OTL logfile created on: 2013-02-24 08:25:18 - Run 4 OTL by OldTimer - Version 3.2.69.0 Folder = D:\progs Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,74 Gb Available Physical Memory | 37,24% Memory free 4,00 Gb Paging File | 2,38 Gb Available in Paging File | 59,64% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 48,73 Gb Total Space | 8,99 Gb Free Space | 18,44% Space Free | Partition Type: NTFS Drive D: | 308,01 Gb Total Space | 305,60 Gb Free Space | 99,22% Space Free | Partition Type: NTFS Drive E: | 104,55 Gb Total Space | 92,14 Gb Free Space | 88,12% Space Free | Partition Type: NTFS Drive F: | 390,62 Gb Total Space | 364,37 Gb Free Space | 93,28% Space Free | Partition Type: NTFS Drive H: | 647,99 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: OLELELE-PC | User Name: olelele | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-02-24 08:15:07 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\progs\OTL.exe PRC - [2013-02-21 20:05:14 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\java.exe PRC - [2013-02-21 20:05:14 | 000,040,352 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jp2launcher.exe PRC - [2013-02-20 20:02:25 | 001,820,016 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_6_602_168.exe PRC - [2013-02-20 19:57:19 | 000,917,400 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2013-01-26 16:40:58 | 000,497,264 | ---- | M] () -- C:\Program Files\PdaNet for Android\PdaNetPC.exe PRC - [2012-12-29 11:26:54 | 001,260,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2012-12-29 09:26:22 | 001,822,136 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe PRC - [2012-12-29 09:26:22 | 000,873,400 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe PRC - [2012-12-18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2012-12-14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2012-12-14 16:49:28 | 000,512,360 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2012-12-14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe PRC - [2012-11-26 14:39:30 | 000,188,760 | ---- | M] () -- C:\Program Files\IB Updater\ExtensionUpdaterService.exe PRC - [2012-11-16 11:38:38 | 001,773,568 | ---- | M] (Peter Pawlowski) -- D:\foobar\foobar2000.exe PRC - [2012-11-04 18:43:30 | 001,851,192 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe PRC - [2012-10-01 08:23:54 | 000,150,328 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe PRC - [2010-11-20 04:17:48 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe PRC - [2010-11-20 04:17:10 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2010-11-20 04:17:02 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe PRC - [2009-07-14 02:14:45 | 000,396,800 | -HS- | M] (Microsoft Corporation) -- C:\Program Files\Windows Mail\WinMail.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2013-02-21 20:05:14 | 000,016,288 | ---- | M] () -- C:\Program Files\Java\jre7\bin\jp2native.dll MOD - [2013-02-20 20:02:25 | 014,717,808 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_6_602_168.dll MOD - [2013-02-20 19:57:19 | 003,067,288 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2013-01-26 16:40:58 | 000,497,264 | ---- | M] () -- C:\Program Files\PdaNet for Android\PdaNetPC.exe MOD - [2012-11-16 11:37:14 | 001,627,648 | ---- | M] () -- D:\foobar\components\foo_input_std.dll MOD - [2012-11-16 11:37:14 | 000,359,424 | ---- | M] () -- D:\foobar\components\foo_albumlist.dll MOD - [2012-11-16 11:37:10 | 000,278,016 | ---- | M] () -- D:\foobar\components\foo_dsp_std.dll MOD - [2012-11-16 11:36:52 | 000,915,456 | ---- | M] () -- D:\foobar\components\foo_ui_std.dll MOD - [2012-11-16 11:36:52 | 000,303,616 | ---- | M] () -- D:\foobar\components\foo_cdda.dll MOD - [2012-11-16 11:36:30 | 000,291,840 | ---- | M] () -- D:\foobar\components\foo_rgscan.dll MOD - [2012-11-16 11:36:28 | 000,491,008 | ---- | M] () -- D:\foobar\components\foo_converter.dll MOD - [2012-11-16 11:34:58 | 000,150,016 | ---- | M] () -- D:\foobar\shared.dll MOD - [2012-11-09 12:14:58 | 000,091,662 | ---- | M] () -- D:\foobar\zlib1.dll MOD - [2010-01-30 02:41:12 | 004,254,560 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF [color=#E56717]========== Services (SafeList) ==========[/color] SRV - [2013-02-20 19:57:19 | 