OTL logfile created on: 28/12/2011 4:12:22 PM - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Renia\Downloads\Programs Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy 2.99 Gb Total Physical Memory | 1.02 Gb Available Physical Memory | 34.21% Memory free 6.18 Gb Paging File | 4.25 Gb Available in Paging File | 68.78% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 204.79 Gb Total Space | 88.81 Gb Free Space | 43.37% Space Free | Partition Type: NTFS Drive D: | 9.76 Gb Total Space | 8.67 Gb Free Space | 88.78% Space Free | Partition Type: NTFS Drive F: | 52.40 Gb Total Space | 39.40 Gb Free Space | 75.19% Space Free | Partition Type: NTFS Drive G: | 19.53 Gb Total Space | 17.47 Gb Free Space | 89.47% Space Free | Partition Type: NTFS Computer Name: RENIA-PC | User Name: Renia | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011/12/28 16:09:39 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Renia\Downloads\Programs\OTL.exe PRC - [2011/12/28 15:22:38 | 010,758,656 | ---- | M] () -- C:\Program Files\SpacialAudio\SAMBC\SAMBC.exe PRC - [2011/12/20 15:22:32 | 003,462,552 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe PRC - [2011/12/14 06:59:20 | 002,984,832 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe PRC - [2011/12/14 06:59:20 | 002,684,288 | ---- | M] (TeamViewer GmbH) -- c:\Program Files\TeamViewer\Version7\TeamViewer_Desktop.exe PRC - [2011/12/14 06:59:18 | 010,981,248 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version7\TeamViewer.exe PRC - [2011/12/14 06:41:54 | 000,116,608 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version7\tv_w32.exe PRC - [2011/12/06 14:08:19 | 000,347,008 | ---- | M] (EasyBits Software AS) -- C:\ProgramData\GameXN\GameXNGO.exe PRC - [2011/12/06 05:17:56 | 001,694,608 | ---- | M] (Bandoo Media, inc) -- C:\Program Files\Windows iLivid Toolbar\Datamngr\datamngrUI.exe PRC - [2011/10/26 13:48:48 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe PRC - [2011/06/09 10:20:14 | 019,769,336 | ---- | M] (Redefine Sp z o.o.) -- C:\Program Files\ipla\ipla.exe PRC - [2011/05/05 07:44:38 | 013,345,376 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2011/04/16 19:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccsvchst.exe PRC - [2010/09/17 11:14:50 | 000,098,304 | ---- | M] (Firebird Project) -- C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe PRC - [2010/09/17 11:14:42 | 003,735,552 | ---- | M] (Firebird Project) -- C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe PRC - [2010/05/25 09:28:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe PRC - [2009/04/11 01:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2008/11/02 03:38:58 | 000,167,936 | ---- | M] (PowerISO Computing, Inc.) -- C:\Program Files\PowerISO\PWRISOVM.EXE PRC - [2008/09/29 16:00:11 | 000,032,838 | ---- | M] (MyWebSearch.com) -- C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE PRC - [2008/09/29 16:00:11 | 000,028,762 | ---- | M] (MyWebSearch.com) -- C:\Program Files\MyWebSearch\bar\1.bin\MWSSVC.EXE PRC - [2008/04/15 17:54:42 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe PRC - [2008/04/15 17:54:40 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe PRC - [2007/10/09 11:59:30 | 004,702,208 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe PRC - [2007/08/31 10:49:50 | 000,243,064 | ---- | M] (Symantec Corporation) -- c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2011/12/28 15:22:38 | 010,758,656 | ---- | M] () -- C:\Program Files\SpacialAudio\SAMBC\SAMBC.exe MOD - [2011/12/07 06:16:28 | 000,411,192 | ---- | M] () -- C:\Users\Renia\AppData\Local\Google\Chrome\Application\16.0.912.63\ppgooglenaclpluginchrome.dll MOD - [2011/12/07 06:16:27 | 003,767,864 | ---- | M] () -- C:\Users\Renia\AppData\Local\Google\Chrome\Application\16.0.912.63\pdf.dll MOD - [2011/12/07 06:14:56 | 000,122,952 | ---- | M] () -- C:\Users\Renia\AppData\Local\Google\Chrome\Application\16.0.912.63\avutil-51.dll MOD - [2011/12/07 06:14:55 | 000,222,280 | ---- | M] () -- C:\Users\Renia\AppData\Local\Google\Chrome\Application\16.0.912.63\avformat-53.dll MOD - [2011/12/07 06:14:53 | 001,746,504 | ---- | M] () -- C:\Users\Renia\AppData\Local\Google\Chrome\Application\16.0.912.63\avcodec-53.dll MOD - [2011/10/22 07:49:58 | 008,522,400 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll MOD - [2011/09/19 19:33:44 | 000,380,928 | ---- | M] () -- C:\Program Files\SpacialAudio\SAMBC\plugins\lame_enc.dll MOD - [2011/09/19 19:33:44 | 000,233,472 | ---- | M] () -- C:\Program Files\SpacialAudio\SAMBC\plugins\mp3prodec.drv MOD - [2011/09/19 19:33:44 | 000,140,288 | ---- | M] () -- C:\Program Files\SpacialAudio\SAMBC\plugins\vorbis.dll MOD - [2011/09/19 19:33:44 | 000,057,344 | ---- | M] () -- C:\Program Files\SpacialAudio\SAMBC\plugins\SS_agc.dll MOD - [2011/09/19 19:33:44 | 000,009,216 | ---- | M] () -- C:\Program Files\SpacialAudio\SAMBC\plugins\ogg.dll MOD - [2011/06/09 10:20:18 | 000,392,088 | ---- | M] () -- C:\Program Files\ipla\jabberoo.dll MOD - [2011/06/09 10:20:18 | 000,067,992 | ---- | M] () -- C:\Program Files\ipla\ziplib.dll MOD - [2011/06/09 10:08:46 | 000,291,840 | ---- | M] () -- C:\Program Files\ipla\MediaFileScanner.dll MOD - [2011/06/09 10:06:10 | 000,156,160 | ---- | M] () -- C:\Program Files\ipla\lua.dll MOD - [2011/05/05 07:45:28 | 000,217,696 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gglog.dll MOD - [2011/05/05 07:45:26 | 000,123,488 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggipcradioproxy.dll MOD - [2011/05/05 07:45:24 | 000,017,504 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggipc.dll MOD - [2011/05/05 07:45:22 | 000,027,744 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggcrypto.dll MOD - [2011/05/05 07:45:18 | 000,356,960 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggcommon.dll MOD - [2011/04/15 22:04:30 | 014,749,696 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtWebKit4.dll MOD - [2011/02/17 04:00:28 | 001,781,760 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtScript4.dll MOD - [2011/02/17 04:00:28 | 000,393,216 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtXml4.dll MOD - [2011/02/17 04:00:28 | 000,327,680 