Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-11-2013 01
Ran by Adam (administrator) on LENOVO-55067247 on 11-11-2013 21:32:41
Running from C:\Documents and Settings\Adam\Moje dokumenty\Pobieranie
Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 7
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

() C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
() C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Softex Inc.) C:\Program Files\Softex\OmniPass\Omniserv.exe
() C:\Documents and Settings\All Users\Dane aplikacji\PLAY ONLINE\OnlineUpdate\ouc.exe
(Lenovo) C:\Program Files\Lenovo\PM Driver\PMSveH.exe
( ) c:\program files\lenovo\system update\suservice.exe
() C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
(Lenovo) C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
() C:\Program Files\Softex\OmniPass\OPXPApp.exe
() C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
() C:\Program Files\PLAY ONLINE\PLAY ONLINE.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe
(Lenovo) C:\PROGRA~1\Lenovo\PMDRIV~1\PMHandler.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Lenovo Group Limited) C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
() C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
() C:\Program Files\Lenovo\HOTKEY\TPHKMGR.exe
(BitTorrent Inc.) C:\Documents and Settings\Adam\Pulpit\utorrent.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox 3.6 Beta 4\firefox.exe
(OldTimer Tools) C:\Documents and Settings\Adam\Moje dokumenty\Pobieranie\OTL.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [774233 2006-05-19] (Synaptics, Inc.)
HKLM\...\Run: [TPWAUDAP] - C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe [24576 2006-04-19] ()
HKLM\...\Run: [PMHandler] - C:\Program Files\Lenovo\PM Driver\PMHandler.exe [33128 2006-08-21] (Lenovo)
HKLM\...\Run: [igfxhkcmd] - C:\WINDOWS\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [igfxpers] - C:\WINDOWS\system32\igfxpers.exe [118784 2006-03-23] (Intel Corporation)
HKLM\...\Run: [LPManager] - C:\Program Files\Lenovo\LenovoCare\LPMGR.EXE [110592 2006-07-03] (Lenovo Group Limited)
HKLM\...\Run: [TVT Scheduler Proxy] - C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe [503808 2006-03-28] (Lenovo Group Limited)
HKLM\...\Run: [ACTray] - C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe [409600 2006-10-05] ()
HKLM\...\Run: [TPHOTKEY] - C:\Program Files\Lenovo\HOTKEY\TPHKMGR.exe [94208 2006-05-08] ()
Winlogon\Notify\ACNotify: C:\Program Files\ThinkPad\ConnectUtilities\ACNotify.dll ()
Winlogon\Notify\OPXPGina: C:\Program Files\Softex\OmniPass\OPXPGina.dll ()
Winlogon\Notify\tphotkey: C:\Windows\system32\tphklock.dll ()
HKCU\...\Run: [uTorrent] - C:\Documents and Settings\Adam\Pulpit\utorrent.exe [1141328 2013-11-10] (BitTorrent Inc.)
MountPoints2: E - E:\AutoRun.exe
MountPoints2: {1f634558-0f24-11e2-8edd-000fb0d0e38b} - E:\AutoRun.exe
MountPoints2: {4778b760-fdbf-11e1-8eb8-000fb0d0e38b} - F:\AutoRun.exe
MountPoints2: {4778b763-fdbf-11e1-8eb8-000fb0d0e38b} - F:\AutoRun.exe
MountPoints2: {6f8613b2-0d44-11e2-8ed6-000fb0d0e38b} - F:\AutoRun.exe
MountPoints2: {6f8613b4-0d44-11e2-8ed6-000fb0d0e38b} - F:\AutoRun.exe
MountPoints2: {6f8613b7-0d44-11e2-8ed6-000fb0d0e38b} - F:\AutoRun.exe
MountPoints2: {8a2911f6-0d4e-11e2-8ed8-000fb0d0e38b} - F:\AutoRun.exe
Lsa: [Notification Packages] scecli ACGina