000,115,608 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-12-29 11:26:54 | 001,260,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2012-12-18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2012-12-14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2012-12-14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2012-11-26 14:39:30 | 000,188,760 | ---- | M] () [Auto | Running] -- C:\Program Files\IB Updater\ExtensionUpdaterService.exe -- (IB Updater) SRV - [2012-10-01 08:22:06 | 000,295,224 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ) SRV - [2012-07-19 16:07:51 | 000,821,840 | ---- | M] (ABBYY) [Disabled | Stopped] -- C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.11.0) SRV - [2012-01-18 14:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [Disabled | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion) SRV - [2010-03-25 10:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service) SRV - [2009-07-14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV - [2009-07-14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2013-02-04 21:07:07 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV - [2012-12-29 11:26:54 | 008,904,632 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm) DRV - [2012-12-14 16:49:28 | 000,021,104 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector) DRV - [2012-12-07 11:08:20 | 000,025,200 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\ggsemc.sys -- (ggsemc) DRV - [2012-12-07 11:08:20 | 000,012,400 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\ggflt.sys -- (ggflt) DRV - [2012-11-26 07:19:02 | 000,013,024 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\SWDUMon.sys -- (SWDUMon) DRV - [2012-11-07 23:37:58 | 000,082,952 | ---- | M] (COMODO) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\inspect.sys -- (inspect) DRV - [2012-09-18 10:33:00 | 000,043,960 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt) DRV - [2012-09-18 10:33:00 | 000,039,608 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt) DRV - [2011-11-25 00:26:04 | 000,013,440 | ---- | M] (June Fabrics Technology Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\pneteth.sys -- (pneteth) DRV - [2011-09-16 07:25:24 | 000,073,728 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgandnetndis.sys -- (andnetndis) DRV - [2011-09-06 01:19:48 | 000,025,856 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgandnetadb.sys -- (andnetadb) DRV - [2011-09-06 00:55:12 | 000,023,040 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgandnetdiag.sys -- (AndNetDiag) DRV - [2011-09-06 00:55:10 | 000,027,776 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgandnetmodem.sys -- (ANDNetModem) DRV - [2010-11-20 02:24:42 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV - [2010-11-20 01:59:46 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb) DRV - [2009-07-14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial) DRV - [2009-07-13 23:02:46 | 000,047,104 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\l160x86.sys -- (AtcL001) DRV - [2009-05-13 19:11:34 | 000,006,504 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ASACPI.sys -- (MTsensor) DRV - [2004-03-02 09:26:58 | 000,050,007 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\adildr.sys -- (ADILOADER) DRV - [2004-03-02 09:24:16 | 000,127,065 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\adiusbaw.sys -- (adiusbaw) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-21-981692421-2241933578-2307298367-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredibar.com/mb201?a=6R8SjVUJJd&i=26 IE - HKU\S-1-5-21-981692421-2241933578-2307298367-1001\..\SearchScopes,DefaultScope = {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} IE - HKU\S-1-5-21-981692421-2241933578-2307298367-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-981692421-2241933578-2307298367-1001\..\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A}: "URL" = http://pl.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo IE - HKU\S-1-5-21-981692421-2241933578-2307298367-1001\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://mystart.incredibar.com/mb201/?search={searchTerms}&loc=IB_DS&a=6R8SjVUJJd&i=26 IE - HKU\S-1-5-21-981692421-2241933578-2307298367-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-981692421-2241933578-2307298367-1003\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-981692421-2241933578-2307298367-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-981692421-2241933578-2307298367-1003\..