OTL logfile created on: 2012-04-28 13:04:39 - Run 5
OTL by OldTimer - Version 3.2.42.1     Folder = C:\Users\GOSIA\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,16 Gb Available Physical Memory | 58,02% Memory free
4,24 Gb Paging File | 3,19 Gb Available in Paging File | 75,31% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 116,44 Gb Total Space | 72,54 Gb Free Space | 62,30% Space Free | Partition Type: NTFS
Drive D: | 106,68 Gb Total Space | 77,77 Gb Free Space | 72,90% Space Free | Partition Type: NTFS
 
Computer Name: GOSIA-PC | User Name: GOSIA | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-04-27 20:55:54 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\GOSIA\Desktop\OTL.exe
PRC - [2012-03-31 04:38:26 | 000,021,392 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
PRC - [2012-03-31 04:38:14 | 003,521,424 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
PRC - [2012-02-15 05:13:20 | 000,405,504 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2012-02-15 05:12:48 | 000,163,328 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2012-01-13 15:53:18 | 000,652,360 | ---- | M] (Malwarebytes Corporation) -- D:\Anty wirusy\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011-08-31 16:33:32 | 001,545,856 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\ASUS\ASUS Live Update\LiveUpdate.exe
PRC - [2009-04-10 23:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008-06-03 17:29:08 | 000,851,968 | ---- | M] (ATK) -- C:\Program Files\ASUS\Splendid\ACMON.exe
PRC - [2008-01-07 10:25:14 | 004,853,760 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007-10-11 21:44:28 | 000,106,496 | ---- | M] (ASUS) -- C:\Windows\System32\ASUSTPE.exe
PRC - [2007-08-31 17:38:12 | 000,180,224 | ---- | M] (ATK) -- C:\Program Files\P4G\BatteryLife.exe
PRC - [2007-05-18 02:31:16 | 000,073,728 | ---- | M] () -- C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
PRC - [2007-04-19 11:32:08 | 000,225,280 | ---- | M] (ATK0100) -- C:\Program Files\ATK Hotkey\HControl.exe
PRC - [2007-04-17 13:39:42 | 000,077,824 | ---- | M] () -- C:\Program Files\ATK Hotkey\KBFiltr.exe
PRC - [2007-02-05 18:13:14 | 000,094,208 | ---- | M] () -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe
PRC - [2007-01-17 19:26:36 | 007,708,672 | ---- | M] () -- C:\Program Files\ATKOSD2\ATKOSD2.exe
PRC - [2006-12-20 23:03:38 | 001,036,288 | ---- | M] () -- C:\Program Files\Wireless Console 2\wcourier.exe
PRC - [2006-12-18 17:26:26 | 002,420,736 | ---- | M] () -- C:\Program Files\ATK Hotkey\ATKOSD.exe
PRC - [2006-11-02 08:27:32 | 000,061,440 | ---- | M] (ASUSTeK Computer INC.) -- C:\Program Files\ASUS\ATK Media\DMedia.exe
PRC - [2005-07-06 15:43:42 | 000,155,648 | ---- | M] (ASUSTeK) -- C:\Windows\System32\ACEngSvr.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-04-27 22:12:10 | 000,115,137 | ---- | M] () -- C:\Users\GOSIA\AppData\Local\Temp\bd7c47bb-f5c0-417c-a180-ec348d87718a\CliSecureRT.dll
MOD - [2012-04-12 09:19:43 | 000,240,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\03720d4ccc7abcf2145cf3c01e94ddb9\WindowsFormsIntegration.ni.dll
MOD - [2012-04-11 23:52:24 | 011,820,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\48302596a8c8f2ab396b3be518dbd800\System.Web.ni.dll
MOD - [2012-04-11 23:50:24 | 018,000,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\7786f3e95a399a8b6691170ae2fe0e1c\PresentationFramework.ni.dll
MOD - [2012-04-11 23:50:04 | 011,450,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\239eba799555dbe10760ee80c8c8df7c\PresentationCore.ni.dll
MOD - [2012-04-11 23:49:59 | 013,197,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\0b36565a61f83137806e71b287d81042\System.Windows.Forms.ni.dll
MOD - [2012-04-11 23:49:49 | 003,858,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\02ea3ff3b5908b51da47e1aeb9e75b04\WindowsBase.ni.dll
MOD - [2012-04-11 23:49:46 | 001,665,536 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\c02325260bdcecd695a87bbb24547df2\System.Drawing.ni.dll
MOD - [2012-04-11 23:47:13 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\09b9cd1c630210237b5b46d9943e1946\System.Windows.Forms.ni.dll
MOD - [2012-04-11 23:47:01 | 001,591,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\61759b9905aed9a87347d04b5fad046b\System.Drawing.ni.dll
MOD - [2012-04-11 23:46:45 | 014,328,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e6326da9ba4ba58f72287ad35faa8e09\PresentationFramework.ni.dll
MOD - [2012-04-11 23:46:12 | 012,216,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\0e4e06c619563f0ad56db6c3f6168e29\PresentationCore.ni.dll
MOD - [2012-03-31 04:38:26 | 000,021,392 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
