ADVERTISEMENT

raport_OTL.txt

Jak zablokować wyskakujące strony internetowe na komputerze?

Witam, Bardzo proszę o pomoc. Od jakiegoś czasu koleżance wyskakują samoistnie różnego rodzaju stronki internetowe (np. http://videoplayer.com.pl/player/, http://pl.n-mobile.net/kolo/?16). W załączeniu przesyłam logi z programu OTL Pozdrawiam i z góry dziękuje za pomoc.


Download file - link to post

OTL logfile created on: 2013-12-07 19:49:29 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\karolcia\Moje dokumenty\Pobieranie
Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1015,36 Mb Total Physical Memory | 343,43 Mb Available Physical Memory | 33,82% Memory free
1,90 Gb Paging File | 1,25 Gb Available in Paging File | 66,04% Paging File free
Paging file location(s): C:\pagefile.sys 1028 1042 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,44 Gb Total Space | 18,81 Gb Free Space | 38,83% Space Free | Partition Type: NTFS
Drive D: | 7,45 Gb Total Space | 7,40 Gb Free Space | 99,24% Space Free | Partition Type: NTFS
Drive F: | 2,63 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: KAROL | User Name: karolcia | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 180 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2013-12-07 19:27:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\karolcia\Moje dokumenty\Pobieranie\OTL.exe
PRC - [2013-11-15 12:26:50 | 003,995,120 | ---- | M] () -- C:\Program Files\tuto4pc_pl_32\tuto4pc_pl_32.exe
PRC - [2013-11-06 16:41:32 | 003,994,064 | ---- | M] () -- C:\Program Files\tuto4pc_pl_31\tuto4pc_pl_31.exe
PRC - [2013-08-26 15:48:54 | 003,154,416 | ---- | M] () -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\tuto4pc_pl_17\upt4pc_pl_17.exe
PRC - [2013-07-07 22:29:48 | 000,138,096 | ---- | M] (Facebook Inc.) -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\Facebook\Update\FacebookUpdate.exe
PRC - [2013-05-09 09:58:30 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013-05-09 09:58:30 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013-03-04 16:26:55 | 000,139,264 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\system32\UAService7.exe
PRC - [2013-02-13 03:37:16 | 001,263,952 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2013-01-31 15:10:00 | 000,201,808 | ---- | M] (Somoto) -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\FilesFrog Update Checker\update_checker.exe
PRC - [2012-04-04 17:47:32 | 000,161,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
PRC - [2011-01-17 18:50:30 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2011-01-17 18:50:30 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2010-12-02 15:34:46 | 000,032,768 | ---- | M] (AVEO) -- C:\Program Files\AVEO USB2.0 PC Camera(U2HGCV3P31048)\AveoSTI.exe
PRC - [2007-04-03 17:50:00 | 001,603,152 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2007-02-04 12:02:14 | 000,079,400 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
PRC - [2006-10-30 16:59:34 | 000,024,576 | ---- | M] () -- C:\Windows\system32\spool\drivers\w32x86\3\WrtProc.exe
PRC - [2006-09-20 08:35:26 | 000,020,480 | ---- | M] () -- C:\Windows\system32\spool\drivers\w32x86\3\WrtMon.exe
PRC - [2005-06-29 20:06:54 | 000,043,008 | ---- | M] (Cognizance Corporation) -- C:\Program Files\HPQ\IAM\Bin\asghost.exe
PRC - [2004-08-04 09:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2013-12-06 20:24:09 | 002,244,096 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\13120601\algo.dll
MOD - [2013-12-06 13:37:39 | 002,244,096 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\13120600\algo.dll
MOD - [2013-11-15 12:26:50 | 003,995,120 | ---- | M] () -- C:\Program Files\tuto4pc_pl_32\tuto4pc_pl_32.exe
MOD - [2013-11-06 16:41:32 | 003,994,064 | ---- | M] () -- C:\Program Files\tuto4pc_pl_31\tuto4pc_pl_31.exe
MOD - [2013-08-26 15:48:54 | 003,154,416 | ---- | M] () -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\tuto4pc_pl_17\upt4pc_pl_17.exe
MOD - [2013-02-13 03:38:06 | 000,100,688 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2013-02-13 03:37:16 | 001,263,952 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2012-08-14 16:05:12 | 000,170,496 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxslt.dll
MOD - [2012-08-14 16:05:10 | 000,985,088 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2010-10-25 14:38:12 | 000,049,152 | ---- | M] () -- C:\Program Files\AVEO USB2.0 PC Camera(U2HGCV3P31048)\AVEOCamSDK.dll
MOD - [2006-10-30 16:59:34 | 000,024,576 | ---- | M] () -- C:\Windows\system32\spool\drivers\w32x86\3\WrtProc.exe
MOD - [2006-09-20 08:35:26 | 000,020,480 | ---- | M] () -- C:\Windows\system32\spool\drivers\w32x86\3\WrtMon.exe
MOD - [2004-08-04 09:00:00 | 000,014,336 | ---- | M] () -- C:\Windows\system32\msdmo.dll
MOD - [2004-06-01 10:39:56 | 000,094,274 | ---- | M] () -- C:\Windows\system32\HPBHEALR.DLL


