-08 11:19:56 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Start\Programy\PhotoScape
[2013-11-08 11:19:52 | 000,000,000 | ---D | C] -- D:\Program Files\PhotoScape
[2013-11-07 17:18:54 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Marcin\Moje dokumenty\Stronghold Legends
[4 D:\WINDOWS\*.tmp files - & gt; D:\WINDOWS\*.tmp - & gt; ]
[2 D:\WINDOWS\System32\dllcache\*.tmp files - & gt; D:\WINDOWS\System32\dllcache\*.tmp - & gt; ]
[1 D:\WINDOWS\System32\*.tmp files - & gt; D:\WINDOWS\System32\*.tmp - & gt; ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2013-12-07 16:31:50 | 000,030,432 | ---- | M] () -- D:\WINDOWS\System32\nvAppTimestamps
[2013-12-07 16:19:01 | 000,001,036 | ---- | M] () -- D:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013-12-07 15:58:00 | 000,001,136 | ---- | M] () -- D:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1606980848-343818398-839522115-1003UA.job
[2013-12-07 15:36:00 | 000,000,930 | ---- | M] () -- D:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013-12-07 15:00:27 | 000,000,282 | ---- | M] () -- D:\WINDOWS\tasks\SmartDefrag_Startup.job
[2013-12-07 15:00:04 | 000,000,280 | ---- | M] () -- D:\WINDOWS\tasks\Game_Booster_AutoUpdate.job
[2013-12-07 15:00:03 | 000,000,292 | ---- | M] () -- D:\WINDOWS\tasks\ASC6_AutoClean.job
[2013-12-07 15:00:02 | 000,000,280 | ---- | M] () -- D:\WINDOWS\tasks\SmartDefragUpdate.job
[2013-12-07 15:00:02 | 000,000,270 | ---- | M] () -- D:\WINDOWS\tasks\ASC6_PerformanceMonitor.job
[2013-12-07 14:53:06 | 000,004,572 | ---- | M] () -- D:\WINDOWS\System32\LOCALSERVICE.INI
[2013-12-07 14:53:04 | 000,001,006 | ---- | M] () -- D:\WINDOWS\System32\bscs.ini
[2013-12-07 14:52:56 | 000,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat
[2013-12-07 14:52:54 | 2147,012,608 | -HS- | M] () -- D:\hiberfil.sys
[2013-12-07 13:39:46 | 000,000,064 | ---- | M] () -- D:\Documents and Settings\Marcin\Pulpit\PocMon.dbg
[2013-12-05 20:58:00 | 000,001,084 | ---- | M] () -- D:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1606980848-343818398-839522115-1003Core.job
[2013-12-05 18:24:00 | 000,000,272 | ---- | M] () -- D:\WINDOWS\tasks\Uniblue SpeedUpMyPC Nag.job
[2013-12-04 17:04:21 | 034,113,827 | ---- | M] () -- D:\Documents and Settings\Marcin\Pulpit\Novicorp WinToFlash 0.8.0000 Beta.zip
[2013-12-04 16:21:09 | 011,213,257 | ---- | M] () -- D:\Documents and Settings\Marcin\Pulpit\PowerISO 5.6 [PL] [Zarejestrowany].rar
[2013-12-03 14:57:09 | 000,000,464 | ---- | M] () -- D:\Documents and Settings\Marcin\Pulpit\bn.rtf
[2013-12-03 14:44:07 | 000,040,776 | ---- | M] (Malwarebytes Corporation) -- D:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2013-12-02 21:14:53 | 000,003,485 | ---- | M] () -- D:\Documents and Settings\Marcin\Pulpit\pocmon.his
[2013-12-02 15:38:44 | 000,000,647 | ---- | M] () -- D:\Documents and Settings\Marcin\Pulpit\Deluxe PocMon.lnk
[2013-12-02 14:56:37 | 000,001,819 | ---- | M] () -- D:\Documents and Settings\Marcin\Pulpit\Need For Extreme 3D.lnk
[2013-12-02 14:42:39 | 000,000,890 | ---- | M] () -- D:\Documents and Settings\Marcin\Pulpit\Action Ball Deluxe.lnk
[2013-12-02 14:38:53 | 000,002,206 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl
[2013-11-27 21:44:47 | 008,991,503 | ---- | M] () -- D:\Documents and Settings\Marcin\Pulpit\GNIEW - Pięć Dwa (52 Dębiec).mp3
[2013-11-27 18:16:42 | 000,000,260 | ---- | M] () -- D:\WINDOWS\System32\REMOTEDEVICE.INI
[2013-11-27 18:16:17 | 000,000,097 | ---- | M] () -- D:\WINDOWS\System32\LOCALDEVICE.INI