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtSvg4.dll MOD - [2011/02/17 04:00:26 | 001,044,480 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtNetwork4.dll MOD - [2011/02/17 04:00:24 | 009,097,216 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtGui4.dll MOD - [2011/02/17 04:00:24 | 002,560,000 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtCore4.dll MOD - [2011/02/17 03:59:40 | 000,311,296 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qtiff4.dll MOD - [2011/02/17 03:59:40 | 000,274,432 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qmng4.dll MOD - [2011/02/17 03:59:40 | 000,143,360 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qjpeg4.dll MOD - [2011/02/17 03:59:40 | 000,027,648 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qgif4.dll MOD - [2011/02/17 03:59:40 | 000,018,944 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qsvg4.dll MOD - [2009/09/23 09:04:00 | 000,059,904 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\zlib1.dll MOD - [2007/12/19 21:28:32 | 000,345,384 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLTinyDB.dll MOD - [2007/12/19 21:28:20 | 000,251,288 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapEngine.dll MOD - [2007/12/19 21:28:20 | 000,120,208 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLSchMgr.dll MOD - [2007/12/19 21:28:20 | 000,038,184 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvcps.dll MOD - [2007/12/19 21:27:04 | 000,066,856 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\common\MCEMediaStatus.dll MOD - [2007/08/14 15:43:46 | 006,365,184 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll MOD - [2007/07/12 13:55:52 | 000,131,072 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll MOD - [2007/07/12 13:55:28 | 001,581,056 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- -- (PLFlash DeviceIoControl Service) SRV - [2011/12/14 06:59:20 | 002,984,832 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7) SRV - [2011/04/16 19:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe -- (NAV) SRV - [2010/10/12 12:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\WildTangent Games\App\GamesAppService.exe -- (GamesAppService) SRV - [2010/09/17 11:14:50 | 000,098,304 | ---- | M] (Firebird Project) [Auto | Running] -- C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe -- (FirebirdGuardianDefaultInstance) SRV - [2010/09/17 11:14:42 | 003,735,552 | ---- | M] (Firebird Project) [On_Demand | Running] -- C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe -- (FirebirdServerDefaultInstance) SRV - [2008/09/29 16:00:11 | 000,028,762 | ---- | M] (MyWebSearch.com) [Auto | Running] -- C:\Program Files\MyWebSearch\bar\1.bin\MWSSVC.EXE -- (MyWebSearchService) SRV - [2008/04/15 17:54:42 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R) SRV - [2008/01/20 21:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2007/08/31 10:49:50 | 000,243,064 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler) SRV - [2007/08/23 14:35:00 | 003,192,184 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE -- (LiveUpdate) SRV - [2007/03/05 12:30:06 | 000,110,592 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Stopped] -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe -- (Com4Qlb) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011/12/20 15:05:38 | 000,091,424 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\idmwfp.sys -- (IDMWFP) DRV - [2011/12/01 22:53:15 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\VirusDefs\20111227.002\NAVEX15.SYS -- (NAVEX15) DRV - [2011/12/01 22:53:15 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl) DRV - [2011/12/01 22:53:15 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\VirusDefs\20111227.002\NAVENG.SYS -- (NAVENG) DRV - [2011/11/14 14:28:02 | 000,819,320 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\BASHDefs\20111221.003\BHDrvx86.sys -- (BHDrvx86) DRV - [2011/11/10 15:43:21 | 000,106,104 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv) DRV - [2011/08/22 23:17:32 | 000,368,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\IPSDefs\20111226.001\IDSvix86.sys -- (IDSVix86) DRV - [2011/05/12 11:59:12 | 000,126,584 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent) DRV - [2011/03/30 22:00:09 | 000,516,216 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\Windows\System32\Drivers\NAV\1206000.01D\SRTSP.SYS -- (SRTSP) DRV - [2011/03/30 22:00:09 | 000,050,168 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\NAV\1206000.01D\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL) DRV - [2011/03/21 19:39:49 | 000,331,384 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\NAV\1206000.01D\SYMTDIV.SYS -- (SYMTDIv) DRV - [2011/03/14 21:31:23 | 000,744,568 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\system32\drivers\NAV\1206000.01D\SYMEFA.SYS -- (SymEFA) DRV - [2011/01/27 01:47:10 | 000,340,088 | ---- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\NAV\1206000.01D\SYMDS.SYS -- (SymDS) DRV - [2011/01/27 00:07:05 | 000,136,312 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\NAV\1206000.01D\Ironx86.SYS -- (SymIRON) DRV - [2008/11/02 03:44:10 | 000,056,572 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu) DRV - [2007/09/17 18:17:36 | 000,098,816 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169) DRV - [2007/07/11 12:30:22 | 000,007,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqRemHid.sys -- (HpqRemHid) DRV - [2007/06/28 10:09:56 | 002,222,080 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw4v32.sys -- (NETw4v32) Intel(R) DRV - [2007/06/18 19:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr) DRV - [2007/03/22 00:02:04 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp) DRV - [2007/02/24 16:42:22 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk) DRV - [2007/01/23 18:40:20 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk) DRV - [2006/11/02 02:41:49 | 001,010,560 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial) DRV - [2006/11/02 02:30:56 | 000,429,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvm60x32.sys -- (NVENETFD) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_ca&c=81&bd=Pavilion&pf=laptop IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_ca&c=81&bd=Pavilion&pf=laptop IE - HKLM\..