MOD - [2012-03-27 21:26:59 | 001,218,560 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\dfd9cbfccfadcf84406398a9d83ab4f4\System.Management.ni.dll
MOD - [2012-03-27 21:24:54 | 000,762,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\533deafc53346179cd118acc874752a3\System.Runtime.Remoting.ni.dll
MOD - [2012-03-27 21:24:42 | 001,782,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\ae31d46211440b11a9e66c3ba1a4e7ff\System.Xaml.ni.dll
MOD - [2012-03-27 21:22:35 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d48e106e015d0f8cb2d5295015cee508\PresentationFramework.Aero.ni.dll
MOD - [2012-03-27 21:22:08 | 000,060,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\5aab9bc687029a908fc01473f8e5f77b\UIAutomationProvider.ni.dll
MOD - [2012-03-27 20:58:58 | 003,325,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1e258a951222c818540b33880ca45f2e\WindowsBase.ni.dll
MOD - [2012-03-27 20:56:28 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\5c3bfd69e0c268baff0d169e11a6a784\System.Runtime.Remoting.ni.dll
MOD - [2012-03-27 20:56:15 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d9f0f1dc8cbdb81f1ba122d77a6ab710\System.Xml.ni.dll
MOD - [2012-03-27 20:56:10 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\7fd6c62196829d1e2dce5a253145d51a\System.Configuration.ni.dll
MOD - [2012-03-27 20:12:08 | 005,617,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\19e79fc0f95c93b0244c7b287e254871\System.Xml.ni.dll
MOD - [2012-03-27 20:11:47 | 007,069,696 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\7292b3e639a6202cf7eaf1f7ed271249\System.Core.ni.dll
MOD - [2012-03-27 20:11:38 | 000,595,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\8b8a5c194aacfb2102d4e26b75a84e03\PresentationFramework.Aero.ni.dll
MOD - [2012-03-27 20:11:36 | 009,091,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\2c59490afc22def906d3ca96e1207ff9\System.ni.dll
MOD - [2012-03-27 20:11:27 | 014,413,824 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\44ae9f9afb2373055136d57ac6db3f96\mscorlib.ni.dll
MOD - [2012-03-27 20:08:47 | 002,295,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\bc01d91f95947c7f25f3ae4e16db2cb5\System.Core.ni.dll
MOD - [2012-03-27 20:08:44 | 007,953,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c50133cb67d7c013fa31e1ffb942060b\System.ni.dll
MOD - [2012-03-27 20:08:37 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b6632a8b2f276a8e31f5b0f6b2006cd1\mscorlib.ni.dll
MOD - [2012-02-15 04:11:36 | 000,037,376 | ---- | M] () -- C:\Windows\System32\atitmpxx.dll
MOD - [2012-02-14 23:13:24 | 000,369,152 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2011-11-09 10:55:02 | 000,016,384 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2011-08-31 16:33:32 | 000,208,384 | ---- | M] () -- C:\Program Files\ASUS\ASUS Live Update\alvupdt.dll
MOD - [2009-03-31 11:05:14 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_pl_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2009-03-31 11:05:14 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll
MOD - [2009-03-31 11:05:14 | 000,208,896 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_pl_b77a5c561934e089\System.resources.dll
MOD - [2009-02-27 16:55:22 | 000,249,856 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_pl_31bf3856ad364e35\PresentationFramework.resources.dll
MOD - [2007-08-08 02:52:08 | 000,331,776 | ---- | M] () -- C:\Program Files\ASUS\ASUS Data Security Manager\AdsmendecExt.dll
MOD - [2007-06-15 10:28:36 | 000,147,456 | ---- | M] () -- C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
MOD - [2007-06-01 17:08:18 | 000,143,360 | ---- | M] () -- C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
MOD - [2006-09-14 00:20:24 | 000,126,464 | ---- | M] () -- D:\WinRAR\RarExt.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2012-04-01 22:37:47 | 000,253,600 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-02-15 05:12:48 | 000,163,328 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2012-01-13 15:53:18 | 000,652,360 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- D:\Anty wirusy\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011-06-29 15:59:18 | 000,155,344 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe -- (Sony Ericsson PCCompanion)
SRV - [2008-01-21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007-05-18 02:31:16 | 000,073,728 | ---- | M] () [Auto | Running] -- C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe -- (ADSMService)
SRV - [2007-02-05 18:13:14 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2012-02-24 11:14:42 | 000,181,432 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm) SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.)