\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A}: "URL" = http://pl.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo IE - HKU\S-1-5-21-981692421-2241933578-2307298367-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "MyStart Search" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.startup.homepage: "http://mystart.incredibar.com/mb201?a=6R8SjVUJJd&i=26" FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.14 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0 FF - prefs.js..keyword.URL: "http://mystart.incredibar.com/mb201/?loc=IB_DS&a=6R8SjVUJJd&&i=26&search=" FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_168.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.15.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.15.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll File not found FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F003DA68-8256-4b37-A6C4-350FA04494DF}: C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-01-17 18:06:10 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{336D0C35-8A85-403a-B9D2-65C292C39087}: C:\Program Files\IB Updater\Firefox [2013-01-24 18:43:35 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013-02-20 19:57:21 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-12-13 11:33:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\olelele\AppData\Roaming\Mozilla\Extensions [2013-02-23 19:46:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\olelele\AppData\Roaming\Mozilla\Firefox\Profiles\8vhark7p.default\extensions [2013-02-23 19:46:28 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\olelele\AppData\Roaming\Mozilla\Firefox\Profiles\8vhark7p.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-01-09 17:09:08 | 000,005,514 | ---- | M] () (No name found) -- C:\Users\olelele\AppData\Roaming\Mozilla\Firefox\Profiles\8vhark7p.default\extensions\50ed9affb8f12@50ed9affb8f4a.com.xpi [2013-01-24 18:43:15 | 000,002,203 | ---- | M] () -- C:\Users\olelele\AppData\Roaming\Mozilla\Firefox\Profiles\8vhark7p.default\searchplugins\MyStart Search.xml [2013-01-11 15:35:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2013-02-20 19:57:21 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2013-02-20 19:57:18 | 000,002,980 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2013-02-20 19:57:18 | 000,001,619 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2013-02-20 19:57:18 | 000,001,130 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2013-02-20 19:57:18 | 000,001,071 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2013-02-20 19:57:18 | 000,001,396 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2013-02-20 19:57:18 | 000,001,896 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml [color=#E56717]========== Chrome ==========[/color] CHR - homepage: http://pl.yahoo.com?fr=fpc-comodo CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://pl.yahoo.com?fr=fpc-comodo CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.91\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.91\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.91\pdf.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_110.dll CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\Windows\system32\npDeployJava1.dll CHR - Extension: Dysk Google = C:\Users\olelele\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\olelele\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Szukaj w Google = C:\Users\olelele\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Logitech SetPoint = C:\Users\olelele\AppData\Local\Google\Chrome\User Data\Default\Extensions\edaibbiobngpbmeonadpbfafbkimjbdd\6.51.8_0\ CHR - Extension: Gmail = C:\Users\olelele\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2009-06-10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O2 - BHO: (IB Updater) - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\IB Updater\Extension32.dll () O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Logitech SetPoint) - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (no name) - {ED0E8CA5-42FB-4B18-997B-769E0408E79D} - No CLSID value found. O4 - HKLM..