[2013-11-25 18:24:26 | 000,000,394 | ---- | M] () -- D:\WINDOWS\tasks\Uniblue SpeedUpMyPC.job
[2013-11-25 17:20:33 | 009,721,960 | ---- | M] (Realtek Semiconductor Corp.) -- D:\WINDOWS\RTLCPL.EXE
[2013-11-25 17:20:33 | 005,582,552 | ---- | M] (Realtek Semiconductor Corp.) -- D:\WINDOWS\System32\drivers\RtkHDAud.sys
[2013-11-25 17:20:33 | 001,523,416 | ---- | M] (Realtek Semiconductor Corp.) -- D:\WINDOWS\RtlUpd.exe
[2013-11-25 17:20:33 | 000,891,976 | ---- | M] (Realtek Semiconductor Corp.) -- D:\WINDOWS\System32\RTSndMgr.CPL
[2013-11-25 17:20:33 | 000,359,016 | ---- | M] (Realtek Semiconductor Crop.) -- D:\WINDOWS\vncutil.exe
[2013-11-25 17:20:33 | 000,129,640 | ---- | M] (Realtek Semiconductor) -- D:\WINDOWS\RtkAudioService.exe
[2013-11-25 17:20:33 | 000,086,232 | ---- | M] (Realtek Semiconductor Corp.) -- D:\WINDOWS\System32\RtkCoInstIIXP.dll
[2013-11-25 17:20:33 | 000,084,584 | ---- | M] (Realtek Semiconductor Corp.) -- D:\WINDOWS\SOUNDMAN.EXE
[2013-11-25 17:20:31 | 002,180,712 | ---- | M] (Realtek Semiconductor Corp.) -- D:\WINDOWS\MicCal.exe
[2013-11-25 17:20:31 | 001,395,800 | ---- | M] (Creative Technology Ltd.) -- D:\WINDOWS\System32\drivers\Monfilt.sys
[2013-11-25 17:20:31 | 000,026,084 | ---- | M] () -- D:\WINDOWS\System32\drivers\RTAIODAT.DAT
[2013-11-25 17:20:28 | 002,815,592 | ---- | M] (RealTek Semicoductor Corp.) -- D:\WINDOWS\ALCWZRD.EXE
[2013-11-25 17:20:28 | 001,691,480 | ---- | M] (Creative) -- D:\WINDOWS\System32\drivers\Ambfilt.sys
[2013-11-25 17:20:28 | 000,064,104 | ---- | M] (Realtek Semiconductor Corp.) -- D:\WINDOWS\ALCMTR.EXE
[2013-11-25 17:20:27 | 000,285,288 | ---- | M] (Realtek Semiconductor Corp.) -- D:\WINDOWS\System32\ALSNDMGR.CPL
[2013-11-25 17:19:02 | 000,624,948 | ---- | M] () -- D:\WINDOWS\System32\perfh015.dat
[2013-11-25 17:19:02 | 000,559,036 | ---- | M] () -- D:\WINDOWS\System32\perfh009.dat
[2013-11-25 17:19:02 | 000,130,414 | ---- | M] () -- D:\WINDOWS\System32\perfc015.dat
[2013-11-25 17:19:02 | 000,103,750 | ---- | M] () -- D:\WINDOWS\System32\perfc009.dat
[2013-11-25 17:13:25 | 000,372,840 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvraiins.dll
[2013-11-25 17:13:25 | 000,372,840 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvraidco.dll
[2013-11-25 17:13:25 | 000,168,040 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\drivers\nvgts.sys
[2013-11-25 17:13:25 | 000,018,024 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoPtb.dll
[2013-11-25 17:13:25 | 000,018,024 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoIt.dll
[2013-11-25 17:13:25 | 000,018,024 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoFr.dll
[2013-11-25 17:13:25 | 000,017,512 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoSv.dll
[2013-11-25 17:13:25 | 000,017,512 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoRu.dll
[2013-11-25 17:13:25 | 000,017,512 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoNo.dll
[2013-11-25 17:13:25 | 000,017,512 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoNl.dll
[2013-11-25 17:13:25 | 000,015,464 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoKo.dll
[2013-11-25 17:13:25 | 000,015,464 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoJa.dll
[2013-11-25 17:13:25 | 000,014,952 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoZht.dll
[2013-11-25 17:13:25 | 000,014,952 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoZhc.dll