DRV - [2012-02-24 11:14:42 | 000,080,824 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus) SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.)
DRV - [2012-02-15 05:47:12 | 009,182,208 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2012-02-15 05:47:12 | 009,182,208 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2012-02-15 04:12:48 | 000,264,704 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2011-12-10 16:24:06 | 000,020,464 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011-03-18 18:08:54 | 000,025,240 | ---- | M] (Almico Software) [Kernel | Boot | Running] -- C:\Windows\System32\speedfan.sys -- (speedfan)
DRV - [2010-07-04 21:51:26 | 000,004,096 | ---- | M] () [Kernel | Unavailable | Unknown] -- D:\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - [2009-03-13 13:50:18 | 001,095,808 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)
DRV - [2009-01-13 09:45:00 | 000,954,368 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2008-11-11 13:42:00 | 000,024,832 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2008-11-11 13:41:00 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2008-11-11 13:41:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2008-05-16 11:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s0016unic.sys -- (s0016unic) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM)
DRV - [2008-05-16 11:33:14 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s0016nd5.sys -- (s0016nd5) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS)
DRV - [2008-05-16 11:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s0016mdfl.sys -- (s0016mdfl)
DRV - [2008-05-16 11:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s0016mdm.sys -- (s0016mdm)
DRV - [2008-05-16 11:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s0016mgmt.sys -- (s0016mgmt) Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM)
DRV - [2008-05-16 11:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s0016obex.sys -- (s0016obex)
DRV - [2008-05-16 11:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s0016bus.sys -- (s0016bus) Sony Ericsson Device 0016 driver (WDM)
DRV - [2007-10-01 08:59:46 | 001,769,984 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV - [2007-08-10 20:19:26 | 000,029,752 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [File_System | Boot | Running] -- C:\Windows\System32\drivers\AsDsm.sys -- (AsDsm)
DRV - [2007-06-20 05:12:18 | 000,047,616 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SiSGB6.sys -- (SiSGbeLH)
DRV - [2007-01-24 20:08:40 | 000,005,632 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbfiltr.sys -- (kbfiltr)
DRV - [2006-12-15 09:11:58 | 000,007,680 | ---- | M] (ATK0100) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\giveio.sys -- (giveio)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-883431018-1220919606-97619856-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKU\S-1-5-21-883431018-1220919606-97619856-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-883431018-1220919606-97619856-1000\..\SearchScopes,DefaultScope = {4207817E-6CB8-4420-B7FB-58D8AE20C6AB}
IE - HKU\S-1-5-21-883431018-1220919606-97619856-1000\..\SearchScopes\{4207817E-6CB8-4420-B7FB-58D8AE20C6AB}: "URL" = http://www.google.com/search?hl=pl&q={searchTerms}
IE - HKU\S-1-5-21-883431018-1220919606-97619856-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\GOSIA\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
 
 
 
O1 HOSTS File: ([2012-01-20 08:16:37 | 000,000,734 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Users\GOSIA\AppData\Roaming\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)
O4 - HKLM..\Run: [ASUSTPE] C:\Windows\System32\ASUSTPE.exe (ASUS)
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUSTeK Computer INC.)