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2013-11-15 19:49:40 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013-05-09 09:58:30 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2013-03-04 16:26:55 | 000,139,264 | ---- | M] (Sony DADC Austria AG.) [Auto | Running] -- C:\Windows\system32\UAService7.exe -- (UserAccess7)
SRV - [2012-04-04 17:47:32 | 000,161,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012-01-31 14:09:34 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2004-08-10 23:46:56 | 000,483,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Windows Media Connect\mswmccds.exe -- (WmcCds)
SRV - [2004-08-10 20:50:42 | 000,028,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Media Connect\mswmcls.exe -- (WmcCdsLs)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\karolcia\USTAWI~1\Temp\sony_ssm.sys -- (sony_ssm.sys)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2013-10-06 07:16:30 | 000,243,128 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2013-06-27 21:39:19 | 000,770,344 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2013-06-27 21:39:19 | 000,369,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2013-06-27 21:39:19 | 000,175,176 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2013-05-09 09:59:10 | 000,056,080 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2013-05-09 09:59:10 | 000,049,376 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2013-05-09 09:59:09 | 000,066,336 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\system32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2013-05-09 09:59:09 | 000,049,760 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (AswRdr)
DRV - [2013-05-09 09:59:08 | 000,029,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012-10-30 23:51:56 | 000,020,624 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswKbd.sys -- (aswKbd)
DRV - [2010-12-31 16:37:10 | 000,321,024 | ---- | M] (AVEO Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\AVEOdcnt.sys -- (AVEO)
DRV - [2006-02-16 08:45:26 | 000,057,096 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2006-02-06 03:00:06 | 000,045,312 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2006-01-30 02:00:04 | 001,120,352 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2006-01-19 14:50:40 | 001,428,096 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\w39n51.sys -- (w39n51)
DRV - [2006-01-19 14:50:14 | 000,424,320 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2005-09-19 12:24:20 | 000,005,760 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EabUsb.sys -- (eabusb)
DRV - [2005-09-19 12:24:10 | 000,009,344 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\CPQBttn.sys -- (HBtnKey)
DRV - [2005-09-19 12:23:52 | 000,007,808 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | System | Running] -- C:\Windows\system32\drivers\eabfiltr.sys -- (eabfiltr)
DRV - [2005-08-31 04:20:00 | 000,094,332 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2005-08-31 04:20:00 | 000,087,036 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2005-08-31 04:20:00 | 000,086,524 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLAIFS_M.SYS -- (DLAIFS_M)
DRV - [2005-08-31 04:20:00 | 000,025,628 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2005-08-31 04:20:00 | 000,014,684 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2005-08-31 04:20:00 | 000,006,364 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2005-08-31 04:20:00 | 000,002,496 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLADResN.SYS -- (DLADResN)
DRV - [2005-08-25 11:16:52 | 000,005,628 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\Windows\system32\drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2005-08-25 11:16:16 | 000,022,684 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\Windows\system32\drivers\DLARTL_N.SYS -- (DLARTL_N)
DRV - [2001-10-26 16:07:38 | 000,036,425 | ---- | M] (SMC) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\smcirda.sys -- (SMCIRDA)


