OTL logfile created on: 2011-03-03 15:51:40 - Run 4 OTL by OldTimer - Version 3.2.22.2 Folder = C:\Users\waldek\Desktop Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18999) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 44,00% Memory free 5,00 Gb Paging File | 4,00 Gb Available in Paging File | 71,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 152,55 Gb Total Space | 79,02 Gb Free Space | 51,80% Space Free | Partition Type: NTFS Drive D: | 29,19 Gb Total Space | 3,92 Gb Free Space | 13,44% Space Free | Partition Type: NTFS Drive E: | 101,59 Gb Total Space | 11,69 Gb Free Space | 11,50% Space Free | Partition Type: NTFS Computer Name: WALDEKB | User Name: waldek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-03-03 12:59:49 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Users\waldek\Desktop\OTL.exe PRC - [2011-03-01 17:47:43 | 000,943,472 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe PRC - [2010-10-07 09:04:26 | 012,661,344 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2010-01-29 22:20:26 | 000,112,208 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe PRC - [2010-01-27 12:30:16 | 001,312,848 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe PRC - [2009-04-11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2008-09-27 19:00:24 | 000,430,080 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\OneKey App\System Repair\UpdateMonitor.exe PRC - [2008-09-09 11:31:59 | 006,281,760 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe PRC - [2008-08-26 11:55:32 | 000,752,168 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe PRC - [2008-08-26 11:55:32 | 000,522,792 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe PRC - [2008-08-12 01:14:32 | 000,233,472 | ---- | M] (ATK0100) -- C:\Program Files\ATK Hotkey\HControl.exe PRC - [2008-07-03 10:29:48 | 000,098,304 | R--- | M] () -- C:\Program Files\ATK Hotkey\HControlUser.exe PRC - [2008-06-05 23:40:40 | 000,102,400 | R--- | M] () -- C:\Program Files\ATK Hotkey\LOSD.exe PRC - [2008-05-22 01:56:32 | 005,207,880 | ---- | M] (Lenovo(beijing) Limited) -- C:\Program Files\Lenovo\Energy Management\utility.exe PRC - [2008-05-22 01:52:34 | 008,824,648 | ---- | M] (Lenovo (Beijing) Limited) -- C:\Program Files\Lenovo\Energy Management\Energy Management.exe PRC - [2008-05-10 02:55:24 | 002,555,904 | R--- | M] () -- C:\Program Files\ATK Hotkey\ATKOSD.exe PRC - [2008-02-14 21:33:14 | 000,032,768 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe PRC - [2008-01-23 18:51:28 | 000,151,552 | R--- | M] () -- C:\Program Files\ATK Hotkey\WDC.exe PRC - [2008-01-21 03:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IgrsSvcs.exe PRC - [2008-01-21 03:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe PRC - [2008-01-21 03:23:24 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wmdSync.exe PRC - [2008-01-16 20:04:36 | 000,030,312 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe PRC - [2007-11-05 03:48:06 | 000,106,496 | R--- | M] () -- C:\Program Files\ATK Hotkey\MsgTranAgt.exe PRC - [2007-10-03 05:53:00 | 000,094,208 | R--- | M] () -- C:\Program Files\ATK Hotkey\AsLdrSrv.exe PRC - [2007-06-03 21:06:56 | 000,425,984 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\ReadyComm\ReadyComm.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-03-03 12:59:49 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Users\waldek\Desktop\OTL.exe MOD - [2010-08-31 16:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll MOD - [2008-11-11 20:00:02 | 000,011,016 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\kloehk.dll MOD - [2008-11-11 19:59:38 | 000,083,208 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\adialhk.dll MOD - [2008-08-26 11:54:44 | 000,208,896 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\BtMmHook.