\URLSearchHook: {72ae8426-3b8d-4ead-b191-8d0ad1c62158} - C:\Program Files\P2P_Max\tbP2P0.dll (Conduit Ltd.) IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_ca&c=81&bd=Pavilion&pf=laptop IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.searchqu.com/406 IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/?lang=en-ca&OCID=iehp IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-CA,pl-PL;q=0.5 IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 64 F8 90 37 12 88 CA 01 [binary data] IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\..\URLSearchHook: {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL (MyWebSearch.com) IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\..\URLSearchHook: {72ae8426-3b8d-4ead-b191-8d0ad1c62158} - C:\Program Files\P2P_Max\tbP2P0.dll (Conduit Ltd.) IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\3.bin\A5SRCHAS.DLL (Ask.com) IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) IE - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.2.1: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.2.1: C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\new_plugin\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll () FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll () FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Renia\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll File not found FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Renia\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll File not found FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: C:\Program Files\Internet Saving Optimizer\2.0.0.2440\FF [2009/01/13 21:30:45 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\IPSFFPlgn\ [2011/09/29 16:35:28 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Renia\AppData\Roaming\IDM\idmmzcc5 [2011/12/21 17:29:30 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Renia\AppData\Roaming\IDM\idmmzcc5 [2011/12/21 17:29:30 | 000,000,000 | ---D | M] [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Search Results (Enabled) CHR - default_search_provider: search_url = http://dts.search-results.com/sr?src=crb&appid=173&systemid=406&sr=0&q={searchTerms} CHR - default_search_provider: suggest_url = CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Renia\AppData\Local\Google\Chrome\Application\16.0.912.63\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Users\Renia\AppData\Local\Google\Chrome\Application\plugins\nppl3260.dll CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Users\Renia\AppData\Local\Google\Chrome\Application\plugins\nprpjplug.dll CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files\Microsoft\Office Live\npOLW.dll CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Renia\AppData\Local\Google\Chrome\Application\16.0.912.63\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Renia\AppData\Local\Google\Chrome\Application\16.0.912.63\pdf.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll CHR - plugin: WildTangent Games App Presence Detector (Enabled) = C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Default Plug-in (Enabled) = default_plugin CHR - Extension: YouTube = C:\Users\Renia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.2_0\ CHR - Extension: Google Search = C:\Users\Renia\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\ CHR - Extension: Gmail = C:\Users\Renia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.4_0\ O1 HOSTS File: ([2006/09/18 16:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.) O2 - BHO: (MyWebSearch Search Assistant BHO) - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL (MyWebSearch.com) O2 - BHO: (CashBackAssistant) - {00F5B5BA-E3C2-4b70-BF51-42A557914FAD} - C:\Program Files\Nice Prosper\CashBackAssistant\CashBackAssistantIE.dll () O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (mwsBar BHO) - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL (MyWebSearch.com) O2 - BHO: (NP Helper Class) - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - C:\Program Files\Internet Saving Optimizer\2.0.0.2440\NPIEAddOn.dll () O2 - BHO: (Smart-Shopper) - {4A7C84E2-E95C-43C6-8DD3-03ABCD0EB60E} - C:\Program Files\Smart-Shopper\Bin\2.5.1\Smrt-Shpr.dll (SmartShopper Networks) O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found. O2 - BHO: (EWPBrowseObject Class) - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll () O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ips\ipsbho.dll (Symantec Corporation) O2 - BHO: (P2P Max Toolbar) - {72ae8426-3b8d-4ead-b191-8d0ad1c62158} - C:\Program Files\P2P_Max\tbP2P0.dll (Conduit Ltd.) O2 - BHO: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Program Files\Windows iLivid Toolbar\Datamngr\ToolBar\searchqudtx.dll () O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\3.bin\A5SRCHAS.DLL (Ask.com) O2 - BHO: (DataMngr) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\Program Files\Windows iLivid Toolbar\Datamngr\BrowserConnection.dll (Bandoo Media, inc) O2 - BHO: (ooVoo Toolbar) - {A057A204-BACC-4D26-8087-36EE87E26986} - C:\Program Files\oovooToolbar\oovooToolbar.dll (ooVoo ) O2 - BHO: (SBCONVERT Class) - {A1056498-D09A-41E4-864B-505EDD640D9E} - C:\Program Files\SpeedBit Video Downloader\Toolbar\SpeedBitVideoDownloader.dll () O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Ask.com Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\ProgramData\Gadu-Gadu 10\_userdata\ggbho.2.dll File not found O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\3.bin\ASKTBAR.DLL (Ask.com) O2 - BHO: (GrabberObj Class) - {FF7C3CF0-4B15-11D1-ABED-709549C10000} - C:\Program Files\SpeedBit Video Downloader\Toolbar\Grabber.dll (Speedbit Ltd.) O3 - HKLM\..\Toolbar: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files\SpeedBit Video Downloader\Toolbar\SpeedBitVideoDownloader.dll () O3 - HKLM\..\Toolbar: (My Web Search) - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL (MyWebSearch.com) O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll () O3 - HKLM\..\Toolbar: (P2P Max Toolbar) - {72ae8426-3b8d-4ead-b191-8d0ad1c62158} - C:\Program Files\P2P_Max\tbP2P0.