[2013-11-25 17:13:24 | 000,018,024 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoEsm.dll
[2013-11-25 17:13:24 | 000,018,024 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoEs.dll
[2013-11-25 17:13:24 | 000,018,024 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoDe.dll
[2013-11-25 17:13:24 | 000,017,512 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoFi.dll
[2013-11-25 17:13:24 | 000,017,512 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoDa.dll
[2013-11-25 17:13:24 | 000,017,000 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoENU.dll
[2013-11-25 17:13:24 | 000,017,000 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NvRCoEng.dll
[2013-11-25 17:07:40 | 000,031,880 | ---- | M] (IVT Corporation.) -- D:\WINDOWS\System32\drivers\VcommMgr.sys
[2013-11-25 17:00:58 | 001,127,544 | ---- | M] () -- D:\WINDOWS\System32\nvdrsdb1.bin
[2013-11-25 17:00:58 | 000,000,001 | ---- | M] () -- D:\WINDOWS\System32\nvdrssel.bin
[2013-11-25 17:00:52 | 001,127,544 | ---- | M] () -- D:\WINDOWS\System32\nvdrsdb0.bin
[2013-11-25 17:00:16 | 022,183,936 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvoglnt.dll
[2013-11-25 17:00:16 | 009,605,120 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvopencl.dll
[2013-11-25 17:00:14 | 009,646,080 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvcuda.dll
[2013-11-25 17:00:14 | 003,556,824 | ---- | M] () -- D:\WINDOWS\System32\nvdata.data
[2013-11-25 17:00:14 | 002,952,992 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvcuvid.dll
[2013-11-25 17:00:14 | 002,747,680 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvcuvenc.dll
[2013-11-25 17:00:14 | 001,049,888 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvdispco3233182.dll
[2013-11-25 17:00:14 | 000,893,728 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvdispgenco3233182.dll
[2013-11-25 17:00:14 | 000,018,657 | ---- | M] () -- D:\WINDOWS\System32\nvinfo.pb
[2013-11-25 17:00:12 | 017,551,360 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvcompiler.dll
[2013-11-25 17:00:10 | 004,083,584 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nv4_disp.dll
[2013-11-25 17:00:10 | 002,633,728 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvapi.dll
[2013-11-25 16:58:48 | 000,600,680 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvusmb.exe
[2013-11-25 16:58:48 | 000,600,680 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NVUNINST.EXE
[2013-11-25 16:58:48 | 000,215,656 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\NVCOSMB.DLL
[2013-11-25 16:58:08 | 000,014,336 | ---- | M] ((Standard mouse types)) -- D:\WINDOWS\System32\drivers\Amusbprt.sys
[2013-11-25 16:58:08 | 000,008,704 | ---- | M] ((Standard mouse types)) -- D:\WINDOWS\System32\drivers\Amfilter.sys
[2013-11-25 16:50:50 | 000,128,672 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\drivers\nvhda32.sys
[2013-11-25 16:50:50 | 000,028,448 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvhdap32.dll
[2013-11-25 16:46:33 | 000,892,704 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvhdagenco32.dll
[2013-11-25 12:18:54 | 000,033,280 | ---- | M] () -- D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013-11-23 15:14:11 | 000,001,032 | ---- | M] () -- D:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013-11-11 15:31:28 | 000,054,272 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvwddi.dll
[2013-11-11 15:31:27 | 015,711,008 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvcpl.dll