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-01-29 22:17:14 | 000,292,944 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ) SRV - [2009-09-23 16:37:30 | 000,051,168 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus(R) SRV - [2009-08-28 20:18:15 | 000,208,616 | ---- | M] (Kaspersky Lab) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe -- (AVP) SRV - [2009-06-02 10:10:08 | 000,637,952 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2008-09-27 19:00:24 | 000,430,080 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\OneKey App\System Repair\UpdateMonitor.exe -- (System_Repair_UpdateMonitor) SRV - [2008-08-26 11:55:32 | 000,522,792 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\Lenovo\Bluetooth Software\bin\btwdins.exe -- (btwdins) SRV - [2008-02-14 21:33:14 | 000,032,768 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe -- (IGRS) SRV - [2008-01-21 03:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\IgrsSvcs.exe -- (ReadyComm.DirectRouter) SRV - [2008-01-21 03:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IgrsSvcs.exe -- (PS_MDP) SRV - [2008-01-21 03:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\IgrsSvcs.exe -- (IncSvc) SRV - [2008-01-21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2008-01-21 03:23:24 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm) SRV - [2008-01-21 03:23:24 | 000,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr) SRV - [2008-01-16 20:04:36 | 000,030,312 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe -- (BcmSqlStartupSvc) SRV - [2007-10-03 05:53:00 | 000,094,208 | R--- | M] () [Auto | Running] -- C:\Program Files\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService) SRV - [2007-02-05 09:11:18 | 000,075,320 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe -- (SSScsiSV) SRV - [2007-02-05 09:11:16 | 000,112,184 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe -- (SonicStage Back-End Service) SRV - [2006-12-14 01:21:20 | 000,045,056 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV) SRV - [2006-12-14 01:02:08 | 000,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV) SRV - [2006-12-14 00:46:16 | 000,057,344 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-01-09 18:20:58 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-11-10 12:55:08 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt) DRV - [2009-11-10 12:54:52 | 000,035,984 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt) DRV - [2009-08-28 20:18:15 | 000,239,120 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\System32\drivers\klif.sys -- (KLIF) DRV - [2009-08-28 20:18:15 | 000,033,808 | ---- | M] (Kaspersky Lab) [File_System | Boot | Running] -- C:\Windows\system32\drivers\klbg.sys -- (klbg) DRV - [2009-06-27 23:53:51 | 000,049,472 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\funfrm.sys -- (funfrm) DRV - [2009-05-19 05:43:08 | 000,021,520 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AcpiVpc.sys -- (ACPIVPC) DRV - [2009-04-11 05:42:52 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (winusb) DRV - [2009-01-15 18:32:59 | 007,699,392 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm) DRV - [2008-09-05 18:50:19 | 000,045,600 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA) DRV - [2008-08-29 02:39:08 | 000,048,192 | ---- | M] (Lenovo) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\tvtumon.sys -- (tvtumon) DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-07-24 11:03:56 | 000,101,760 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard) DRV - [2008-07-21 17:34:36 | 000,121,872 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\Windows\System32\drivers\kl1.sys -- (kl1) DRV - [2008-07-09 17:28:26 | 000,020,496 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\Windows\System32\drivers\klim6.sys -- (KLIM6) DRV - [2008-06-24 23:55:12 | 000,047,104 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk) DRV - [2008-06-13 20:23:12 | 000,008,832 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WDMirror.sys -- (wdmirror) DRV - [2008-06-13 20:22:02 | 000,008,832 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\Wdkbdmou.sys -- (Wdkbdmou) DRV - [2008-06-11 11:23:11 | 001,097,856 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial) DRV - [2008-05-23 01:08:28 | 001,747,200 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC) DRV - [2008-04-27 23:29:25 | 003,658,752 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Sterownik karty Intel(R) DRV - [2008-03-13 18:02:46 | 000,026,640 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klfltdev.sys -- (KLFLTDEV) DRV - [2008-01-24 18:08:34 | 000,010,880 | ---- | M] (ITE Tech. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ITEhidCIR.sys -- (vhidmini) DRV - [2008-01-10 18:59:08 | 000,081,192 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSVD.sys -- (WSVD) DRV - [2007-11-06 18:06:59 | 000,180,272 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20071204.002\IDSvix86.sys -- (IDSvix86) DRV - [2007-07-30 19:54:02 | 000,038,400 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp) DRV - [2007-07-30 18:42:58 | 000,043,008 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk) DRV - [2007-05-24 00:33:58 | 000,128,104 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\WimFltr.sys -- (WimFltr) DRV - [2007-05-02 11:11:18 | 000,109,704 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_mdm.sys -- (ss_mdm) DRV - [2007-05-02 11:11:18 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_mdfl.sys -- (ss_mdfl) DRV - [2007-05-02 11:11:16 | 000,083,592 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bus.sys -- (ss_bus) SAMSUNG Mobile USB Device 1.0 driver (WDM) DRV - [2007-04-24 11:33:46 | 000,100,488 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s125mgmt.sys -- (s125mgmt) Sony Ericsson Device 125 USB WMC Device Management Drivers (WDM) DRV - [2007-04-24 11:33:46 | 000,098,696 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s125obex.sys -- (s125obex) DRV - [2007-04-24 11:33:44 | 000,108,680 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s125mdm.sys -- (s125mdm) DRV - [2007-04-24 11:33:42 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s125mdfl.sys -- (s125mdfl) DRV - [2007-04-24 11:33:34 | 000,083,336 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s125bus.sys -- (s125bus) Sony Ericsson Device 125 driver (WDM) DRV - [2007-03-07 15:58:30 | 010,260,864 | ---- | M] (Sonix Co. Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\snp325.sys -- (SNP325) USB PC Camera (SNPSTD325) DRV - [2007-02-07 15:50:32 | 000,118,552 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\adiusbaw.sys -- (adiusbaw) DRV - [2007-02-07 15:50:14 | 000,056,088 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\adildr.sys -- (ELOADER) General Purpose USB Driver (adildr.sys) DRV - [2006-12-14 08:11:57 | 000,007,680 | ---- | M] (ATK0100) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATKACPI.sys -- (MTsensor) DRV - [2006-07-24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\drivers\StarOpen.sys -- (StarOpen) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.lenovo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/ [binary data] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.live.com/ IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-4059672598-1273753046-91282655-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.com.pl/0SEPLPL/SAOS01?FORM=TOOLBR IE - HKU\S-1-5-21-4059672598-1273753046-91282655-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKU\S-1-5-21-4059672598-1273753046-91282655-1004\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-4059672598-1273753046-91282655-1004\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - Reg Error: Key error. File not found IE - HKU\S-1-5-21-4059672598-1273753046-91282655-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-4059672598-1273753046-91282655-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=;ftp=;https=; [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.selectedEngine: "" FF - prefs.js..browser.search.useDBForOrder: "" FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1 FF - prefs.js..extensions.enabledItems: 6 FF - prefs.js..extensions.enabledItems: 2 FF - prefs.js..extensions.enabledItems: 48 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: support@free-hideip.com:1.0 FF - prefs.js..network.proxy.backup.ftp: "127.0.0.1" FF - prefs.js..network.proxy.backup.ftp_port: 9666 FF - prefs.js..network.proxy.backup.gopher: "127.0.0.1" FF - prefs.js..network.proxy.backup.gopher_port: 9666 FF - prefs.js..network.proxy.backup.socks: "127.0.0.1" FF - prefs.js..network.proxy.backup.socks_port: 9666 FF - prefs.js..network.proxy.backup.ssl: "127.0.0.1" FF - prefs.js..network.proxy.backup.ssl_port: 9666 FF - prefs.js..network.proxy.ftp: "127.0.0.1" FF - prefs.js..network.proxy.ftp_port: 9666 FF - prefs.js..network.proxy.gopher: "127.0.0.1" FF - prefs.js..network.proxy.gopher_port: 9666 FF - prefs.js..network.proxy.http: "127.0.0.1" FF - prefs.js..network.proxy.http_port: 9666 FF - prefs.js..network.proxy.share_proxy_settings: true FF - prefs.js..network.proxy.socks: "127.0.0.1" FF - prefs.js..network.proxy.socks_port: 9666 FF - prefs.js..network.proxy.ssl: "127.0.0.1" FF - prefs.js..network.proxy.ssl_port: 9666 FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-12-28 21:50:39 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-12-28 21:50:39 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\THBExt [2009-12-19 10:24:44 | 000,000,000 | ---D | M] [2009-08-30 21:23:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\waldek\AppData\Roaming\mozilla\Extensions [2011-03-03 15:50:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\waldek\AppData\Roaming\mozilla\Firefox\Profiles\v3wjuq4b.default\extensions [2010-05-10 17:50:43 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\waldek\AppData\Roaming\mozilla\Firefox\Profiles\v3wjuq4b.