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found. O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Program Files\Windows iLivid Toolbar\Datamngr\ToolBar\searchqudtx.dll () O3 - HKLM\..\Toolbar: (ooVoo Toolbar) - {A057A204-BACC-4D26-8087-36EE87E26986} - C:\Program Files\oovooToolbar\oovooToolbar.dll (ooVoo ) O3 - HKLM\..\Toolbar: (Ask.com Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\3.bin\ASKTBAR.DLL (Ask.com) O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\..\Toolbar\WebBrowser: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files\SpeedBit Video Downloader\Toolbar\SpeedBitVideoDownloader.dll () O3 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\..\Toolbar\WebBrowser: (My Web Search) - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL (MyWebSearch.com) O3 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\..\Toolbar\WebBrowser: (P2P Max Toolbar) - {72AE8426-3B8D-4EAD-B191-8D0AD1C62158} - C:\Program Files\P2P_Max\tbP2P0.dll (Conduit Ltd.) O3 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\..\Toolbar\WebBrowser: (ooVoo Toolbar) - {A057A204-BACC-4D26-8087-36EE87E26986} - C:\Program Files\oovooToolbar\oovooToolbar.dll (ooVoo ) O3 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\..\Toolbar\WebBrowser: (Ask.com Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O3 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\3.bin\ASKTBAR.DLL (Ask.com) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [DATAMNGR] C:\Program Files\Windows iLivid Toolbar\Datamngr\datamngrUI.exe (Bandoo Media, inc) O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard) O4 - HKLM..\Run: [hpqSRMon] File not found O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation) O4 - HKLM..\Run: [My Web Search Bar Search Scope Monitor] "C:\PROGRA~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=2 /w File not found O4 - HKLM..\Run: [MyWebSearch Email Plugin] C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE (MyWebSearch.com) O4 - HKLM..\Run: [MyWebSearch Plugin] C:\Program Files\MyWebSearch\bar\1.bin\M3PLUGIN.DLL (MyWebSearch.com) O4 - HKLM..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" File not found O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h File not found O4 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000..\Run: [DW6] File not found O4 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000..\Run: [GameXN] C:\ProgramData\GameXN\GameXNGO.exe (EasyBits Software AS) O4 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000..\Run: [GameXN (news)] C:\ProgramData\GameXN\GameXNGO.exe (EasyBits Software AS) O4 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000..\Run: [GameXN (update)] C:\ProgramData\GameXN\GameXNGO.exe (EasyBits Software AS) O4 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000..\Run: [Google Update] "C:\Users\Renia\AppData\Local\Google\Update\GoogleUpdate.exe" /c File not found O4 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.) O4 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020 File not found O4 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.) O4 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000..\Run: [Odkurzacz-MCD] C:\Program Files\Odkurzacz\odk_mcd.exe (Franmo Software) O4 - Startup: C:\Users\Renia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote Table Of Contents.onetoc2 () O8 - Extra context menu item: &Search - ?p=ZRxdm479YYCA File not found O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm () O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm () O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll () O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll () O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll () O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll () O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars) O9 - Extra Button: SmartShopper - Compare product prices - {3CC3D8FE-F0E0-4dd1-A69A-8C56BCC7BEBF} - C:\Program Files\Smart-Shopper\Bin\2.5.1\Smrt-Shpr.dll (SmartShopper Networks) O9 - Extra Button: SmartShopper - Compare travel rates - {3CC3D8FE-F0E0-4dd1-A69A-8C56BCC7BEC0} - C:\Program Files\Smart-Shopper\Bin\2.5.1\Smrt-Shpr.dll (SmartShopper Networks) O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O13 - gopher Prefix: missing O15 - HKU\.DEFAULT\..Trusted Ranges: Range1 ([http] in Local intranet) O15 - HKU\S-1-5-18\..Trusted Ranges: Range1 ([http] in Local intranet) O15 - HKU\S-1-5-21-89875343-1983216224-2520645717-1000\..Trusted Ranges: Range1 ([http] in Local intranet) O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei-3/PopularScreenSaversFWBInitialSetup1.0.1.0.cab (Reg Error: Key error.) O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect118.cab (GMNRev Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 10.2.1) O16 - DPF: {A93D84FD-641F-43AE-B963-E6FA84BE7FE7} http://www.linksysfix.com/netcheck/67/install/gtdownls.cab (LinkSys Content Update) O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Java Plug-in 1.6.0_02) O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07) O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 1.7.0_02) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab (Java Plug-in 1.7.0_02) O16 - DPF: {DBA230D1-8467-4e69-987E-5FAE815A3B45} Reg Error: Key error. (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{26D3BDF1-9E89-4FC0-919E-527015D57BD0}: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B9AF306D-1378-499B-BBF3-D235DE55172C}: DhcpNameServer = 192.168.1.254 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - AppInit_DLLs: (C:\PROGRA~1\WI371A~1\Datamngr\datamngr.dll) -C:\Program Files\Windows iLivid Toolbar\Datamngr\datamngr.dll (Bandoo Media, inc) O20 - AppInit_DLLs: (C:\PROGRA~1\WI371A~1\Datamngr\IEBHO.dll) -C:\Program Files\Windows iLivid Toolbar\Datamngr\IEBHO.dll (Bandoo Media, inc) O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Users\Renia\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg O24 - Desktop BackupWallPaper: C:\Users\Renia\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008/02/25 16:49:36 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011/12/28 