[2013-11-11 15:31:27 | 000,209,184 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvmctray.dll
[2013-11-11 15:31:27 | 000,144,160 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\System32\nvcolor.exe
[2013-11-08 19:31:48 | 000,152,384 | ---- | M] () -- D:\WINDOWS\System32\FNTCACHE.DAT
[2013-11-08 11:20:01 | 000,000,710 | ---- | M] () -- D:\Documents and Settings\Marcin\Pulpit\PhotoScape.lnk
[2013-11-07 16:59:53 | 000,098,304 | ---- | M] (Sony DADC Austria AG.) -- D:\WINDOWS\System32\CmdLineExt.dll
[2013-11-07 16:58:48 | 000,000,951 | ---- | M] () -- D:\Documents and Settings\Marcin\Pulpit\Play Stronghold Legends.lnk
[4 D:\WINDOWS\*.tmp files - & gt; D:\WINDOWS\*.tmp - & gt; ]
[2 D:\WINDOWS\System32\dllcache\*.tmp files - & gt; D:\WINDOWS\System32\dllcache\*.tmp - & gt; ]
[1 D:\WINDOWS\System32\*.tmp files - & gt; D:\WINDOWS\System32\*.tmp - & gt; ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2013-12-04 17:04:21 | 034,113,827 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\Novicorp WinToFlash 0.8.0000 Beta.zip
[2013-12-04 16:20:12 | 011,213,257 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\PowerISO 5.6 [PL] [Zarejestrowany].rar
[2013-12-04 16:00:26 | 000,765,952 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\ubiorbitapi_r2.dll
[2013-12-04 16:00:26 | 000,041,984 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\SKIDROW.exe
[2013-12-04 16:00:26 | 000,014,243 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\skidrow.nfo
[2013-12-03 14:57:09 | 000,000,464 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\bn.rtf
[2013-12-02 21:14:53 | 000,003,485 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\pocmon.his
[2013-12-02 21:14:45 | 000,000,064 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\PocMon.dbg
[2013-12-02 15:38:44 | 000,000,647 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\Deluxe PocMon.lnk
[2013-12-02 14:56:37 | 000,001,819 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\Need For Extreme 3D.lnk
[2013-12-02 14:42:39 | 000,000,890 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\Action Ball Deluxe.lnk
[2013-11-27 21:44:40 | 008,991,503 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\GNIEW - Pięć Dwa (52 Dębiec).mp3
[2013-11-25 18:24:27 | 000,000,272 | ---- | C] () -- D:\WINDOWS\tasks\Uniblue SpeedUpMyPC Nag.job
[2013-11-25 18:24:26 | 000,000,394 | ---- | C] () -- D:\WINDOWS\tasks\Uniblue SpeedUpMyPC.job
[2013-11-25 17:00:14 | 000,018,657 | ---- | C] () -- D:\WINDOWS\System32\nvinfo.pb
[2013-11-08 11:20:01 | 000,000,710 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\PhotoScape.lnk
[2013-11-07 16:58:48 | 000,000,951 | ---- | C] () -- D:\Documents and Settings\Marcin\Pulpit\Play Stronghold Legends.lnk
[2013-11-01 16:55:43 | 000,000,616 | ---- | C] () -- D:\WINDOWS\eReg.dat
[2013-10-06 19:47:51 | 000,152,384 | ---- | C] () -- D:\WINDOWS\System32\FNTCACHE.DAT
[2013-10-05 18:06:00 | 001,802,736 | ---- | C] () -- D:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2013-06-13 16:53:02 | 000,002,516 | ---- | C] () -- D:\WINDOWS\System32\SHORTCUT.INI
[2013-06-13 16:52:55 | 000,000,260 | ---- | C] () -- D:\WINDOWS\System32\REMOTEDEVICE.INI
[2013-06-13 16:51:02 | 000,004,572 | ---- | C] () -- D:\WINDOWS\System32\LOCALSERVICE.INI
[2013-06-13 16:51:00 | 000,000,097 | ---- | C] () -- D:\WINDOWS\System32\LOCALDEVICE.INI
[2013-06-13 16:46:03 | 000,000,000 | ---- | C] () -- D:\WINDOWS\System32\BSPRINT.INI