\Run: [adiras] C:\Windows\adiras.exe () O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation) O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.) O4 - HKU\S-1-5-21-981692421-2241933578-2307298367-1001..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKU\S-1-5-21-981692421-2241933578-2307298367-1003..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation) O4 - Startup: C:\Users\olelele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk = C:\Program Files\PdaNet for Android\PdaNetPC.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8 - Extra context menu item: Wyślij &do programu OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0FB6CEE4-5C6D-474F-ABFF-4F3741F9B359}: DhcpNameServer = 192.168.2.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - AppInit_DLLs: (C:\Windows\System32\guard32.dll) - C:\Windows\System32\guard32.dll (COMODO) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-06-10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [2012-05-19 09:21:33 | 000,000,024 | ---- | M] () - E:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [2010-03-24 00:54:52 | 000,000,175 | R--- | M] () - H:\autorun.inf -- [ CDFS ] O33 - MountPoints2\{4e9eb28b-620d-11e2-8a68-001bfcffea35}\Shell - "" = AutoRun O33 - MountPoints2\{4e9eb28b-620d-11e2-8a68-001bfcffea35}\Shell\AutoRun\command - "" = I:\LGAutoRun.exe O33 - MountPoints2\{99cdf5ec-4aaa-11e2-901d-001bfcffea35}\Shell - "" = AutoRun O33 - MountPoints2\{99cdf5ec-4aaa-11e2-901d-001bfcffea35}\Shell\AutoRun\command - "" = H:\autorun.exe O33 - MountPoints2\{cc1a86a8-6e9b-11e2-9c0c-001bfcffea35}\Shell - "" = AutoRun O33 - MountPoints2\{cc1a86a8-6e9b-11e2-9c0c-001bfcffea35}\Shell\AutoRun\command - "" = H:\setup.exe -- [2010-03-12 08:49:40 | 001,100,664 | R--- | M] (Microsoft Corporation) O33 - MountPoints2\{cc1a86a8-6e9b-11e2-9c0c-001bfcffea35}\Shell\configure\command - "" = H:\setup.exe -- [2010-03-12 08:49:40 | 001,100,664 | R--- | M] (Microsoft Corporation) O33 - MountPoints2\{cc1a86a8-6e9b-11e2-9c0c-001bfcffea35}\Shell\install\command - "" = H:\setup.exe -- [2010-03-12 08:49:40 | 001,100,664 | R--- | M] (Microsoft Corporation) O33 - MountPoints2\I\Shell - "" = AutoRun O33 - MountPoints2\I\Shell\AutoRun\command - "" = I:\LGAutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013-02-23 23:57:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cue Club [2013-02-23 23:57:07 | 000,000,000 | ---D | C] -- C:\Windows\Cue Club [2013-02-23 23:57:07 | 000,000,000 | ---D | C] -- C:\Program Files\Cue Club [2013-02-23 17:31:16 | 000,000,000 | ---D | C] -- C:\Users\olelele\AppData\Roaming\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1 [2013-02-23 17:31:12 | 000,000,000 | ---D | C] -- C:\Program Files\e-Deklaracje [2013-02-23 17:31:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR [2013-02-21 20:05:27 | 000,262,560 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe [2013-02-21 20:05:19 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe [2013-02-21 20:05:19 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe [2013-02-21 20:05:19 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll [2013-02-20 20:52:11 | 000,000,000 | ---D | C] -- C:\Users\olelele\AppData\Roaming\Opera [2013-02-20 20:52:11 | 000,000,000 | ---D | C] -- C:\Users\olelele\AppData\Local\Opera [2013-02-20 20:02:25 | 000,691,568 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe [2013-02-20 20:02:25 | 000,071,024 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2013-02-19 20:01:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2013-02-19 20:01:09 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2013-02-19 20:01:09 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013-02-17 14:41:50 | 000,000,000 | ---D | C] -- C:\Users\olelele\Desktop\alllegro [2013-02-14 10:37:13 | 000,000,000 | ---D | C] -- C:\Users\olelele\Desktop\zosia [2013-02-13 19:50:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013-02-13 19:50:22 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013-02-13 19:02:31 | 000,000,000 | ---D | C] -- C:\Users\olelele\AppData\Roaming\Podatnik.info [2013-02-13 