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-21-883431018-1220919606-97619856-1000..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe (Samsung)
O4 - HKU\S-1-5-21-883431018-1220919606-97619856-1000..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-883431018-1220919606-97619856-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-883431018-1220919606-97619856-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AE053A12-313D-44AC-BA72-195C706C129B}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\ASUS\wallpapers\ASUS.jpg
O24 - Desktop BackupWallPaper: C:\Windows\ASUS\wallpapers\ASUS.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011-04-03 22:01:38 | 000,000,000 | ---D | M] - D:\Autoruns -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-04-27 22:18:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2012-04-27 22:09:23 | 000,000,000 | ---D | C] -- C:\_OTL
[2012-04-27 20:55:54 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\GOSIA\Desktop\OTL.exe
[2012-04-25 21:00:51 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{FF47FAA0-B5B0-4FDC-BF2F-1A9AF02CB993}
[2012-04-25 21:00:23 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{7552F6FD-B2E0-4F7D-BB22-3435DD7925A3}
[2012-04-24 18:29:36 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{6B827C83-A014-44CF-AB83-6D1DDE8B06A2}
[2012-04-24 18:29:11 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{491D17CC-D1D4-4F46-AA86-05BE995B7956}
[2012-04-23 20:27:43 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{B5FF9814-39FD-4524-A003-4ED43B9699F8}
[2012-04-23 20:27:30 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{F5B16E48-FDF7-4E78-A932-B88D577461B1}
[2012-04-22 21:18:40 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{43B58F82-43F1-4C96-B510-668872CB77D2}
[2012-04-22 21:18:18 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{ED18284C-9021-4D1A-AD23-79883F68C5FD}
[2012-04-22 08:38:38 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{D7391DE8-3C6F-4A76-A55C-750092A934A5}
[2012-04-22 08:38:27 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{25D71F63-1205-4CB7-8BF5-9652EAE8C20B}
[2012-04-21 19:17:20 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{0C19BB3C-06EF-4A2B-B092-E9DA6DC4B70C}
[2012-04-21 19:17:10 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{E595A38D-20C5-4EB3-AC33-2E56124374C6}
[2012-04-21 09:53:34 | 000,347,424 | ---- | C] (Microsoft Corporation) -- C:\Users\GOSIA\Desktop\MicrosoftFixit.WinFileFolder.FISC.22125842510512007.4.5.Run.exe
[2012-04-20 21:16:57 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{863FC8EF-D1E2-4A63-A0BC-665556738935}
[2012-04-20 21:16:45 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{1B23738A-12F4-4FDC-BD49-934BF089FDD7}
[2012-04-19 21:44:12 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{2DEB4115-CDF2-4250-A21D-4BB01D955E1D}
[2012-04-19 21:43:57 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{9DED2F9C-18BD-44AF-929E-5E7E1A9DF71E}
[2012-04-18 17:57:34 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{824966EC-B258-4DCC-8EC9-39EBF0B4D059}
[2012-04-18 17:57:21 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{ACCAD1BC-74D5-4B99-9F7D-6BCA85CF5323}
[2012-04-17 09:35:57 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{857BED78-606C-48DB-8F55-811C53927844}
[2012-04-17 09:35:36 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{7D70AED8-05DA-40B6-9A4C-71408352A85D}
[2012-04-16 19:13:34 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{93AD089A-26ED-475B-9FA7-C4E5B1CED775}
[2012-04-16 19:13:12 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{839BAB8B-1C24-4211-891E-A9391B37AFA2}
[2012-04-15 23:11:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
[2012-04-15 23:11:53 | 000,000,000 | ---D | C] -- C:\Program Files\MyFree Codec
[2012-04-15 23:11:31 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\Documents\SelfMV
[2012-04-15 20:11:41 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Roaming\Temp
[2012-04-15 20:08:33 | 000,000,000 | ---D | C] -- C:\Temp
[2012-04-15 20:04:48 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\Samsung
[2012-04-15 20:04:42 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Roaming\Samsung
[2012-04-15 20:04:36 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\Documents\samsung
[2012-04-15 20:03:45 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\{f34653ca-d60f-454b-8bfc-4c5e8a1e0567}