[color=#E56717]========== Standard Registry (All) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKLM\..\SearchScopes,DefaultScope = {656F8FF8-B042-4056-8BB4-5E63DBDD8D90}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: " URL " = http://search.live.com/results.aspx?q={searchTerms} & src={referrer:source?}
IE - HKLM\..\SearchScopes\{656F8FF8-B042-4056-8BB4-5E63DBDD8D90}: " URL " = http://www.google.com/search?q={searchTerms} & rls=com.microsoft:{language}:{referrer:source?} & ie={inputEncoding} & oe={outputEncoding} & sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com/?ocid=OIE8HP & PC=B8DF
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {656F8FF8-B042-4056-8BB4-5E63DBDD8D90}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: " URL " = http://www.bing.com/search?FORM=IPGTDF & PC=IPGTDF & q={searchTerms} & src=IE-SearchBox
IE - HKCU\..\SearchScopes\{656F8FF8-B042-4056-8BB4-5E63DBDD8D90}: " URL " = http://www.google.com/search?q={searchTerms} & rls=com.microsoft:{language}:{referrer:source?} & ie={inputEncoding} & oe={outputEncoding} & sourceid=ie7 & rlz=1I7RLTB_plPL522
IE - HKCU\..\SearchScopes\{79A02134-ABE0-4CCF-8FE2-552C5EA0606B}: " URL " = http://www.bing.com/search?q={searchTerms} & form=B8DFDF & pc=B8DF & src=IE-SearchBox
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: " ProxyEnable " = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0.1


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2012-05-22 21:52:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-03-27 17:41:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-06-12 09:39:46 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2013-05-20 18:47:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\karolcia\Dane aplikacji\Mozilla\Extensions
[2013-12-07 17:20:09 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\karolcia\Dane aplikacji\Mozilla\Firefox\Profiles\4x5ol8zw.default-1380793237421\extensions
[2013-12-07 17:20:08 | 000,915,554 | ---- | M] () (No name found) -- C:\Documents and Settings\karolcia\Dane aplikacji\Mozilla\Firefox\Profiles\4x5ol8zw.default-1380793237421\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013-10-06 07:14:43 | 000,001,302 | ---- | M] () -- C:\Documents and Settings\karolcia\Dane aplikacji\Mozilla\Firefox\Profiles\4x5ol8zw.default-1380793237421\searchplugins\searchgol.xml
[2013-11-15 19:49:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\Extensions
[2013-11-15 19:49:23 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013-11-15 19:49:41 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

[color=#E56717]========== Chrome ==========[/color]