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT1060933
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.com.pl/0SEPLPL/SAOS01?FORM=TOOLBR
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = 
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com.pl/0SEPLPL/SAOS01?FORM=TOOLBR
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.1010000.00000&barid={8EA22920-6884-11E2-8F80-000FB0D0E38B}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
URLSearchHook: HKCU - Freecorder Toolbar - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files\Freecorder\prxtbFre0.dll (Conduit Ltd.)
URLSearchHook: HKCU - SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
SearchScopes: HKLM - DefaultScope {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL = 
SearchScopes: HKLM - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.00000&barid={8EA22920-6884-11E2-8F80-000FB0D0E38B}
SearchScopes: HKLM - {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20110622214027390&tb_oid=22-06-2011&tb_mrud=22-06-2011
SearchScopes: HKCU - DefaultScope {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1060933
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?FORM=IEFM1&q={searchTerms}&src={referrer:source?}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=6872000FB0D0E38B&affID=119357&tsp=5019
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=crm&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYPL&apn_uid=6030CE4E-B3E7-4183-9E69-05AD18660AC6&apn_sauid=61FDAFBC-429D-4BB8-BE29-0E8D456E492A
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1060933
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.00000&barid={8EA22920-6884-11E2-8F80-000FB0D0E38B}
SearchScopes: HKCU - {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20110622214027390&tb_oid=22-06-2011&tb_mrud=22-06-2011
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Documents and Settings\Adam\Dane aplikacji\Complitly\Complitly.dll (SimplyGen)
BHO: Freecorder Toolbar - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files\Freecorder\prxtbFre0.dll (Conduit Ltd.)
BHO: Conduit Engine  - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
BHO: CPwmIEBrowserHelper Object - {F040E541-A427-4CF7-85D8-75E3E0F476C5} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll (Lenovo Group Limited)
Toolbar: HKLM - Conduit Engine  - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
Toolbar: HKLM - Freecorder Toolbar - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files\Freecorder\prxtbFre0.dll (Conduit Ltd.)
Toolbar: HKLM - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKCU - No Name - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} -  No File
Toolbar: HKCU - Freecorder Toolbar - {1392B8D2-5C05-419F-A8F6-B9F15A596612} - C:\Program Files\Freecorder\prxtbFre0.dll (Conduit Ltd.)
Toolbar: HKCU - Conduit Engine  - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
Toolbar: HKCU - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab
Tcpip\Parameters: [DhcpNameServer] 89.108.202.21 89.108.195.21

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default
FF user.js: detected! => C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default\user.js
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default\searchplugins\aol-web-search.xml
FF SearchPlugin: C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default\searchplugins\sweetim.xml
FF Extension: Conduit Engine  - C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default\Extensions\engine@conduit.com
FF Extension: Freecorder  - C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default\Extensions\{1392b8d2-5c05-419f-a8f6-b9f15a596612}
FF Extension: Flashblock - C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default\Extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
FF Extension: DownloadHelper - C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: uTorrentBar Community Toolbar - C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default\Extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
FF Extension: adblockpopups - C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default\Extensions\adblockpopups@jessehakanen.net.xpi
FF Extension: testpilot - C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\2dvulbea.default\Extensions\testpilot@labs.mozilla.com.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox 3.6 Beta 4\firefox.exe

Chrome: 
=======
CHR HomePage: hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=6872000FB0D0E38B&affID=119357&tsp=5019
CHR RestoreOnStartup: "hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=6872000FB0D0E38B&affID=119357&tsp=5019"
CHR DefaultSearchURL: (Ask) - http://websearch.ask.com/redirect?client=cr&src=kw&tb=ORJ&o=&locale=&apn_uid=6030CE4E-B3E7-4183-9E69-05AD18660AC6&apn_ptnrs=U3&apn_sauid=61FDAFBC-429D-4BB8-BE29-0E8D456E492A&apn_dtid=OSJ000YYPL&q={searchTerms}
CHR DefaultSuggestURL: (Ask) - http://ss.websearch.ask.com/query?qsrc=2922&li=ff&sstype=prefix&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\28.0.1500.95\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (downloadUpdater) - C:\Program Files\Mozilla Firefox\plugins\npdnu.dll (AOL LLC)
CHR Plugin: (downloadUpdater2) - C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.dll (AOL LLC)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL No File
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.129\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U9) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll No File
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.70.11) - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Ask Toolbar) - C:\DOCUME~1\Adam\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo\7.15.23.42079_1
CHR Extension: (Complitly plugin for chrome) - C:\DOCUME~1\Adam\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_1
CHR Extension: (Delta Toolbar) - C:\DOCUME~1\Adam\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6_0
CHR Extension: (SweetIM for Facebook) - C:\DOCUME~1\Adam\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.1.0.1_0
CHR Extension: (Chrome In-App Payments service) - C:\DOCUME~1\Adam\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (SweetPacks Chrome Extension) - C:\DOCUME~1\Adam\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.0.0.1_0
CHR HKLM\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\DOCUME~1\Adam\USTAWI~1\Temp\crxA3.tmp
CHR HKLM\...\Chrome\Extension: [dlfienamagdnkekbbbocojppncdambda] - C:\Program Files\Complitly\chrome\ComplitlyChrome.crx
CHR HKLM\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Documents and Settings\Adam\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx
CHR HKLM\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Documents and Settings\Adam\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetNT.crx