[2012-04-15 20:03:41 | 000,181,432 | ---- | C] (DEVGURU Co., LTD.(www.devguru.co.kr)) -- C:\Windows\System32\drivers\ssudmdm.sys
[2012-04-15 20:03:41 | 000,080,824 | ---- | C] (DEVGURU Co., LTD.(www.devguru.co.kr)) -- C:\Windows\System32\drivers\ssudbus.sys
[2012-04-15 20:00:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
[2012-04-15 20:00:41 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\Windows\System32\Redemption.dll
[2012-04-15 20:00:15 | 000,821,824 | ---- | C] (Devguru Co., Ltd.) -- C:\Windows\System32\dgderapi.dll
[2012-04-15 20:00:15 | 000,020,032 | ---- | C] (Devguru Co., Ltd) -- C:\Windows\System32\drivers\dgderdrv.sys
[2012-04-15 20:00:15 | 000,000,000 | ---D | C] -- C:\Program Files\MarkAny
[2012-04-15 19:58:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung
[2012-04-15 19:58:48 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2012-04-15 19:57:38 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\Downloaded Installations
[2012-04-15 19:56:23 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{2C59B0F6-1E92-4DCE-AE31-0E4362A2DADD}
[2012-04-15 19:55:56 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{71D54839-D8D6-48E0-8EF6-22F9230A07E7}
[2012-04-14 11:54:50 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{50615D76-765E-412C-955A-F5DF9F7B33FB}
[2012-04-14 11:54:26 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{D2454D43-2CE7-4C9F-9529-C1CA32FB8CB5}
[2012-04-14 11:50:22 | 000,000,000 | -HSD | C] -- C:\found.000
[2012-04-12 22:05:29 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{BB68F839-143C-4F7D-8A82-EF72FFE1DE24}
[2012-04-12 22:05:08 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{C4D4BCB7-6D87-468D-926A-2B09BE934065}
[2012-04-11 23:52:04 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012-04-11 23:52:02 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012-04-11 23:52:01 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012-04-11 23:52:00 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012-04-11 23:51:59 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012-04-11 23:51:58 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012-04-11 23:50:47 | 003,602,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2012-04-11 23:50:47 | 003,550,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2012-04-11 23:42:58 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{B774E93B-59B8-442C-8B1E-9F908FB83335}
[2012-04-11 23:42:35 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{0F364076-96E2-4FF4-BABF-508EACA9412F}
[2012-04-10 18:52:47 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{C31EDC4E-11D2-423C-9C8C-FE2F0E140F72}
[2012-04-10 18:52:26 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{28419D19-F420-46B5-8E47-29F20ED87E39}
[2012-04-10 18:50:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012-04-10 18:49:56 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012-04-10 18:49:56 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012-04-10 18:49:56 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012-04-10 00:19:04 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{5B367355-4444-4D4A-9EEB-316810F5A194}
[2012-04-10 00:18:40 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{493C1017-1E07-4DEF-BF8F-A4FE02E58A1B}
[2012-04-09 18:03:30 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{245FCCE5-6123-4DEA-8C89-2C27FF3F0C2D}
[2012-04-09 17:40:02 | 000,000,000 | ---D | C] -- C:\Windows\pl
[2012-04-09 17:32:58 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{6EC5A7F2-9898-4687-A569-D309C9A30C95}
[2012-04-09 17:32:36 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{910F53C2-9D79-486D-9730-699399064188}
[2012-04-09 13:33:17 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{53FE65AD-9E0B-4B40-B19E-6ED0704002B9}
[2012-04-09 13:32:56 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{C0900F01-5AD3-4B60-B9B1-A013A63F2EE5}
[2012-04-08 12:25:09 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{5768E584-6D74-45EC-944E-FF6CAA33CAF2}
[2012-04-08 12:24:47 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{2C43D530-A61C-4B42-9A4E-C21D71022439}
[2012-04-07 18:37:38 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{126740BD-E5A1-40FA-9A2F-BAC56AEF30F1}
[2012-04-07 18:37:15 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{E17AB674-984D-435C-9E61-2309A8B3E3A5}
[2012-04-06 16:21:30 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\Desktop\Praca licencjacka
[2012-04-06 15:34:01 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{6F723648-51A2-40A9-9B78-BA2F9A69AC29}