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2009-11-07 09:15:04 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Users\waldek\AppData\Roaming\mozilla\Firefox\Profiles\v3wjuq4b.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7} [2010-11-11 10:12:28 | 000,000,000 | ---D | M] (Free Hide IP) -- C:\Users\waldek\AppData\Roaming\mozilla\Firefox\Profiles\v3wjuq4b.default\extensions\support@free-hideip.com [2011-03-02 19:40:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010-07-26 08:22:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-08-25 23:04:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-07-17 04:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-11-09 19:34:10 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-11-09 19:34:10 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-11-09 19:34:11 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-11-09 19:34:11 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-11-09 19:34:11 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-11-09 19:34:11 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2006-09-18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll (Kaspersky Lab) O3 - HKU\S-1-5-21-4059672598-1273753046-91282655-1004\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O3 - HKU\S-1-5-21-4059672598-1273753046-91282655-1004\..\Toolbar\WebBrowser: (no name) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - No CLSID value found. O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe (Kaspersky Lab) O4 - HKLM..\Run: [Energy Management] C:\Program Files\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited) O4 - HKLM..\Run: [EnergyUtility] C:\Program Files\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited) O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.) O4 - HKLM..\Run: [HControlUser] C:\Program Files\ATK Hotkey\HcontrolUser.exe () O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-21-4059672598-1273753046-91282655-1004..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKU\S-1-5-21-4059672598-1273753046-91282655-1004..\Run: [ReadyComm] C:\Program Files\Lenovo\ReadyComm\ReadyComm.exe (Lenovo Group Limited) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O7 - HKU\S-1-5-21-4059672598-1273753046-91282655-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data] O8 - Extra context menu item: Dodaj do listy blokowanych banerów - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm () O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm () O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm () O9 - Extra Button: Statystyki ochrony WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll (Kaspersky Lab) O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm () O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Java Plug-in 1.4.0_03) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.204.159.1 194.204.152.34 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\mzvkbd3.dll (Kaspersky Lab) O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\adialhk.dll (Kaspersky Lab) O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\kloehk.dll (Kaspersky Lab) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\klogon: DllName - C:\Windows\system32\klogon.dll - C:\Windows\System32\klogon.dll (Kaspersky Lab) O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img36.jpg O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img36.