========================== Services (Whitelisted) =================

R2 AcPrfMgrSvc; C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe [53248 2006-10-05] ()
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe [266295 2006-01-17] (Broadcom Corporation.)
R2 Diskeeper; C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [622700 2006-05-23] (Diskeeper Corporation)
R2 HWDeviceService.exe; C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
R2 omniserv; C:\Program Files\Softex\OmniPass\Omniserv.exe [32768 2006-10-16] (Softex Inc.)
S2 PLAY ONLINE. RunOuc; C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe [246112 2012-10-03] ()
R2 PMSveH; C:\Program Files\Lenovo\PM Driver\PMSveH.exe [57344 2006-05-24] (Lenovo)
S3 PsaSrv; C:\WINDOWS\system32\PsaSrv.exe [23552 2006-11-16] ()
R2 SUService; c:\program files\lenovo\system update\suservice.exe [15872 2006-11-17] ( )
R2 ThinkVantage Registry Monitor Service; C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe [629504 2006-07-14] ()
R2 TVT Scheduler; C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe [946176 2006-03-28] (Lenovo Group Limited)
S4 wltrysvc; C:\Windows\System32\bcmwltry.exe [1134592 2006-10-12] (Broadcom Corporation)
S3 WMConnectCDS; C:\Program Files\Windows Media Connect 2\wmccds.exe [856064 2005-10-06] (Microsoft Corporation)
R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"

==================== Drivers (Whitelisted) ====================

S4 abp480n5; C:\Windows\system32\DRIVERS\ABP480N5.SYS [23552 2001-08-17] (Microsoft Corporation)
S3 ac97intc; C:\Windows\System32\drivers\ac97intc.sys [96256 2001-08-17] (Intel Corporation)
R1 ANC; C:\Windows\System32\drivers\ANC.SYS [11520 2005-11-08] (IBM Corp.)
R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [121216 2006-07-14] (AuthenTec, Inc.)
R3 BCM43XX; C:\Windows\System32\DRIVERS\bcmwl5.sys [604928 2006-10-12] (Broadcom Corporation)
R3 BTKRNL; C:\Windows\System32\DRIVERS\btkrnl.sys [850474 2006-01-17] (Broadcom Corporation.)
R3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [65688 2006-01-17] (Broadcom Corporation.)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R2 EGATHDRV; C:\WINDOWS\SYSTEM32\EGATHDRV.SYS [5427 2011-06-19] (IBM Corporation)
S3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [36608 2010-06-14] ()
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49920 2007-03-08] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2007-03-08] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2007-03-08] (HP)
R3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [95616 2012-10-03] (Huawei Technologies Co., Ltd.)
R3 huawei_cdcecm; C:\Windows\System32\DRIVERS\ew_jucdcecm.sys [67584 2012-10-03] (Huawei Technologies Co., Ltd.)
R3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [27520 2012-10-03] (Huawei Technologies Co., Ltd.)
R3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [1166972 2006-03-23] (Intel Corporation)
R1 IBMTPCHK; C:\WINDOWS\system32\Drivers\IBMBLDID.sys [6016 2006-01-12] ()
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R2 pmem; C:\WINDOWS\System32\drivers\pmemnt.sys [7012 2011-06-19] (Microsoft Corporation)
R1 PMHler; C:\Windows\System32\drivers\PMHler.sys [10240 2006-05-24] (Lenovo )
R2 smi2; C:\Program Files\SMI2\smi2.sys [3968 2006-07-14] (IBM Corp.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [722416 2011-10-13] ()
R1 TPHKDRV; C:\Windows\System32\Drivers\TPHKDRV.sys [18101 2006-02-28] (Lenovo Group Limited)
R1 TSMAPIP; C:\Windows\System32\drivers\TSMAPIP.SYS [7168 2006-07-17] ()
S3 VX1000; C:\Windows\System32\DRIVERS\VX1000.sys [1966312 2007-04-10] (Microsoft Corporation)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [245376 2012-10-03] (Huawei Technologies Co., Ltd.)
S3 PCANDIS5; \??\C:\WINDOWS\system32\PCANDIS5.SYS [x]
S3 PcdrNdisuio; system32\DRIVERS\pcdrndisuio.sys [x]
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL; 
S3 ZDCndis5; \??\C:\WINDOWS\system32\ZDCndis5.SYS [x]
S3 ZDPSp50; System32\Drivers\ZDPSp50.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-11 21:32 - 2013-11-11 21:32 - 00000000 ____D C:\FRST
2013-11-11 16:19 - 2013-11-11 16:21 - 08844624 _____ (Mozilla) C:\Documents and Settings\Adam\Pulpit\Firefox Setup 3.5.17.exe
2013-11-11 14:24 - 2013-11-11 14:24 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox
2013-11-10 18:57 - 2013-11-10 18:57 - 00000822 _____ C:\Documents and Settings\Adam\Pulpit\µTorrent.lnk
2013-11-10 18:57 - 2013-11-10 18:57 - 00000822 _____ C:\Documents and Settings\Adam\Menu Start\µTorrent.lnk
2013-11-10 18:55 - 2013-11-10 18:56 - 01141328 _____ (BitTorrent Inc.) C:\Documents and Settings\Adam\Pulpit\utorrent.exe
2013-11-09 16:31 - 2013-11-11 16:22 - 00001712 _____ C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
2013-11-09 16:31 - 2013-11-09 16:31 - 00000818 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
2013-11-09 02:57 - 2013-11-09 02:57 - 00001615 _____ C:\WINDOWS\setupapi.log
2013-11-03 22:02 - 2013-11-03 22:02 - 00000000 ____D C:\Documents and Settings\Adam\Dane aplikacji\Google
2013-11-03 21:29 - 2013-11-03 21:29 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Google Earth
2013-11-03 21:25 - 2013-11-11 21:30 - 00001032 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-03 21:25 - 2013-11-11 21:30 - 00001028 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-02 02:40 - 2013-11-02 11:20 - 00000000 ____D C:\WINDOWS\SxsCaPendDel
2013-11-02 01:45 - 2013-11-02 01:45 - 00052062 _____ C:\Documents and Settings\Adam\Moje dokumenty\cc_20131102_014531.reg