15:21:46 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SAM Broadcaster [2011/12/28 13:48:23 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{15357BDA-5BFF-4ECF-BCF4-27A064D01DE6} [2011/12/28 13:48:13 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{3E638050-94F8-45DC-99FA-0DCF9B2AF509} [2011/12/27 21:09:58 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{38821520-6108-423C-A12A-A0DFE6234170} [2011/12/27 19:21:53 | 000,000,000 | ---D | C] -- C:\Program Files\PlayReady [2011/12/27 14:16:37 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{6F141CA0-F9F3-42F3-9F35-CA0831D7344D} [2011/12/27 14:16:23 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{38A44FEA-1D13-40FA-9CCF-EA8B1FCADA2B} [2011/12/26 14:08:59 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{314989B5-1044-4C90-B7FD-A7B8A822C1E8} [2011/12/26 14:07:12 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{C94E8D94-1AF9-4CEF-80B7-1606D5213BF4} [2011/12/24 15:34:26 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{75187848-2A0A-40BA-BA23-E79B6BE969D3} [2011/12/24 15:34:15 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{2B91A2BC-93F2-4665-B759-38B8352DCC5A} [2011/12/23 19:38:53 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{76974077-78A5-45B5-831C-311633276DE3} [2011/12/23 19:38:43 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{436BEB02-D964-4B11-B34D-8F51010F7AAD} [2011/12/22 19:21:38 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{B1B0A0CB-11A7-4EFC-9936-8B15EE0647B3} [2011/12/22 19:21:26 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{8CC9033D-B41E-433E-BB14-0856A6F9E7A2} [2011/12/22 16:02:36 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{17E7D70B-8864-4565-897B-E927E212A865} [2011/12/22 16:02:24 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{CFEFFE47-1BD1-48BC-9801-A8B3A399EA5F} [2011/12/22 15:43:02 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{9638BFFE-195B-4A13-A36B-D5E2FBF07FBD} [2011/12/22 13:47:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys [2011/12/22 13:47:29 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys [2011/12/22 13:46:36 | 000,000,000 | ---D | C] -- C:\Users\Renia\Desktop\EVEREST Ultimate Edtion 5.01 Build 1700 Final [2011/12/22 12:59:51 | 000,000,000 | ---D | C] -- C:\dsp_sps [2011/12/22 12:49:14 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{079D10F4-560D-4DDB-AD22-DF006F461E1D} [2011/12/22 12:49:04 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{7DAF18DE-4B1C-4B60-AFC8-1F490EC62E1B} [2011/12/21 22:17:54 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{55F098E5-DF46-4B17-93A4-9293588B64DC} [2011/12/21 22:17:44 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{38E393A9-E26E-49D9-9052-91A1265FA2B2} [2011/12/21 20:35:32 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{9BCC8A6D-D955-42B8-8D4B-02637BC532B2} [2011/12/21 20:35:22 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{D8AF6B84-525E-4F4F-8C71-1E7566B49BAB} [2011/12/21 19:59:11 | 000,000,000 | ---D | C] -- C:\Program Files\Oracle [2011/12/21 19:58:03 | 000,637,848 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\npdeployJava1.dll [2011/12/21 19:58:03 | 000,223,112 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe [2011/12/21 19:58:03 | 000,173,960 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe [2011/12/21 19:58:03 | 000,173,960 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe [2011/12/21 19:10:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Odkurzacz [2011/12/21 19:09:41 | 000,000,000 | ---D | C] -- C:\Program Files\Odkurzacz [2011/12/21 19:05:06 | 000,000,000 | ---D | C] -- C:\Users\Renia\Desktop\wrzuta instalki (2) [2011/12/21 18:54:18 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{087402B3-A40A-49F4-84CC-B0A0DD2155BF} [2011/12/21 18:54:06 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{88C25F72-2305-4EBA-B83B-2838B115CD67} [2011/12/21 18:52:32 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess [2011/12/21 18:45:09 | 000,910,112 | ---- | C] (Sun Microsystems, Inc.) -- C:\Users\Renia\Desktop\jxpiinstall(1).exe [2011/12/21 18:33:38 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll [2011/12/21 18:33:38 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll [2011/12/21 18:33:17 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2011/12/21 18:33:17 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Detektor Winampa [2011/12/21 18:32:37 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Roaming\Winamp [2011/12/21 17:52:50 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group [2011/12/21 17:52:50 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller [2011/12/21 17:29:29 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Roaming\IDM [2011/12/21 17:29:29 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Roaming\DMCache [2011/12/21 17:29:22 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager [2011/12/21 17:29:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager [2011/12/21 17:29:16 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Download Manager [2011/12/21 17:12:35 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\Ilivid Player [2011/12/21 17:11:20 | 000,000,000 | -H-D | C] -- C:\ProgramData\{B49A644A-1076-4A3D-B124-DAA7862F2318} [2011/12/21 17:11:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLivid [2011/12/21 17:11:09 | 000,000,000 | ---D | C] -- C:\Program Files\iLivid [2011/12/21 17:10:44 | 000,000,000 | ---D | C] -- C:\Program Files\Windows iLivid Toolbar [2011/12/21 17:10:23 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\PackageAware [2011/12/21 15:30:56 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{9B123F1C-042F-4FFB-BDBC-A359CB878CBE} [2011/12/21 15:30:42 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{BD737EFD-1586-48B3-9F40-F5E84935660B} [2011/12/21 11:23:35 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{458F172D-0CE5-4F51-AB8F-08FCE398282F} [2011/12/21 11:23:25 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{AB01E932-C26E-4EF4-A8CE-DAB71529C5F5} [2011/12/20 21:50:14 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{E7C5386D-12CF-4C3D-98D6-E34C93B1C6BA} [2011/12/20 