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006-09-18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [2011-01-16 17:21:37 | 000,123,140 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ] O32 - AutoRun File - [2010-07-24 18:47:23 | 000,000,000 | ---D | M] - E:\automapa 605 -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-03-03 15:47:36 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2011-03-03 15:36:26 | 000,000,000 | ---D | C] -- C:\_OTL [2011-03-03 12:59:49 | 000,581,120 | ---- | C] (OldTimer Tools) -- C:\Users\waldek\Desktop\OTL.exe [2011-03-03 06:42:26 | 000,000,000 | ---D | C] -- C:\Users\waldek\DoctorWeb [2011-03-02 21:37:13 | 000,000,000 | ---D | C] -- C:\Users\waldek\AppData\Roaming\Malwarebytes [2011-03-02 21:37:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2011-03-02 21:37:04 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2011-03-02 21:37:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2011-03-02 21:36:59 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2011-03-02 21:36:59 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2011-03-02 21:35:59 | 007,734,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\waldek\Desktop\mbam-setup-1.50.1.1100(dobreprogramy.pl).exe [2011-03-01 20:31:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack [2011-03-01 20:30:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Codec [2011-03-01 20:30:54 | 000,999,424 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divxdec.ax [2011-03-01 20:30:54 | 000,696,320 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx.dll [2011-03-01 20:30:54 | 000,532,480 | ---- | C] (DivX Inc.) -- C:\Windows\System32\DivXsm.exe [2011-03-01 20:30:54 | 000,271,872 | ---- | C] (CoreCodec) -- C:\Windows\System32\coreavcdecoder.ax [2011-03-01 20:30:54 | 000,090,112 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll [2011-03-01 20:30:54 | 000,000,000 | ---D | C] -- C:\Program Files\Codec [2011-03-01 20:25:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack [2011-03-01 20:25:03 | 001,294,336 | ---- | C] (HMS http://hp.vector.co.jp/authors/VA012897/) -- C:\Windows\System32\vorbis.acm [2011-03-01 20:25:03 | 000,287,744 | ---- | C] (Kristal StudioDFileDescription) -- C:\Windows\System32\divxa32.acm [2011-03-01 20:25:02 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\Windows\System32\lameACM.acm [2011-03-01 20:25:02 | 000,413,760 | ---- | C] (Hacked with Joy !) -- C:\Windows\System32\DivXc32f.dll [2011-03-01 20:25:02 | 000,413,760 | ---- | C] (Hacked with Joy !) -- C:\Windows\System32\DivXc32.dll [2011-03-01 20:25:02 | 000,237,568 | ---- | C] (www.helixcommunity.org) -- C:\Windows\System32\yv12vfw.dll [2011-03-01 20:25:02 | 000,232,448 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\mp3fhg.acm [2011-03-01 20:11:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter [2011-02-27 15:39:12 | 000,000,000 | ---D | C] -- C:\Users\waldek\AppData\Roaming\DivX [2011-02-26 14:37:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Theorica Divx ;-) Codecs [2011-02-20 16:42:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2011-02-13 12:51:01 | 000,000,000 | ---D | C] -- C:\Users\waldek\Desktop\Zanim Odejdą Wody [2011-02-11 18:40:02 | 000,000,000 | ---D | C] -- C:\Users\waldek\Documents\Vuze Downloads [2011-02-11 17:41:44 | 000,000,000 | ---D | C] -- C:\Users\waldek\Documents\Bluetooth Exchange Folder [2011-02-08 18:13:58 | 020,443,224 | ---- | C] (Pantone & X-Rite ) -- C:\Users\waldek\Desktop\hueypro1241.exe [2011-02-06 10:19:17 | 000,000,000 | ---D | C] -- C:\Users\waldek\AppData\Local\OpenCandy [2011-02-06 10:19:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SIW [2011-02-06 10:19:11 | 000,000,000 | ---D | C] -- C:\Program Files\SIW [2011-02-06 10:19:11 | 000,000,000 | ---D | C] -- C:\Users\waldek\AppData\Roaming\OpenCandy [2011-02-06 10:18:21 | 002,868,838 | ---- | C] (Topala Software Solutions ) -- C:\Users\waldek\Desktop\siw-setup.exe [2011-02-01 19:18:31 | 000,000,000 | ---D | C] -- C:\Users\waldek\Documents\My Art [2009-09-29 22:06:56 | 000,147,456 | ---- | C] ( ) -- C:\Windows\System32\rsnp325.dll [2009-09-29 22:06:56 | 000,061,440 | ---- | C] ( ) -- C:\Windows\System32\vsnp325.dll [2009-09-29 22:06:56 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\csnp325.dll [2009-06-27 23:06:41 | 000,229,376 | ---- | C] ( ) -- C:\Windows\System32\rsnp2uvc.