16:33:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PIT pro 2012 [2013-02-13 16:33:44 | 000,000,000 | ---D | C] -- C:\Program Files\Podatnik.info Sp z o.o [2013-02-12 19:24:06 | 000,013,440 | ---- | C] (June Fabrics Technology Inc.) -- C:\Windows\System32\drivers\pneteth.sys [2013-02-12 19:24:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PdaNet for Android [2013-02-12 19:24:06 | 000,000,000 | ---D | C] -- C:\Program Files\PdaNet for Android [2013-02-10 21:20:16 | 000,000,000 | ---D | C] -- C:\Users\olelele\AppData\Roaming\Media Player Classic [2013-02-10 21:17:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SubEdit-Player [2013-02-10 21:17:42 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player [2013-02-09 19:07:33 | 000,000,000 | ---D | C] -- C:\Users\olelele\Desktop\karolina [2013-02-09 16:42:14 | 000,000,000 | ---D | C] -- C:\Users\olelele\Desktop\o4xr [2013-02-08 22:34:03 | 000,000,000 | ---D | C] -- C:\Users\olelele\Desktop\siatka [2013-02-08 16:10:56 | 000,000,000 | ---D | C] -- C:\Users\olelele\Desktop\marcin gra [2013-02-05 10:44:51 | 000,000,000 | ---D | C] -- C:\Program Files\LG Electronics [2013-02-04 21:13:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint [2013-02-04 21:13:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office [2013-02-04 21:12:32 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services [2013-02-04 21:12:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2013-02-04 21:12:06 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2013-02-04 21:12:06 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework [2013-02-04 21:12:05 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition [2013-02-04 21:11:07 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services [2013-02-04 21:10:21 | 000,000,000 | ---D | C] -- C:\Users\olelele\AppData\Local\Microsoft Help [2013-02-04 21:10:09 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013-02-04 21:10:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2013-02-04 21:09:49 | 000,000,000 | RH-D | C] -- C:\MSOCache [2013-02-04 21:07:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite [2013-02-04 21:07:07 | 000,242,240 | ---- | C] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys [2013-02-04 21:06:56 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2013-02-04 14:59:04 | 000,000,000 | ---D | C] -- C:\Users\olelele\Documents\My Cheat Tables [2013-02-04 11:24:14 | 000,000,000 | ---D | C] -- C:\Users\olelele\Desktop\New folder [2013-02-02 10:33:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive [2013-01-27 21:45:03 | 000,000,000 | ---D | C] -- C:\Users\olelele\AppData\Local\Facebook [2013-01-26 14:00:07 | 000,000,000 | ---D | C] -- C:\Users\olelele\Desktop\zdj [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013-02-24 08:06:25 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl [2013-02-24 08:06:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013-02-24 08:06:17 | 1609,965,568 | -HS- | M] () -- C:\hiberfil.sys [2013-02-24 02:05:07 | 000,009,920 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013-02-24 02:05:06 | 000,009,920 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013-02-23 23:57:26 | 000,001,782 | ---- | M] () -- C:\Users\Public\Desktop\Cue Club.lnk [2013-02-23 17:56:52 | 000,005,827 | ---- | M] () -- C:\Users\olelele\Desktop\MarcinaUPO.sig [2013-02-23 17:31:12 | 000,000,841 | ---- | M] () -- C:\Users\Public\Desktop\e-Deklaracje.lnk [2013-02-23 17:28:22 | 000,011,761 | ---- | M] () -- C:\Users\olelele\AppData\Local\unins000.msg [2013-02-23 17:28:22 | 000,002,393 | ---- | M] () -- C:\Users\olelele\AppData\Local\unins000.dat [2013-02-23 17:28:17 | 000,707,504 | ---- | M] () -- C:\Users\olelele\AppData\Local\unins000.exe [2013-02-23 09:13:56 | 000,651,450 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2013-02-23 09:13:56 | 000,120,382 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2013-02-21 20:05:14 | 000,861,088 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\npDeployJava1.dll [2013-02-21 20:05:14 | 000,782,240 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll [2013-02-21 20:05:14 | 000,262,560 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe [2013-02-21 20:05:14 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe [2013-02-21 20:05:14 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe [2013-02-21 20:05:14 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll [2013-02-20 21:32:24 | 000,001,367 | ---- | M] () -- C:\Users\olelele\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2013-02-20 20:02:25 | 000,691,568 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe [2013-02-20 20:02:25 | 000,071,024 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2013-02-19 20:01:12 | 000,001,027 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2013-02-13 19:50:33 | 000,001,949 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk [2013-02-13 16:33:45 | 000,002,621 | ---- | M] () -- C:\Users\Public\Desktop\PIT pro 2012.lnk [2013-02-12 19:24:06 | 000,001,031 | ---- | M] () -- C:\Users\olelele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk [2013-02-10 21:17:43 | 000,001,040 | ---- | M] () -- C:\Users\olelele\Desktop\SubEdit-Player.lnk [2013-02-09 21:56:17 | 072,029,185 | ---- | M] () -- C:\Users\olelele\Desktop\siatka.rar [2013-02-05 10:45:41 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_lgandnetadb_01005.Wdf [2013-02-05 08:35:14 | 000,407,824 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2013-02-04 21:08:01 | 000,001,856 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2013-02-04 21:07:07 | 000,242,240 | ---- | M] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys [2013-02-04 11:25:12 | 000,000,800 | ---- | M] () -- C:\Users\olelele\Desktop\New folder - Shortcut (2).lnk [2013-02-04 11:24:28 | 000,000,800 | ---- | M] () -- C:\Users\olelele\Desktop\New folder - Shortcut.lnk [2013-02-04 08:32:50 | 000,032,768 | ---- | M] () -- C:\Users\olelele\Documents\Normal.dot [2013-02-01 21:51:34 | 000,000,154 | ---- | M] () -- C:\Windows\adidsl.ini [2013-01-28 19:31:54 | 015,165,438 | ---- | M] () -- C:\Users\olelele\Desktop\Van Damme - Ona Tanczy dla mnie.flv [2013-01-28 19:27:40 | 019,335,122 | ---- | M] () -- C:\Users\olelele\Desktop\Król Julian śpiewa - Ona Tańczy Dla Mnie WEEKEND GS#2 (OFFIC.flv [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-02-23 23:57:26 | 000,001,782 | ---- | C] () -- C:\Users\Public\Desktop\Cue Club.lnk [2013-02-23 23:56:45 | 018,363,638 | ---- | C] () -- C:\Users\olelele\Desktop\Cue Club.exe [2013-02-23 17:56:51 | 000,005,827 | ---- | C] () -- C:\Users\olelele\Desktop\MarcinaUPO.sig [2013-02-23 17:31:12 | 000,000,853 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\e-Deklaracje.lnk [2013-02-23 17:31:12 | 000,000,841 | ---- | C] () -- C:\Users\Public\Desktop\e-Deklaracje.lnk [2013-02-23 17:28:22 | 000,707,504 | ---- | C] () -- C:\Users\olelele\AppData\Local\unins000.exe [2013-02-23 17:28:22 | 000,011,761 | ---- | C] () -- C:\Users\olelele\AppData\Local\unins000.msg [2013-02-23 17:28:22 | 000,002,393 | ---- | C] () -- C:\Users\olelele\AppData\Local\unins000.dat [2013-02-19 20:01:12 | 000,001,027 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2013-02-13 19:50:33 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk [2013-02-13 16:33:45 | 000,002,621 | ---- | C] () -- C:\Users\Public\Desktop\PIT pro 2012.lnk [2013-02-12 19:24:06 | 000,001,031 | ---- | C] () -- C:\Users\olelele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk [2013-02-10 21:17:43 | 000,001,040 | ---- | C] () -- C:\Users\olelele\Desktop\SubEdit-Player.lnk [2013-02-09 21:55:52 | 072,029,185 | ---- | C] () -- C:\Users\olelele\Desktop\siatka.rar [2013-02-05 10:45:41 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_lgandnetadb_01005.Wdf [2013-02-04 21:08:01 | 000,001,856 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2013-02-04 11:25:12 | 000,000,800 | ---- | C] () -- C:\Users\olelele\Desktop\New folder - Shortcut (2).lnk [2013-02-04 11:24:28 | 000,000,800 | ---- | C] () -- C:\Users\olelele\Desktop\New folder - Shortcut.lnk [2013-02-04 08:32:50 | 000,032,768 | ---- | C] () -- C:\Users\olelele\Documents\Normal.dot [2013-01-28 19:28:34 | 015,165,438 | ---- | C] () -- C:\Users\olelele\Desktop\Van Damme - Ona Tanczy dla mnie.flv [2013-01-28 19:25:05 | 019,335,122 | ---- | C] () -- C:\Users\olelele\Desktop\Król Julian śpiewa - Ona Tańczy Dla Mnie WEEKEND GS#2 (OFFIC.flv [2013-01-24 18:46:48 | 000,003,584 | ---- | C] () -- C:\Users\olelele\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013-01-23 13:51:56 | 000,332,665 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT [2012-12-20 15:25:35 | 000,076,888 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe [2012-12-18 10:06:06 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll [2012-12-18 10:06:06 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll [2012-12-18 10:06:06 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll [2012-12-18 10:06:06 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll [2012-12-10 20:28:38 | 000,000,154 | ---- | C] () -- C:\Windows\adidsl.ini [2012-12-10 20:28:38 | 000,000,021 | ---- | C] () -- C:\Windows\Fast800.ini [2012-12-10 20:28:12 | 001,531,904 | ---- | C] () -- C:\Windows\adiras.exe [2012-12-10 20:28:12 | 000,000,998 | ---- | C] () -- C:\Windows\adiras.ini [2012-12-10 20:28:11 | 000,127,456 | ---- | C] () -- C:\Windows\System32\ipdetect.exe [2012-12-10 20:28:10 | 000,126,976 | ---- | C] () -- C:\Windows\System32\coclassfast.dll [2012-12-10 20:28:09 | 000,046,892 | ---- | C] () -- C:\Windows\System32\adadix16.dll [2012-12-10 20:28:07 | 000,143,360 | ---- | C] () -- C:\Windows\autoclk.exe [2012-12-10 20:28:07 | 000,022,395 | ---- | C] () -- C:\Windows\System32\drivers\fpga.bin [2012-12-10 11:20:12 | 000,140,288 | ---- | C] () -- C:\Windows\System32\igfxtvcx.dll [2012-11-30 23:41:16 | 000,003,626 | ---- | C] () -- C:\Windows\wininit.ini [2012-11-29 17:39:24 | 000,000,017 | ---- | C] () -- C:\Users\olelele\AppData\Local\resmon.resmoncfg [2012-11-25 14:09:22 | 000,013,024 | ---- | C] () -- C:\Windows\System32\drivers\SWDUMon.sys [2012-11-23 20:56:55 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini [2012-11-23 19:55:01 | 000,006,504 | ---- | C] () -- C:\Windows\System32\drivers\ASACPI.sys [color=#E56717]========== ZeroAccess Check ==========[/color] [2009-07-14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2010-11-20 04:21:20 | 012,872,192 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 04:19:04 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2012-12-03 22:45:04 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\Anvisoft [2012-11-29 22:49:25 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\AnvSoft [2012-11-22 18:50:50 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\BinarySense [2012-12-13 16:26:31 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\Canneverbe Limited [2013-02-08 16:13:35 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\DAEMON Tools Lite [2012-11-23 19:42:35 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\DeviceDoctorSoftware [2012-12-13 16:02:11 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\DVDVideoSoft [2013-02-23 17:31:16 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1 [2012-11-23 19:45:31 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\Easeware [2012-12-31 21:12:49 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\foobar2000 [2012-12-09 22:06:54 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\HTML Executable [2012-11-23 21:04:59 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\Leadertech [2012-11-28 07:39:43 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\MSDCSC [2013-02-20 21:32:27 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\Opera [2012-11-30 18:13:25 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\Origin [2013-02-13 19:02:31 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\Podatnik.info [2013-01-06 16:44:02 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\PotPlayerMini [2013-01-13 16:10:42 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\Samsung [2012-11-27 16:43:20 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\Thinstall [2013-01-15 14:40:27 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\Uninstaller Tool(Comodo Forums) [2013-01-06 19:31:41 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\uTorrent [2013-02-20 20:47:03 | 000,000,000 | ---D | M] -- C:\Users\olelele\AppData\Roaming\XBMC [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:CB0AACC9 @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:55B41E6A @Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:39413AC3 @Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:5C321E34 < End of report >