[2013-05-20 19:20:16 | 000,000,098 | ---- | C] () -- D:\WINDOWS\H3WMAPED.INI
[2013-05-08 14:58:52 | 000,071,714 | ---- | C] () -- D:\Documents and Settings\Marcin\install.rdf
[2013-03-29 16:34:54 | 000,000,012 | -HS- | C] () -- D:\WINDOWS\System32\Userdata.ini
[2013-03-27 10:49:29 | 000,014,776 | ---- | C] () -- D:\WINDOWS\System32\drivers\SmartDefragDriver.sys
[2013-03-26 11:04:14 | 000,256,000 | ---- | C] () -- D:\WINDOWS\PEV.exe
[2013-03-26 11:04:14 | 000,208,896 | ---- | C] () -- D:\WINDOWS\MBR.exe
[2013-03-26 11:04:14 | 000,098,816 | ---- | C] () -- D:\WINDOWS\sed.exe
[2013-03-26 11:04:14 | 000,080,412 | ---- | C] () -- D:\WINDOWS\grep.exe
[2013-03-26 11:04:14 | 000,068,096 | ---- | C] () -- D:\WINDOWS\zip.exe
[2013-03-19 16:16:57 | 000,000,664 | ---- | C] () -- D:\WINDOWS\System32\d3d9caps.dat
[2013-03-05 19:16:07 | 000,000,296 | ---- | C] () -- D:\Documents and Settings\Marcin\Dane aplikacji\Taxi4.MCS
[2013-02-28 16:43:52 | 000,000,001 | ---- | C] () -- D:\WINDOWS\System32\SI.bin
[2013-02-24 15:27:54 | 000,471,119 | ---- | C] () -- D:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-1606980848-343818398-839522115-1003-0.dat
[2013-02-24 15:27:53 | 000,166,682 | ---- | C] () -- D:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat
[2013-02-21 15:51:05 | 000,033,280 | ---- | C] () -- D:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013-02-19 19:01:10 | 000,000,213 | ---- | C] () -- D:\WINDOWS\BsMobileModel.ini
[2013-01-26 12:49:20 | 000,045,056 | ---- | C] () -- D:\WINDOWS\System32\vusetup.dll
[2013-01-14 19:33:00 | 000,278,984 | ---- | C] () -- D:\WINDOWS\System32\drivers\atksgt.sys
[2013-01-14 19:32:59 | 000,025,416 | ---- | C] () -- D:\WINDOWS\System32\drivers\lirsgt.sys
[2012-12-28 19:58:41 | 000,026,084 | ---- | C] () -- D:\WINDOWS\System32\drivers\RTAIODAT.DAT
[2012-11-27 18:11:16 | 000,354,816 | ---- | C] () -- D:\WINDOWS\System32\psisdecd.dll
[2012-11-24 16:22:07 | 000,178,688 | ---- | C] () -- D:\WINDOWS\System32\unrar.dll
[2012-11-20 17:15:08 | 000,000,583 | ---- | C] () -- D:\WINDOWS\CoD.INI
[2012-11-19 19:57:45 | 001,127,544 | ---- | C] () -- D:\WINDOWS\System32\nvdrsdb1.bin
[2012-11-19 19:57:45 | 001,127,544 | ---- | C] () -- D:\WINDOWS\System32\nvdrsdb0.bin
[2012-11-19 19:57:45 | 000,000,001 | ---- | C] () -- D:\WINDOWS\System32\nvdrssel.bin
[2012-11-19 19:57:19 | 003,556,824 | ---- | C] () -- D:\WINDOWS\System32\nvdata.data
[2012-11-19 18:10:19 | 000,497,664 | ---- | C] () -- D:\WINDOWS\System32\1602Unst.exe
[2012-11-19 08:33:32 | 000,065,656 | ---- | C] () -- D:\WINDOWS\System32\bdmpegv.dll
[2012-11-19 08:33:30 | 000,022,640 | ---- | C] () -- D:\WINDOWS\System32\bdmjpeg.dll
[2012-11-18 15:52:26 | 000,004,293 | ---- | C] () -- D:\WINDOWS\ODBCINST.INI
[2012-11-18 15:19:32 | 000,643,142 | ---- | C] () -- D:\WINDOWS\aticlocklib.dll
[2012-11-18 15:19:32 | 000,110,592 | ---- | C] () -- D:\WINDOWS\R5ClkLib.dll
[2012-11-18 15:19:32 | 000,020,480 | ---- | C] () -- D:\WINDOWS\HyperDrive.exe
[2012-11-18 15:19:31 | 000,196,653 | ---- | C] () -- D:\WINDOWS\System32\drivers\aVivid.bin
[2012-11-18 15:19:31 | 000,196,608 | ---- | C] () -- D:\WINDOWS\System32\drivers\nVivid.bin
[2012-11-18 15:19:31 | 000,196,608 | ---- | C] () -- D:\WINDOWS\System32\drivers\nStandard.bin
[2012-11-18 15:19:31 | 000,196,608 | ---- | C] () -- D:\WINDOWS\System32\drivers\nAsmedia.bin
[2012-11-18 15:19:31 | 000,196,608 | ---- | C] () -- D:\WINDOWS\System32\drivers\nAdvanced.bin
[2012-11-18 15:19:31 | 000,196,608 | ---- | C] () -- D:\WINDOWS\System32\drivers\aAdvanced.bin