21:50:01 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{2DF0DB65-D215-4515-A905-F893FE44C44D} [2011/12/20 19:59:09 | 000,000,000 | ---D | C] -- C:\ProgramData\firebird [2011/12/20 19:59:08 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\SpacialAudio [2011/12/20 19:55:21 | 000,548,864 | ---- | C] (Firebird Project) -- C:\Windows\System32\GDS32.DLL [2011/12/20 19:55:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firebird 2.5 (Win32) [2011/12/20 19:55:09 | 000,000,000 | ---D | C] -- C:\Program Files\Firebird [2011/12/20 19:54:56 | 000,000,000 | ---D | C] -- C:\Program Files\SpacialAudio [2011/12/20 19:52:18 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer [2011/12/20 19:38:21 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Roaming\TeamViewer [2011/12/20 19:31:26 | 000,000,000 | ---D | C] -- C:\Users\Renia\Desktop\nowy sam 4.9.2 [2011/12/20 15:26:56 | 000,091,424 | ---- | C] (Tonec Inc.) -- C:\Windows\System32\drivers\idmwfp.sys [2011/12/20 11:43:18 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{CBDCBC17-6DD4-4A2C-BD5B-1BDC6CB07C6D} [2011/12/20 11:43:08 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{1752FEC2-9801-4A79-AB5C-3A21C2A7DD13} [2011/12/19 21:27:13 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Users\Renia\Desktop\ATF-Cleaner - do czyszczenia.exe [2011/12/19 12:31:46 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{435AC748-E3E7-4D54-B1B7-F47986A10A9C} [2011/12/18 14:04:28 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{02A7AD7A-33B2-43FA-8811-48AF570850BA} [2011/12/18 14:04:18 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{05DF52ED-B3F2-41E1-97F5-B54EFA4AD8B8} [2011/12/17 16:13:07 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{6FF43564-AD37-42B1-8E57-145393236A9A} [2011/12/17 16:12:55 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{D7B60786-3FDF-4DBA-A06F-5DAB0842F1F2} [2011/12/16 16:28:19 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{FD6A6FAD-C127-4ACD-83D7-F240A86C92B2} [2011/12/16 16:28:08 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{1AC2E325-3D2B-48D0-B8EE-A90CE086750E} [2011/12/16 15:06:05 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2011/12/16 15:06:03 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2011/12/16 15:06:03 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2011/12/16 15:06:02 | 001,798,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2011/12/16 15:06:01 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2011/12/16 15:05:58 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2011/12/16 14:51:43 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{249F0792-D2BB-44A3-8387-F7D19DCCBD0B} [2011/12/16 14:51:33 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{B1A5BB3A-CECF-46FC-B4A7-42F172EBDCFF} [2011/12/15 18:14:11 | 003,602,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2011/12/15 18:14:11 | 003,550,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2011/12/15 18:14:08 | 002,043,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2011/12/15 18:14:08 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll [2011/12/15 18:13:59 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll [2011/12/15 18:13:54 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2011/12/15 13:03:20 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{D081991B-B05E-4D0E-8D28-2A0F66A6C439} [2011/12/15 13:03:10 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{425E2B06-FB8D-460C-9411-001D679FE1B7} [2011/12/14 12:04:49 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{F47B79D5-CF2F-40D7-8123-4C8614E47CFF} [2011/12/14 12:04:38 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{61313D05-084A-4C97-BC7A-B2CD4FCA1DE9} [2011/12/13 13:22:40 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{F6F4F52C-2AF8-40D5-82A0-E0A61DFA99C7} [2011/12/13 13:22:30 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{9755CF47-C5F1-4AD7-A6FD-A0376BDCC776} [2011/12/12 11:36:18 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{93917C54-6E0B-4D31-B459-8127248A8A99} [2011/12/12 11:36:08 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{D588884E-AA2A-4EE6-9ABE-4DACA204C3E3} [2011/12/11 13:29:14 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{11D05936-2099-403C-8456-782F83B88AE9} [2011/12/11 13:29:04 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{F9D99BD2-EE67-4C68-B804-12D0B121CE5F} [2011/12/10 13:29:05 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{6D35D015-B7F4-4211-900C-B696510A62E9} [2011/12/10 13:28:53 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{7FD63F67-11FA-4940-A563-54EF20E90A8E} [2011/12/09 14:13:57 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{4340EA05-4D1A-4F8B-B3B1-B645B0334098} [2011/12/09 14:13:47 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{4F10B0FE-E349-4E70-BBF5-AF05FE6F9D27} [2011/12/08 13:38:11 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{B10F8CA7-D90D-4E24-A7CF-008914812E8B} [2011/12/07 10:26:22 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{BF30F178-8B2E-47B5-BC93-761F310E1E26} [2011/12/07 10:26:11 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{A0950F30-AB4B-40D4-A596-DBE83226F0FB} [2011/12/06 14:08:18 | 000,000,000 | ---D | C] -- C:\ProgramData\GameXN [2011/12/06 14:07:26 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{F64F3C1D-B27E-4612-87A3-F73167BC9038} [2011/12/06 14:07:14 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{F0511AF2-AAB7-436B-9944-0F3ECDE90A49} [2011/12/05 11:36:59 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{E1A31071-3B65-405F-9F49-21901E60FF6F} [2011/12/05 11:36:48 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{356B9BA6-5A7D-46F2-A98F-EB86E32ED988} [2011/12/04 16:57:48 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{A1FB7814-2A2F-46A7-9EF2-192FBE50263C} [2011/12/04 16:57:38 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{B698F5AC-7D92-4C8C-B594-A6F7C48B193F} [2011/12/03 14:13:41 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{B8D3B4A7-6F6F-41F9-98A1-6574E0E6DEDD} [2011/12/03 14:13:30 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{3814ACA3-F522-4ADF-ADAE-B50CAE8D131D} [2011/12/02 