CHR - homepage: http://www.google.com/
CHR - homepage: http://www.google.com/

O1 HOSTS File: ([2004-08-04 09:00:00 | 000,000,742 | ---- | M]) - C:\Windows\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (DivX Plus Web Player HTML5 & lt; video & gt; ) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\Windows\system32\DLA\DLASHX_W.DLL (Sonic Solutions)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (HP Credential Manager for ProtectTools) - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll (Infineon Technologies AG)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKCU\..\Toolbar\WebBrowser: ( & Adres) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: ( & £¹cza) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\shell32.dll (Microsoft Corporation)
O4 - HKLM..\Run: [20131121] C:\Program Files\AVAST Software\Avast\setup\emupdate\6956baf8-5bb1-405c-84a3-af7632ec5ced.exe (AVAST Software)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [AveoSTI.exe] C:\Program Files\AVEO USB2.0 PC Camera(U2HGCV3P31048)\AveoSTI.exe (AVEO)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe (DivX, LLC)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [OpwareSE4] C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Computer, Inc.)
O4 - HKLM..\Run: [SSBkgdUpdate] C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [tuto4pc_pl_17] File not found
O4 - HKLM..\Run: [tuto4pc_pl_31] C:\Program Files\tuto4pc_pl_31\tuto4pc_pl_31.exe ()
O4 - HKLM..\Run: [tuto4pc_pl_32] C:\Program Files\tuto4pc_pl_32\tuto4pc_pl_32.exe ()
O4 - HKLM..\Run: [upt4pc_pl_17.exe] C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\tuto4pc_pl_17\upt4pc_pl_17.exe ()
O4 - HKLM..\Run: [WrtMon.exe] C:\Windows\system32\spool\drivers\w32x86\3\WrtMon.exe ()
O4 - HKCU..\Run: [ctfmon.exe] C:\Windows\system32\ctfmon.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKCU..\Run: [Facebook Update] C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKCU..\Run: [SDP] C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\FilesFrog Update Checker\update_checker.exe (Somoto)
O4 - HKCU..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - Startup: C:\Documents and Settings\karolcia\Menu Start\Programy\Autostart\OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\NPJPI150_06.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\system32\mswsock.dll (Microsoft Corporation)
O15 - HKCU\..Trusted Domains: mks.com.pl ([]http in Trusted sites)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_04-windows-i586.cab (Java Plug-in 1.7.0_04)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.7.0_04)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{56E16636-6ADA-4E9F-8D39-88763F95420E}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\Windows\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\Windows\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\Windows\system32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\Windows\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL " sysdm.cpl " ) - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\OneCard: DllName - (C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll) - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll (Cognizance Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\Windows\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\Windows\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\Windows\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Modu³ wstêpnego ³adowania interfejsu Browseui - C:\Windows\system32\browseui.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Demon buforu kategorii sk³adników - C:\Windows\system32\browseui.dll (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bie¿¹ca strona g³ówna) - About:Home
O24 - Desktop WallPaper: C:\Windows\HP Cityscape Wide.bmp
O24 - Desktop BackupWallPaper: C:\Windows\HP Cityscape Wide.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005-11-26 13:07:06 | 000,005,345 | R--- | M] () - F:\autorun.apm -- [ CDFS ]
O32 - AutoRun File - [2005-11-26 13:07:06 | 001,089,536 | R--- | M] (Indigo Rose Corporation) - F:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2005-11-26 13:07:06 | 000,019,790 | R--- | M] () - F:\autorun.ico -- [ CDFS ]
O32 - AutoRun File - [2005-11-26 13:07:06 | 000,000,047 | R--- | M] () - F:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{10e1d1c1-62df-11e2-a4e3-0014a5b1c031}\Shell\AutoRun\command - " " = G:\Samsung_Drive_Manager.exe
O33 - MountPoints2\{59ce82f7-2e4d-11e3-a6b4-0014a5b1c031}\Shell - " " = AutoRun
O33 - MountPoints2\{59ce82f7-2e4d-11e3-a6b4-0014a5b1c031}\Shell\AutoRun\command - " " = F:\autorun.exe -- [2005-11-26 13:07:06 | 001,089,536 | R--- | M] (Indigo Rose Corporation)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- " %1 " %*
O35 - HKLM\..exefile [open] -- " %1 " %*
O37 - HKLM\...com [@ = comfile] -- " %1 " %*
O37 - HKLM\...exe [@ = exefile] -- " %1 " %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

[color=#E56717]========== Files/Folders - Created Within 180 Days ==========[/color]