[2012-04-06 15:33:32 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{C029CDBE-2626-4D1B-883D-D0618CF5B493}
[2012-04-05 14:50:18 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{946AF8B3-0BEF-4B16-88F8-94AF622026A5}
[2012-04-05 14:49:51 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{DD17E0D3-1BFD-428C-9BC7-DF4619E7570D}
[2012-04-04 21:40:03 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{727C6FC0-F1D7-4992-8E0F-6415631E7610}
[2012-04-04 21:39:41 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{D4781553-30F0-4D21-9D75-0BC51D13DD66}
[2012-04-04 10:45:18 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{471FE62D-341E-4474-8C05-7B8BD1750EBC}
[2012-04-04 10:44:48 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{E7C99DED-33D1-49E8-94BF-A46D38B00387}
[2012-04-03 15:25:36 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{2B36337C-44B4-498E-A240-AFAAD94CEEC4}
[2012-04-02 23:13:18 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\Desktop\Zdjęcia z komórki
[2012-04-02 06:33:09 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{FAD73743-A7A7-4D09-9214-4797B86063AA}
[2012-04-01 22:37:47 | 000,418,464 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012-04-01 16:40:15 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{C37AB3E5-D86E-470A-AC24-BEF631C0F30A}
[2012-03-31 21:05:28 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{145F7C9A-8412-4F3A-BE27-D5EEA337AAC2}
[2012-03-31 09:05:03 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{6D84D745-6D3D-46C5-9E49-8512C6773FDA}
[2012-03-30 20:58:13 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{F5E5556E-CA22-4A44-A412-1D9CC93C2A62}
[2012-03-30 16:38:19 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\Documents\EVEREST Reports
[2012-03-30 15:55:50 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\Desktop\LOGA ITP
[2012-03-29 19:26:42 | 000,000,000 | ---D | C] -- C:\Users\GOSIA\AppData\Local\{058CC3E0-6A20-4D34-9531-16596DDBD080}
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-04-28 12:56:48 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012-04-28 12:56:48 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012-04-28 12:23:01 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012-04-28 11:04:43 | 000,672,140 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2012-04-28 11:04:43 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012-04-28 11:04:43 | 000,130,516 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2012-04-28 11:04:43 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012-04-28 10:56:46 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-04-28 10:55:52 | 000,003,204 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2012-04-28 10:50:32 | 132,967,040 | ---- | M] () -- C:\Users\GOSIA\Desktop\setup_11.0.0.1245.x01_2012_04_28_11_36.exe
[2012-04-27 22:24:03 | 000,000,928 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-883431018-1220919606-97619856-1000UA.job
[2012-04-27 22:24:02 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-883431018-1220919606-97619856-1000Core.job
[2012-04-27 22:12:06 | 000,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2012-04-27 20:55:54 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\GOSIA\Desktop\OTL.exe
[2012-04-26 22:37:51 | 000,002,122 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012-04-25 22:49:40 | 000,001,894 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012-04-22 15:49:22 | 000,000,680 | ---- | M] () -- C:\Users\GOSIA\AppData\Local\d3d9caps.dat
[2012-04-21 09:53:34 | 000,347,424 | ---- | M] (Microsoft Corporation) -- C:\Users\GOSIA\Desktop\MicrosoftFixit.WinFileFolder.FISC.22125842510512007.4.5.Run.exe
[2012-04-15 23:27:06 | 006,053,876 | ---- | M] () -- C:\Users\GOSIA\Desktop\GT-I9100_UM_Open_Gingerbread_Pol_Rev.1.2_111209_Screen.pdf
[2012-04-15 20:11:00 | 000,802,689 | ---- | M] () -- C:\Users\GOSIA\Desktop\Whole Phonebook.vcf
[2012-04-15 20:04:31 | 000,001,741 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Kies.lnk
[2012-04-10 18:49:42 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012-04-10 18:49:42 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012-04-10 18:49:42 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012-04-10 18:49:41 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2012-04-01 22:37:47 | 000,418,464 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012-04-01 22:37:47 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012-04-01 18:37:51 | 000,008,271 | ---- | M] () -- C:\Users\GOSIA\541840_356074021097025_164181236952972_912025_1072117719_n.jpg