18:30:04 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{D608290A-C68F-4CB9-836C-A757C49631D1} [2011/12/02 18:29:55 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{3093943B-EE67-4ACB-9EC9-27A576357A5F} [2011/12/01 19:51:33 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{AE6F48C5-9FC6-40CC-8F58-38500210822F} [2011/12/01 19:51:18 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{7F1274FE-C728-4E0F-8658-904DCADC054E} [2011/11/30 12:55:45 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{584BDD32-8C0D-4048-B78D-D89EDFCBA08F} [2011/11/30 12:54:59 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{3126013B-B05C-424B-A05A-9AA6D4F0CF1D} [2011/11/29 17:55:22 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{A2EC23BD-5919-47CB-BA89-EF9FE72074BD} [2011/11/29 17:55:12 | 000,000,000 | ---D | C] -- C:\Users\Renia\AppData\Local\{245693BD-CAD5-4B92-8426-F152B7BD3CB6} [3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011/12/28 16:23:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2011/12/28 15:59:22 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2011/12/28 15:59:22 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2011/12/28 15:38:59 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-89875343-1983216224-2520645717-1000UA.job [2011/12/28 15:21:51 | 000,001,793 | ---- | M] () -- C:\Users\Renia\Application Data\Microsoft\Internet Explorer\Quick Launch\SAM Broadcaster.lnk [2011/12/28 15:21:50 | 000,001,769 | ---- | M] () -- C:\Users\Renia\Desktop\SAM Broadcaster.lnk [2011/12/28 14:23:04 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2011/12/28 13:51:34 | 008,224,064 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011/12/28 13:51:34 | 000,061,584 | ---- | M] () -- C:\Windows\System32\perfh00C.dat [2011/12/28 13:51:34 | 000,023,136 | ---- | M] () -- C:\Windows\System32\perfc00C.dat [2011/12/28 13:51:33 | 003,928,142 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011/12/28 13:47:33 | 000,000,279 | ---- | M] () -- C:\Users\Public\Documents\hpqp.ini [2011/12/28 13:45:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011/12/28 13:44:53 | 3211,190,272 | -HS- | M] () -- C:\hiberfil.sys [2011/12/27 17:39:00 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-89875343-1983216224-2520645717-1000Core.job [2011/12/22 19:14:47 | 000,319,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll [2011/12/22 16:55:43 | 005,107,075 | ---- | M] () -- C:\Users\Renia\Desktop\rossel - spojrz czasem w niebo.mp3 [2011/12/22 16:53:27 | 003,346,630 | ---- | M] () -- C:\Users\Renia\Desktop\drossel - kochac ciebie zawsze chce.mp3 [2011/12/22 13:47:34 | 000,000,887 | ---- | M] () -- C:\Users\Renia\Desktop\EVEREST Ultimate Edition.lnk [2011/12/22 13:46:10 | 011,254,672 | ---- | M] () -- C:\Users\Renia\Desktop\EVEREST Ultimate Edtion 5.01 Build 1700 Final.rar [2011/12/21 22:17:33 | 000,128,000 | ---- | M] () -- C:\Users\Renia\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011/12/21 19:57:43 | 000,173,960 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe [2011/12/21 19:57:43 | 000,173,960 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe [2011/12/21 19:10:00 | 000,000,938 | ---- | M] () -- C:\Users\Renia\Desktop\Szybkie Czyszczenie Dysku.lnk [2011/12/21 19:09:59 | 000,000,842 | ---- | M] () -- C:\Users\Renia\Desktop\Odkurzacz.lnk [2011/12/21 18:45:45 | 000,910,112 | ---- | M] (Sun Microsystems, Inc.) -- C:\Users\Renia\Desktop\jxpiinstall(1).exe [2011/12/21 18:33:40 | 000,000,736 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk [2011/12/21 17:52:51 | 000,001,017 | ---- | M] () -- C:\Users\Renia\Desktop\Revo Uninstaller.lnk [2011/12/20 15:05:38 | 000,091,424 | ---- | M] (Tonec Inc.) -- C:\Windows\System32\drivers\idmwfp.sys [2011/12/19 21:27:24 | 000,050,688 | ---- | M] (Atribune.org) -- C:\Users\Renia\Desktop\ATF-Cleaner - do czyszczenia.exe [2011/12/18 14:40:06 | 000,000,322 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForRenia.job [2011/12/16 16:29:50 | 000,002,042 | ---- | M] () -- C:\Users\Renia\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2011/12/16 15:16:05 | 000,327,032 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011/12/28 15:21:50 | 000,001,793 | ---- | C] () -- C:\Users\Renia\Application Data\Microsoft\Internet Explorer\Quick Launch\SAM Broadcaster.lnk [2011/12/28 15:21:50 | 000,001,769 | ---- | C] () -- C:\Users\Renia\Desktop\SAM Broadcaster.lnk [2011/12/22 16:55:12 | 005,107,075 | ---- | C] () -- C:\Users\Renia\Desktop\rossel - spojrz czasem w niebo.mp3 [2011/12/22 16:52:58 | 003,346,630 | ---- | C] () -- C:\Users\Renia\Desktop\drossel - kochac ciebie zawsze chce.mp3 [2011/12/22 13:47:34 | 000,000,887 | ---- | C] () -- C:\Users\Renia\Desktop\EVEREST Ultimate Edition.lnk [2011/12/22 13:39:19 | 011,254,672 | ---- | C] () -- C:\Users\Renia\Desktop\EVEREST Ultimate Edtion 5.01 Build 1700 Final.rar [2011/12/21 19:09:59 | 000,000,938 | ---- | C] () -- C:\Users\Renia\Desktop\Szybkie Czyszczenie Dysku.lnk [2011/12/21 19:09:58 | 000,000,842 | ---- | C] () -- C:\Users\Renia\Desktop\Odkurzacz.lnk [2011/12/21 18:33:39 | 000,000,736 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk [2011/12/21 17:52:51 | 000,001,017 | ---- | C] () -- C:\Users\Renia\Desktop\Revo Uninstaller.lnk [2011/12/20 19:52:27 | 000,000,927 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 7.lnk [2011/12/06 14:08:27 | 000,001,534 | ---- | C] () -- C:\Users\Renia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zagraj (GameXN).lnk [2011/06/21 19:47:04 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pcwords2.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pcwords.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_webproxy.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_video.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_tabloids.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_socialnetworks.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_searchengines.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_regionaltlds.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_pornography.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_onlineshop.