[2013-12-07 19:20:51 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\karolcia\Recent
[2013-11-27 15:27:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Pulpit\tomasz kalendarz
[2013-11-19 17:30:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\tuto4pc_pl_32
[2013-11-19 17:30:40 | 000,000,000 | ---D | C] -- C:\Program Files\tuto4pc_pl_32
[2013-11-15 19:49:22 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013-11-06 20:02:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Pulpit\zeszyt
[2013-11-06 20:01:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\tuto4pc_pl_31
[2013-11-06 20:01:47 | 000,000,000 | ---D | C] -- C:\Program Files\tuto4pc_pl_31
[2013-11-01 13:24:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Techland
[2013-11-01 13:22:57 | 000,000,000 | ---D | C] -- C:\Program Files\Techland
[2013-10-29 07:17:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\Scansoft
[2013-10-28 12:01:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Rejestracja u¿ytkownika drukarki Canon MX310 series
[2013-10-28 11:59:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\CANON
[2013-10-28 11:57:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Canon Utilities
[2013-10-28 11:56:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Canon MX310 series Manual
[2013-10-28 11:56:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ
[2013-10-28 11:56:25 | 000,215,040 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNMLM8Z.DLL
[2013-10-28 11:56:22 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\CanonIJ Uninstaller Information
[2013-10-28 11:56:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Canon MX310 series
[2013-10-28 11:55:53 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2013-10-28 11:54:32 | 000,000,000 | ---D | C] -- C:\Program Files\Canon
[2013-10-28 11:48:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Presto! PageManager 7.15
[2013-10-28 11:47:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\NewSoft
[2013-10-28 11:47:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PDFView
[2013-10-28 11:47:13 | 000,000,000 | ---D | C] -- C:\Program Files\NewSoft
[2013-10-28 11:47:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Color
[2013-10-28 11:45:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Dane aplikacji\ScanSoft
[2013-10-28 11:45:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ScanSoft OmniPage SE 4
[2013-10-28 11:45:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ScanSoft Shared
[2013-10-28 11:45:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ScanSoft
[2013-10-28 11:45:13 | 000,000,000 | ---D | C] -- C:\Program Files\ScanSoft
[2013-10-18 15:28:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Pulpit\chrzest
[2013-10-06 17:56:16 | 000,000,000 | ---D | C] -- C:\Program Files\predm
[2013-10-06 17:54:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\avgchrome
[2013-10-06 07:20:57 | 000,090,112 | ---- | C] (MindVision Software) -- C:\WINDOWS\unvise32.exe
[2013-10-06 07:20:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\The Rosetta Stone
[2013-10-06 07:20:17 | 000,000,000 | ---D | C] -- C:\Program Files\The Rosetta Stone
[2013-10-06 07:18:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Local Settings
[2013-10-06 07:18:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\FilesFrog Update Checker
[2013-10-06 07:18:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Menu Start\Programy\FilesFrog Update Checker
[2013-10-06 07:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\DAEMON Tools Lite
[2013-10-06 07:16:30 | 000,243,128 | ---- | C] (Disc Soft Ltd) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys
[2013-10-06 07:16:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Dane aplikacji\DAEMON Tools Lite
[2013-10-06 07:16:14 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2013-10-06 07:14:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2013-10-06 07:14:00 | 014,021,608 | ---- | C] (Disc Soft Ltd) -- C:\Documents and Settings\karolcia\Moje dokumenty\DTLite4471-0337.exe
[2013-10-06 07:13:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon
[2013-10-06 06:48:57 | 000,000,000 | ---D | C] -- C:\rosetta
[2013-10-06 06:45:58 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools
[2013-10-06 06:45:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Dane aplikacji\1J1F1H1E2Y2Z1P1C1B2W1L1T2ZtF1E1I
[2013-10-06 06:45:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\eorezo
[2013-10-06 06:45:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\tuto4pc_pl_17
[2013-10-06 06:45:30 | 000,000,000 | ---D | C] -- C:\Program Files\tuto4pc_pl_17
[2013-10-06 06:45:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\Lollipop
[2013-10-06 06:45:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Dane aplikacji\Funmoods
[2013-10-03 10:40:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Pulpit\Stare dane programu Firefox
[2013-09-02 07:36:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Pulpit\szklarska
[2013-08-19 17:01:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Pulpit\sierpieñ 2013
[2013-08-18 08:16:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Pulpit\Bas
[2013-07-22 20:07:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Pulpit\G³êbokie 2013
[2013-07-22 19:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Pulpit\Vipiteno 2013
[2013-07-22 19:55:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Pulpit\Mattinata 2013
[2013-07-22 19:54:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Pulpit\Bieszczady 2013
[2013-07-22 19:54:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Pulpit\nad Ba³tykiem 2013
[2013-07-07 22:29:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\Temp
[2013-07-07 22:29:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\Facebook
[2013-06-12 09:39:49 | 000,066,336 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys
[4 C:\WINDOWS\System32\*.tmp files - & gt; C:\WINDOWS\System32\*.tmp - & gt; ]
[1 C:\WINDOWS\*.tmp files - & gt; C:\WINDOWS\*.tmp - & gt; ]

[color=#E56717]========== Files - Modified Within 180 Days ==========[/color]