==================== One Month Modified Files and Folders =======

2013-11-11 21:32 - 2013-11-11 21:32 - 00000000 ____D C:\FRST
2013-11-11 21:32 - 2011-06-23 19:22 - 00000000 ____D C:\Documents and Settings\Adam\Dane aplikacji\uTorrent
2013-11-11 21:32 - 2011-06-22 13:12 - 00000000 ____D C:\Documents and Settings\Adam\Moje dokumenty\Pobieranie
2013-11-11 21:30 - 2013-11-03 21:25 - 00001032 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-11 21:30 - 2013-11-03 21:25 - 00001028 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-11 20:50 - 2012-05-13 17:03 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-11-11 16:23 - 2012-12-07 16:53 - 00000000 ____D C:\Program Files\Mozilla Firefox 3.6 Beta 4
2013-11-11 16:22 - 2013-11-09 16:31 - 00001712 _____ C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
2013-11-11 16:21 - 2013-11-11 16:19 - 08844624 _____ (Mozilla) C:\Documents and Settings\Adam\Pulpit\Firefox Setup 3.5.17.exe
2013-11-11 16:21 - 2011-06-19 23:04 - 00000000 ____D C:\Documents and Settings\Adam\Pulpit
2013-11-11 14:54 - 2011-06-19 22:57 - 01243129 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-11 14:50 - 2011-08-18 23:45 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-11-11 14:50 - 2011-08-18 23:45 - 00000050 _____ C:\WINDOWS\wiaservc.log
2013-11-11 14:50 - 2011-06-19 22:57 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-11-11 14:48 - 2011-06-19 23:04 - 00000188 ___SH C:\Documents and Settings\Adam\ntuser.ini
2013-11-11 14:48 - 2011-06-19 22:57 - 00032318 _____ C:\WINDOWS\SchedLgU.Txt
2013-11-11 14:24 - 2013-11-11 14:24 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox
2013-11-11 14:24 - 2011-06-19 22:56 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start\Programy
2013-11-11 03:03 - 2013-09-28 21:27 - 00000262 _____ C:\WINDOWS\Tasks\EPUpdater.job
2013-11-10 18:57 - 2013-11-10 18:57 - 00000822 _____ C:\Documents and Settings\Adam\Pulpit\µTorrent.lnk
2013-11-10 18:57 - 2013-11-10 18:57 - 00000822 _____ C:\Documents and Settings\Adam\Menu Start\µTorrent.lnk
2013-11-10 18:57 - 2011-06-19 23:04 - 00000000 ___RD C:\Documents and Settings\Adam\Menu Start
2013-11-10 18:56 - 2013-11-10 18:55 - 01141328 _____ (BitTorrent Inc.) C:\Documents and Settings\Adam\Pulpit\utorrent.exe
2013-11-09 16:31 - 2013-11-09 16:31 - 00000818 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
2013-11-09 16:31 - 2012-12-07 15:55 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-09 16:31 - 2011-06-19 22:56 - 00000000 ____D C:\Documents and Settings\All Users\Pulpit
2013-11-09 02:57 - 2013-11-09 02:57 - 00001615 _____ C:\WINDOWS\setupapi.log
2013-11-09 02:26 - 2011-08-06 00:18 - 00000000 ____D C:\Documents and Settings\Adam\Dane aplikacji\Kamerzysta
2013-11-08 22:56 - 2011-06-19 22:57 - 00002278 _____ C:\WINDOWS\system32\wpa.dbl
2013-11-04 11:02 - 2011-07-02 16:49 - 00000000 ____D C:\Documents and Settings\Adam\Dane aplikacji\PriceGong
2013-11-03 22:02 - 2013-11-03 22:02 - 00000000 ____D C:\Documents and Settings\Adam\Dane aplikacji\Google