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_onlinepay.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_onlinedating.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_news.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_im.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_illegal.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_hate.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_games.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_gambling.dat [2010/06/17 15:39:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\pc_drugs.dat [2009/09/19 10:10:31 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2009/09/19 10:10:31 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2009/07/15 20:23:26 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE [2009/05/29 17:42:20 | 000,309,248 | ---- | C] () -- C:\Windows\System32\sqlite36_engine.dll [2009/04/25 12:24:07 | 006,031,904 | -HS- | C] () -- C:\Windows\System32\drivers\fidbox.dat [2009/04/25 12:24:07 | 000,852,000 | -HS- | C] () -- C:\Windows\System32\drivers\fidbox2.dat [2009/03/25 20:23:29 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini [2009/03/11 14:01:28 | 000,023,552 | ---- | C] () -- C:\Windows\System32\DirectCOM.dll [2009/02/02 04:39:35 | 000,005,972 | ---- | C] () -- C:\Users\Renia\AppData\Local\d3d9caps.dat [2008/12/31 17:02:00 | 000,001,125 | ---- | C] () -- C:\Windows\winamp.ini [2008/12/20 21:26:40 | 000,000,032 | ---- | C] () -- C:\ProgramData\ezsid.dat [2008/11/18 21:05:29 | 000,000,000 | ---- | C] () -- C:\Users\Renia\AppData\Roaming\wklnhst.dat [2008/09/08 20:33:14 | 000,000,016 | ---- | C] () -- C:\Windows\popcinfo.dat [2008/08/30 20:09:32 | 000,000,092 | ---- | C] () -- C:\Users\Renia\AppData\Roaming\default.pls [2008/08/02 14:59:20 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin [2008/07/04 20:31:46 | 000,128,000 | ---- | C] () -- C:\Users\Renia\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008/07/03 19:50:09 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat [2008/07/02 22:41:48 | 000,101,605 | ---- | C] () -- C:\Windows\hpqins13.dat [2008/06/11 23:07:23 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ1.dat [2008/06/11 23:07:23 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ0.dat [2008/06/11 23:06:54 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll [2008/02/25 15:58:09 | 000,340,236 | ---- | C] () -- C:\Windows\System32\perfi00C.dat [2008/02/25 15:58:08 | 000,061,584 | ---- | C] () -- C:\Windows\System32\perfh00C.dat [2008/02/25 15:58:08 | 000,037,390 | ---- | C] () -- C:\Windows\System32\perfd00C.dat [2008/02/25 15:58:08 | 000,023,136 | ---- | C] () -- C:\Windows\System32\perfc00C.dat [2008/02/10 20:55:18 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1437.dll [2008/02/10 20:34:48 | 002,215,364 | ---- | C] () -- C:\Windows\System32\igklg400.bin [2008/02/10 20:34:48 | 001,971,732 | ---- | C] () -- C:\Windows\System32\igklg450.bin [2008/02/10 20:34:48 | 000,029,932 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.bin [2007/09/13 10:31:06 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1329.dll [2007/09/13 10:22:46 | 001,238,832 | ---- | C] () -- C:\Windows\System32\igmedkrn.dll [2007/09/13 10:22:46 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll [2006/11/02 07:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2006/11/02 07:47:37 | 000,327,032 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2006/11/02 07:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006/11/02 05:33:01 | 008,224,064 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2006/11/02 05:33:01 | 003,928,142 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2006/11/02 05:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2006/11/02 05:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2006/11/02 05:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2006/11/02 03:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2006/11/02 03:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006/11/02 02:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2006/03/09 04:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [color=#E56717]========== LOP Check ==========[/color] [2010/06/17 15:19:00 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\BitDefender [2009/04/24 10:44:35 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\Canon [2011/12/27 23:33:19 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\DMCache [2008/07/03 20:55:40 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\Gadu-Gadu [2011/08/30 13:50:27 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\Gadu-Gadu 10 [2011/12/28 16:02:50 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\go [2011/12/22 13:59:05 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\IDM [2009/12/30 11:25:51 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\Internet Saving Optimizer [2011/12/28 13:47:49 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\ipla [2011/08/19 20:57:59 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\muvee Technologies [2010/01/27 09:26:20 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\Nowe Gadu-Gadu [2008/09/29 15:43:09 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\ooVoo Details [2009/12/30 11:26:17 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\oovooToolbar [2010/01/25 18:26:25 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\OpenFM [2010/11/22 20:49:13 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\RDRM [2011/12/21 20:04:44 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\TeamViewer [2008/11/18 21:08:25 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\Template [2011/08/30 14:16:45 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\Tlen.pl [2010/10/26 15:34:56 | 000,000,000 | ---D | M] -- C:\Users\Renia\AppData\Roaming\Windows Live Writer [2011/12/27 23:33:39 | 000,032,612 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 154 bytes -> C:\ProgramData\TEMP:7F4E393D @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:D287FACF @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:A9662AE0 @Alternate Data Stream - 107 bytes -> C:\ProgramData\TEMP:AC9C6AC1 < End of report >