[2013-12-07 19:58:00 | 000,000,428 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{0D0C526C-4370-4D0A-99C7-84D682ADEE75}.job
[2013-12-07 17:34:00 | 000,001,014 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3780645296-2410079141-1350015415-1006UA.job
[2013-12-07 15:29:58 | 000,000,364 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2013-12-07 15:29:09 | 000,000,266 | ---- | M] () -- C:\WINDOWS\tasks\dsmonitor.job
[2013-12-07 15:28:54 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013-12-07 15:28:50 | 1064,751,104 | -HS- | M] () -- C:\hiberfil.sys
[2013-12-06 08:32:00 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\EPUpdater.job
[2013-12-01 11:18:33 | 000,009,399 | ---- | M] () -- C:\Documents and Settings\karolcia\Pulpit\To i Mek.odt
[2013-11-19 18:27:36 | 004,863,503 | ---- | M] () -- C:\Documents and Settings\karolcia\Pulpit\DSCF3853.JPG
[2013-11-18 10:42:54 | 000,015,222 | ---- | M] () -- C:\Documents and Settings\karolcia\Pulpit\podanie.odt
[2013-11-17 15:29:21 | 000,499,958 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2013-11-17 15:29:21 | 000,441,124 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013-11-17 15:29:21 | 000,088,618 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2013-11-17 15:29:21 | 000,071,060 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013-11-11 13:40:39 | 000,102,912 | ---- | M] () -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013-11-09 20:13:14 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2013-11-09 20:13:14 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
[2013-11-03 07:33:40 | 000,079,595 | ---- | M] () -- C:\Documents and Settings\karolcia\Pulpit\czerwona_lista_motyli_dziennych.pdf
[2013-11-01 13:25:05 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\QuickTime Player.lnk
[2013-11-01 13:24:31 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\karolcia\Pulpit\Socrates 102.lnk
[2013-10-28 12:01:27 | 000,001,685 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Rejestracja u¿ytkownika drukarki Canon MX310 series.LNK
[2013-10-28 11:59:22 | 000,001,644 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\My Printer.lnk
[2013-10-28 11:59:04 | 000,001,680 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Canon Solution Menu.lnk
[2013-10-28 11:58:48 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Easy-PhotoPrint EX.lnk
[2013-10-28 11:57:40 | 000,001,736 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\MP Navigator EX 1.0.lnk
[2013-10-28 11:56:53 | 000,001,909 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\MX310 series Podrêcznik ekranowy.lnk
[2013-10-28 11:48:54 | 000,001,810 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Presto! PageManager 7.15.lnk
[2013-10-28 11:48:38 | 000,000,264 | ---- | M] () -- C:\WINDOWS\setup.iss
[2013-10-28 11:46:06 | 000,000,412 | ---- | M] () -- C:\WINDOWS\MAXLINK.INI
[2013-10-27 13:45:48 | 000,979,846 | ---- | M] () -- C:\Documents and Settings\karolcia\Pulpit\ipet_i_pdw.pdf
[2013-10-18 15:54:51 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2013-10-06 07:20:54 | 000,001,852 | ---- | M] () -- C:\Documents and Settings\karolcia\Pulpit\The Rosetta Stone.lnk
[2013-10-06 07:17:31 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2013-10-06 07:16:30 | 000,243,128 | ---- | M] (Disc Soft Ltd) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys
[2013-10-06 07:14:00 | 014,021,608 | ---- | M] (Disc Soft Ltd) -- C:\Documents and Settings\karolcia\Moje dokumenty\DTLite4471-0337.exe
[2013-10-06 06:43:41 | 000,153,926 | ---- | M] () -- C:\Documents and Settings\karolcia\Moje dokumenty\DAEMON Tools PL 4.30.1.exe
[2013-09-29 18:52:30 | 000,006,608 | ---- | M] () -- C:\Documents and Settings\karolcia\Pulpit\indeks.jpeg
[2013-09-20 22:34:00 | 000,000,992 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3780645296-2410079141-1350015415-1006Core.job