2013-11-03 22:02 - 2012-03-24 15:04 - 00000000 ____D C:\Documents and Settings\Adam\Ustawienia lokalne\Dane aplikacji\Google
2013-11-03 21:30 - 2011-06-19 23:04 - 00000000 ___HD C:\Documents and Settings\Adam\Ustawienia lokalne\Dane aplikacji
2013-11-03 21:29 - 2013-11-03 21:29 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Google Earth
2013-11-03 21:28 - 2012-03-24 15:04 - 00000000 ____D C:\Program Files\Google
2013-11-02 11:20 - 2013-11-02 02:40 - 00000000 ____D C:\WINDOWS\SxsCaPendDel
2013-11-02 11:20 - 2011-06-19 22:56 - 00000000 __RHD C:\Documents and Settings\All Users\Dane aplikacji
2013-11-02 02:40 - 2012-01-20 16:54 - 00000000 ____D C:\Documents and Settings\Adam\Dane aplikacji\Samsung
2013-11-02 01:47 - 2012-04-25 23:48 - 00000000 ___RD C:\Documents and Settings\Adam\Moje dokumenty\SYSTEM AORF c
2013-11-02 01:47 - 2011-06-22 22:24 - 00000000 ____D C:\Documents and Settings\Adam\Dane aplikacji\Media Player Classic
2013-11-02 01:46 - 2011-06-19 23:04 - 00000000 ___RD C:\Documents and Settings\Adam\Moje dokumenty
2013-11-02 01:45 - 2013-11-02 01:45 - 00052062 _____ C:\Documents and Settings\Adam\Moje dokumenty\cc_20131102_014531.reg
2013-11-02 01:44 - 2011-06-19 23:04 - 00000000 ____D C:\Documents and Settings\Adam
2013-11-02 01:39 - 2013-09-28 20:51 - 00000000 ____D C:\Program Files\Panda Security
2013-11-02 01:39 - 2011-08-06 00:18 - 00000000 ____D C:\Program Files\Common Files\Onet.pl
2013-11-02 01:36 - 2011-06-19 23:04 - 00000000 __RHD C:\Documents and Settings\Adam\Dane aplikacji
2013-11-02 01:36 - 2011-06-19 23:04 - 00000000 ___RD C:\Documents and Settings\Adam\Menu Start\Programy
2013-11-02 01:33 - 2011-06-24 17:19 - 00000000 ____D C:\Program Files\WinRAR

Some content of TEMP:
====================
C:\Documents and Settings\Adam\Ustawienia lokalne\Temp\aqbarqcr.exe
C:\Documents and Settings\Adam\Ustawienia lokalne\Temp\GdiPlus.dll
C:\Documents and Settings\Adam\Ustawienia lokalne\Temp\InstallerMessageBox.exe
C:\Documents and Settings\Adam\Ustawienia lokalne\Temp\NPSInstallerProxy.exe
C:\Documents and Settings\Adam\Ustawienia lokalne\Temp\NPSInstallerProxyMessageBoxHookDll.dll
C:\Documents and Settings\Adam\Ustawienia lokalne\Temp\uninst1.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2011-06-19 22:58] - [2008-04-14 18:21] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\Windows\System32\winlogon.exe
[2011-06-19 22:58] - [2008-04-14 18:21] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\Windows\System32\svchost.exe
[2011-06-19 22:58] - [2008-04-14 18:21] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\Windows\System32\services.exe
[2011-06-19 22:58] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f 

C:\Windows\System32\User32.dll
[2011-06-19 22:58] - [2008-04-14 18:20] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\Windows\System32\userinit.exe
[2011-06-19 22:58] - [2008-04-14 18:21] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\Windows\System32\Drivers\volsnap.sys
[2011-06-19 22:59] - [2008-04-14 17:01] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================