[2012-11-18 15:19:31 | 000,196,582 | ---- | C] () -- D:\WINDOWS\System32\drivers\aStandard.bin
[2012-11-18 15:19:31 | 000,196,582 | ---- | C] () -- D:\WINDOWS\System32\drivers\aAsmedia.bin
[2012-11-18 15:19:31 | 000,000,018 | ---- | C] () -- D:\WINDOWS\System32\atkid.ini
[2012-11-18 15:19:30 | 000,761,856 | ---- | C] () -- D:\WINDOWS\System32\xvidcore.dll
[2012-11-18 15:19:30 | 000,180,224 | ---- | C] () -- D:\WINDOWS\System32\xvidvfw.dll
[2012-11-18 15:19:30 | 000,046,592 | ---- | C] () -- D:\WINDOWS\System32\asfrench.dll
[2012-11-18 15:19:30 | 000,046,080 | ---- | C] () -- D:\WINDOWS\System32\asrussian.dll
[2012-11-18 15:19:30 | 000,046,080 | ---- | C] () -- D:\WINDOWS\System32\asgerman.dll
[2012-11-18 15:19:30 | 000,046,080 | ---- | C] () -- D:\WINDOWS\System32\aseng.dll
[2012-11-18 15:19:30 | 000,045,568 | ---- | C] () -- D:\WINDOWS\System32\askorean.dll
[2012-11-18 15:19:30 | 000,045,568 | ---- | C] () -- D:\WINDOWS\System32\asjapan.dll
[2012-11-18 15:19:30 | 000,045,568 | ---- | C] () -- D:\WINDOWS\System32\ASCHT.dll
[2012-11-18 15:19:30 | 000,045,568 | ---- | C] () -- D:\WINDOWS\System32\aschs.dll
[2012-11-18 15:08:33 | 000,049,152 | R--- | C] () -- D:\WINDOWS\System32\ChCfg.exe
[2012-11-18 15:00:10 | 000,002,048 | --S- | C] () -- D:\WINDOWS\bootstat.dat
[2012-11-18 14:56:59 | 000,021,856 | ---- | C] () -- D:\WINDOWS\System32\emptyregdb.dat
[2012-11-18 14:11:36 | 000,624,948 | ---- | C] () -- D:\WINDOWS\System32\perfh015.dat
[2012-11-18 14:11:36 | 000,313,828 | ---- | C] () -- D:\WINDOWS\System32\perfi015.dat
[2012-11-18 14:11:36 | 000,130,414 | ---- | C] () -- D:\WINDOWS\System32\perfc015.dat
[2012-11-18 14:11:36 | 000,034,990 | ---- | C] () -- D:\WINDOWS\System32\perfd015.dat
[2012-11-18 14:11:14 | 000,004,569 | ---- | C] () -- D:\WINDOWS\System32\secupd.dat
[2012-11-18 14:11:10 | 000,559,036 | ---- | C] () -- D:\WINDOWS\System32\perfh009.dat
[2012-11-18 14:11:10 | 000,272,128 | ---- | C] () -- D:\WINDOWS\System32\perfi009.dat
[2012-11-18 14:11:10 | 000,103,750 | ---- | C] () -- D:\WINDOWS\System32\perfc009.dat
[2012-11-18 14:11:10 | 000,028,626 | ---- | C] () -- D:\WINDOWS\System32\perfd009.dat
[2012-11-18 14:11:09 | 000,004,463 | ---- | C] () -- D:\WINDOWS\System32\oembios.dat
[2012-11-18 14:11:07 | 013,107,200 | ---- | C] () -- D:\WINDOWS\System32\oembios.bin
[2012-11-18 14:11:04 | 000,000,741 | ---- | C] () -- D:\WINDOWS\System32\noise.dat
[2012-11-18 14:10:55 | 000,673,088 | ---- | C] () -- D:\WINDOWS\System32\mlang.dat
[2012-11-18 14:10:55 | 000,046,258 | ---- | C] () -- D:\WINDOWS\System32\mib.bin
[2012-11-18 14:10:39 | 000,218,003 | ---- | C] () -- D:\WINDOWS\System32\dssec.dat
[2012-11-18 14:10:30 | 000,001,804 | ---- | C] () -- D:\WINDOWS\System32\dcache.bin
[color=#E56717]========== ZeroAccess Check ==========[/color]
[2013-01-24 12:40:15 | 000,000,227 | RHS- | M] () -- D:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
" " = %SystemRoot%\system32\shdocvw.dll -- [2012-08-30 21:33:28 | 001,510,400 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
" " = %systemroot%\system32\wbem\fastprox.dll -- [2009-02-09 11:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
" " = %systemroot%\system32\wbem\wbemess.dll -- [2008-04-14 22:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Both
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 112 bytes - & gt; D:\Documents and Settings\All Users\Dane aplikacji\TEMP:D1B5B4F1
& lt; End of report & gt;