[2013-09-15 17:15:59 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013-09-07 22:13:11 | 000,024,358 | ---- | M] () -- C:\Documents and Settings\karolcia\Moje dokumenty\2013-09-07.hrf
[2013-07-27 14:53:44 | 000,031,708 | ---- | M] () -- C:\Documents and Settings\karolcia\Pulpit\Koszty BUDOWY DOMY ZE S£OMY.odt
[2013-07-16 18:04:53 | 000,000,532 | ---- | M] () -- C:\Documents and Settings\karolcia\Pulpit\Skrót do dialog.lnk
[2013-06-27 21:39:19 | 000,770,344 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2013-06-27 21:39:19 | 000,369,584 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2013-06-27 21:39:19 | 000,175,176 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2013-06-27 21:39:19 | 000,000,175 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswVmm.sys.sum
[2013-06-27 21:39:19 | 000,000,175 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswSP.sys.sum
[2013-06-27 21:39:19 | 000,000,175 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswSnx.sys.sum
[2013-06-27 10:30:37 | 000,021,697 | ---- | M] () -- C:\Documents and Settings\karolcia\Moje dokumenty\2013-06-27.hrf
[2013-06-12 09:39:49 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[4 C:\WINDOWS\System32\*.tmp files - & gt; C:\WINDOWS\System32\*.tmp - & gt; ]
[1 C:\WINDOWS\*.tmp files - & gt; C:\WINDOWS\*.tmp - & gt; ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2013-11-26 12:54:48 | 000,009,399 | ---- | C] () -- C:\Documents and Settings\karolcia\Pulpit\To i Mek.odt
[2013-11-19 18:27:34 | 004,863,503 | ---- | C] () -- C:\Documents and Settings\karolcia\Pulpit\DSCF3853.JPG
[2013-11-18 10:42:53 | 000,015,222 | ---- | C] () -- C:\Documents and Settings\karolcia\Pulpit\podanie.odt
[2013-11-09 20:13:14 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
[2013-11-09 20:13:14 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
[2013-11-03 07:33:40 | 000,079,595 | ---- | C] () -- C:\Documents and Settings\karolcia\Pulpit\czerwona_lista_motyli_dziennych.pdf
[2013-11-01 13:25:05 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\QuickTime Player.lnk
[2013-11-01 13:24:31 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\karolcia\Pulpit\Socrates 102.lnk
[2013-10-28 12:01:27 | 000,001,685 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Rejestracja u¿ytkownika drukarki Canon MX310 series.LNK
[2013-10-28 11:59:22 | 000,001,644 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\My Printer.lnk
[2013-10-28 11:59:04 | 000,001,680 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Canon Solution Menu.lnk
[2013-10-28 11:58:48 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Easy-PhotoPrint EX.lnk
[2013-10-28 11:57:40 | 000,001,736 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\MP Navigator EX 1.0.lnk
[2013-10-28 11:56:53 | 000,001,909 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\MX310 series Podrêcznik ekranowy.lnk
[2013-10-28 11:48:54 | 000,001,810 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Presto! PageManager 7.15.lnk
[2013-10-28 11:48:36 | 000,009,606 | ---- | C] () -- C:\WINDOWS\System32\NEWSOFT
[2013-10-28 11:48:22 | 000,000,264 | ---- | C] () -- C:\WINDOWS\setup.iss
[2013-10-28 11:48:02 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\pmsbfn32.dll
[2013-10-28 11:46:06 | 000,000,412 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2013-10-27 13:45:40 | 000,979,846 | ---- | C] () -- C:\Documents and Settings\karolcia\Pulpit\ipet_i_pdw.pdf
[2013-10-06 07:20:54 | 000,001,852 | ---- | C] () -- C:\Documents and Settings\karolcia\Pulpit\The Rosetta Stone.lnk
[2013-10-06 07:17:31 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2013-10-06 07:14:06 | 000,000,278 | ---- | C] () -- C:\WINDOWS\tasks\EPUpdater.job
[2013-10-06 06:45:01 | 000,153,926 | ---- | C] () -- C:\Documents and Settings\karolcia\Moje dokumenty\DAEMON Tools PL 4.30.1.exe
[2013-09-29 18:52:28 | 000,006,608 | ---- | C] () -- C:\Documents and Settings\karolcia\Pulpit\indeks.jpeg
[2013-09-07 22:13:11 | 000,024,358 | ---- | C] () -- C:\Documents and Settings\karolcia\Moje dokumenty\2013-09-07.hrf