[2012-03-29 18:11:54 | 000,000,327 | ---- | M] () -- C:\Users\GOSIA\Desktop\Zawartość użytkownika lesio - Fixitpc.pl.url
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-04-28 10:49:37 | 132,967,040 | ---- | C] () -- C:\Users\GOSIA\Desktop\setup_11.0.0.1245.x01_2012_04_28_11_36.exe
[2012-04-15 23:27:05 | 006,053,876 | ---- | C] () -- C:\Users\GOSIA\Desktop\GT-I9100_UM_Open_Gingerbread_Pol_Rev.1.2_111209_Screen.pdf
[2012-04-15 20:11:00 | 000,802,689 | ---- | C] () -- C:\Users\GOSIA\Desktop\Whole Phonebook.vcf
[2012-04-15 20:04:31 | 000,001,741 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Kies.lnk
[2012-04-01 22:37:47 | 000,000,930 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012-04-01 21:16:05 | 000,008,271 | ---- | C] () -- C:\Users\GOSIA\541840_356074021097025_164181236952972_912025_1072117719_n.jpg
[2012-03-29 18:11:54 | 000,000,327 | ---- | C] () -- C:\Users\GOSIA\Desktop\Zawartość użytkownika lesio - Fixitpc.pl.url
[2012-03-28 22:11:08 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2012-03-28 22:11:06 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2012-03-28 22:11:06 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2012-03-28 22:11:06 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2012-03-28 22:11:06 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2012-02-14 23:05:16 | 000,054,784 | ---- | C] () -- C:\Windows\System32\OVDecode.dll
[2012-02-11 18:56:33 | 000,000,282 | -H-- | C] () -- C:\Windows\sysreg.dat
[2012-01-10 23:10:08 | 000,601,728 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2011-11-10 04:11:06 | 000,037,376 | ---- | C] () -- C:\Windows\System32\atitmpxx.dll
[2011-09-14 19:51:03 | 000,004,096 | -H-- | C] () -- C:\Users\GOSIA\AppData\Local\keyfile3.drm
[2011-09-14 18:47:24 | 000,000,680 | ---- | C] () -- C:\Users\GOSIA\AppData\Local\d3d9caps.dat
[2011-09-13 01:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2011-08-31 08:29:18 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2011-08-31 08:28:53 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2011-08-31 08:28:53 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2011-08-31 04:34:02 | 000,081,920 | ---- | C] () -- C:\Windows\PGMONITOR.EXE
[2011-08-31 04:33:49 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
[2011-08-31 04:33:48 | 000,090,112 | ---- | C] () -- C:\Windows\System32\atibrtmon.exe
[2011-08-31 03:50:57 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011-08-31 03:39:06 | 000,003,204 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2011-08-30 19:29:33 | 000,005,632 | ---- | C] () -- C:\Users\GOSIA\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-08-30 19:21:48 | 000,045,056 | ---- | C] () -- C:\Windows\System32\acovcnt.exe
[2011-08-30 19:11:09 | 001,769,984 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2011-08-30 19:11:09 | 000,028,160 | ---- | C] () -- C:\Windows\System32\drivers\sncduvc.sys
[2011-08-30 19:08:08 | 000,005,632 | ---- | C] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-02-05 15:38:30 | 000,000,000 | ---D | M] -- C:\Users\GOSIA\AppData\Roaming\aignes
[2011-09-28 23:38:03 | 000,000,000 | ---D | M] -- C:\Users\GOSIA\AppData\Roaming\LG Electronics
[2012-02-11 21:57:02 | 000,000,000 | ---D | M] -- C:\Users\GOSIA\AppData\Roaming\Notebook Hardware Control
[2011-08-31 16:19:31 | 000,000,000 | ---D | M] -- C:\Users\GOSIA\AppData\Roaming\Nowe Gadu-Gadu
[2011-08-31 20:05:33 | 000,000,000 | ---D | M] -- C:\Users\GOSIA\AppData\Roaming\OpenFM
[2011-08-31 07:53:36 | 000,000,000 | ---D | M] -- C:\Users\GOSIA\AppData\Roaming\Opera
[2012-04-15 20:04:42 | 000,000,000 | ---D | M] -- C:\Users\GOSIA\AppData\Roaming\Samsung
[2011-08-31 16:06:53 | 000,000,000 | ---D | M] -- C:\Users\GOSIA\AppData\Roaming\Softland
[2012-04-15 23:24:51 | 000,000,000 | ---D | M] -- C:\Users\GOSIA\AppData\Roaming\Temp
[2011-08-31 21:16:15 | 000,000,000 | ---D | M] -- C:\Users\GOSIA\AppData\Roaming\Windows Live Writer
[2012-04-27 22:24:02 | 000,000,906 | ---- | M] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-883431018-1220919606-97619856-1000Core.job
[2012-04-27 22:24:03 | 000,000,928 | ---- | M] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-883431018-1220919606-97619856-1000UA.job
[2012-04-28 10:55:52 | 000,032,500 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:EE22FFDE

< End of report >