[2013-07-27 14:53:43 | 000,031,708 | ---- | C] () -- C:\Documents and Settings\karolcia\Pulpit\Koszty BUDOWY DOMY ZE S£OMY.odt
[2013-07-16 18:04:53 | 000,000,532 | ---- | C] () -- C:\Documents and Settings\karolcia\Pulpit\Skrót do dialog.lnk
[2013-07-07 22:29:53 | 000,001,014 | ---- | C] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3780645296-2410079141-1350015415-1006UA.job
[2013-07-07 22:29:53 | 000,000,992 | ---- | C] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3780645296-2410079141-1350015415-1006Core.job
[2013-06-27 21:39:19 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys.sum
[2013-06-27 10:30:37 | 000,021,697 | ---- | C] () -- C:\Documents and Settings\karolcia\Moje dokumenty\2013-06-27.hrf
[2013-06-27 05:55:57 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswSnx.sys.sum
[2013-06-27 05:55:55 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswSP.sys.sum
[2013-06-12 09:39:50 | 000,175,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2013-06-12 09:39:50 | 000,049,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2013-05-21 16:01:22 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2013-03-27 17:26:55 | 000,640,072 | ---- | C] () -- C:\Program Files\DivX-Plus(13280).exe
[2013-02-03 16:09:28 | 000,000,158 | ---- | C] () -- C:\Program Files\Argonauci.ini
[2013-02-03 16:08:37 | 000,089,080 | ---- | C] () -- C:\Program Files\runoPL.bmp
[2013-02-03 16:08:37 | 000,004,296 | ---- | C] () -- C:\Program Files\install.ini
[2013-02-03 16:08:31 | 000,000,048 | ---- | C] () -- C:\Program Files\bloomoo.ini
[2013-02-03 16:06:26 | 000,000,051 | ---- | C] () -- C:\Program Files\am.url
[2013-02-03 16:05:19 | 000,705,336 | ---- | C] () -- C:\Program Files\snd_zeglarz.wav
[2013-02-03 16:05:19 | 000,379,436 | ---- | C] () -- C:\Program Files\snd_oracze.wav
[2013-02-03 16:05:19 | 000,224,300 | ---- | C] () -- C:\Program Files\snd_ucieczka.wav
[2013-02-03 16:05:19 | 000,159,744 | ---- | C] () -- C:\Program Files\uninstall.exe
[2013-02-03 16:05:18 | 000,882,062 | ---- | C] () -- C:\Program Files\snd_harpie.wav
[2013-02-03 16:05:18 | 000,312,438 | ---- | C] () -- C:\Program Files\snd_eliksir.wav
[2013-02-03 16:05:17 | 004,031,542 | ---- | C] () -- C:\Program Files\muza1.wav
[2013-02-03 16:05:17 | 000,126,976 | ---- | C] () -- C:\Program Files\kolorowanka.dll
[2013-02-03 16:05:16 | 001,826,816 | ---- | C] () -- C:\Program Files\piklib8.dll
[2013-02-03 16:05:15 | 000,090,112 | ---- | C] () -- C:\Program Files\argonauci.exe
[2012-06-13 17:50:47 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2012-05-25 18:53:47 | 000,001,266 | ---- | C] () -- C:\WINDOWS\disney.ini
[2012-05-23 19:16:02 | 000,102,912 | ---- | C] () -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-05-23 16:11:18 | 000,311,520 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2012-04-27 11:23:53 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2012-04-27 11:23:53 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2012-04-27 11:23:53 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2012-04-27 11:23:52 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2012-04-27 11:23:52 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2012-04-27 11:23:52 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2012-04-27 11:21:40 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\karolcia\Ustawienia lokalne\Dane aplikacji\fusioncache.dat

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2004-09-20 09:23:48 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
" " = %SystemRoot%\system32\shdocvw.dll -- [2010-04-16 16:37:03 | 001,506,304 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
" " = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 11:03:55 | 000,473,088 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
" " = C:\WINDOWS\system32\wbem\wbemess.dll -- [2004-08-04 09:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Both

& lt; End of report & gt;