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-03-03 15:44:16 | 000,002,432 | ---- | M] () -- C:\Users\waldek\AppData\Local\TempCS3444.html [2011-03-03 15:44:16 | 000,002,089 | ---- | M] () -- C:\Users\waldek\AppData\Local\Temprm3444.html [2011-03-03 15:44:14 | 000,002,432 | ---- | M] () -- C:\Users\waldek\AppData\Local\TempiA3444.html [2011-03-03 15:44:14 | 000,002,089 | ---- | M] () -- C:\Users\waldek\AppData\Local\TempaN3444.html [2011-03-03 15:41:46 | 000,312,086 | ---- | M] () -- C:\ProgramData\nvModes.001 [2011-03-03 15:41:22 | 000,312,086 | ---- | M] () -- C:\ProgramData\nvModes.dat [2011-03-03 15:41:05 | 000,000,066 | -HS- | M] () -- C:\_PartitionInfo [2011-03-03 15:41:02 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl [2011-03-03 15:40:52 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2011-03-03 15:40:52 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2011-03-03 15:40:40 | 000,067,584 | ---- | M] () -- C:\Windows\bootstat.dat [2011-03-03 15:40:37 | 2649,624,576 | -HS- | M] () -- C:\hiberfil.sys [2011-03-03 15:39:38 | 008,390,176 | -HS- | M] () -- C:\Windows\System32\drivers\fidbox.dat [2011-03-03 15:39:38 | 001,466,400 | -HS- | M] () -- C:\Windows\System32\drivers\fidbox2.dat [2011-03-03 15:39:38 | 000,077,108 | -HS- | M] () -- C:\Windows\System32\drivers\fidbox.idx [2011-03-03 15:39:38 | 000,010,284 | -HS- | M] () -- C:\Windows\System32\drivers\fidbox2.idx [2011-03-03 15:39:17 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat [2011-03-03 12:59:49 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Users\waldek\Desktop\OTL.exe [2011-03-03 12:05:53 | 000,722,196 | ---- | M] () -- C:\Windows\System32\perfh015.dat [2011-03-03 12:05:53 | 000,645,608 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011-03-03 12:05:53 | 000,149,294 | ---- | M] () -- C:\Windows\System32\perfc015.dat [2011-03-03 12:05:53 | 000,122,436 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011-03-03 06:37:06 | 057,836,000 | ---- | M] () -- C:\Users\waldek\Desktop\launch.exe [2011-03-02 21:37:05 | 000,000,906 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2011-03-02 21:36:22 | 007,734,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\waldek\Desktop\mbam-setup-1.50.1.1100(dobreprogramy.pl).exe [2011-03-02 21:11:00 | 000,397,256 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2011-03-02 20:04:10 | 000,179,712 | ---- | M] () -- C:\Users\waldek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-02-28 09:00:00 | 000,000,038 | ---- | M] () -- C:\Windows\avisplitter.ini [2011-02-22 20:56:50 | 000,034,108 | ---- | M] () -- C:\Users\waldek\Documents\Zeznanie_podatkowe_2011-02-22 20-56-40.dpit [2011-02-22 20:56:50 | 000,000,084 | ---- | M] () -- C:\Users\waldek\Documents\Zeznanie_podatkowe_2011-02-22 20-56-40.dpite [2011-02-22 20:48:16 | 000,001,018 | ---- | M] () -- C:\Users\waldek\Desktop\PIT 2010 z Gazetą Wyborczą.lnk [2011-02-19 09:33:43 | 000,062,564 | ---- | M] () -- C:\Users\waldek\Desktop\UPL-1(2).pdf [2011-02-19 09:11:11 | 000,000,915 | ---- | M] () -- C:\Users\waldek\Desktop\Cyberlink Power2Go.lnk [2011-02-12 16:59:36 | 000,527,115 | ---- | M] () -- C:\Users\waldek\Documents\Zdjęcie0199.jpg [2011-02-12 16:58:57 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Zdjęcie0199.jpg [2011-02-08 18:15:24 | 020,443,224 | ---- | M] (Pantone & X-Rite ) -- C:\Users\waldek\Desktop\hueypro1241.exe [2011-02-06 10:19:12 | 000,000,732 | ---- | M] () -- C:\Users\waldek\Desktop\SIW.lnk [2011-02-06 10:18:36 | 002,868,838 | ---- | M] (Topala Software Solutions ) -- C:\Users\waldek\Desktop\siw-setup.exe [2011-02-05 18:51:18 | 383,302,715 | ---- | M] () -- C:\Windows\MEMORY.DMP [2011-02-05 14:25:40 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Zdjęcie0196.jpg [2011-02-05 14:25:36 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Zdjęcie0197.jpg [2011-02-05 14:25:25 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Zdjęcie0195.jpg [2011-02-05 14:25:18 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Zdjęcie0194.jpg [2011-02-05 14:24:53 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Zdjęcie0193.jpg [2011-02-02 17:37:08 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Zdjęcie0192.jpg [2011-02-02 17:36:45 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Zdjęcie0191.jpg [2011-02-01 19:26:53 | 000,000,000 | ---- | M] () -- C:\ProgramData\LauncherAccess.dt [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-03-03 15:44:16 | 000,002,432 | ---- | C] () -- C:\Users\waldek\AppData\Local\TempCS3444.html [2011-03-03 15:44:16 | 000,002,089 | ---- | C] () -- C:\Users\waldek\AppData\Local\Temprm3444.html [2011-03-03 15:44:14 | 000,002,432 | ---- | C] () -- C:\Users\waldek\AppData\Local\TempiA3444.html [2011-03-03 15:44:14 | 000,002,089 | ---- | C] () -- C:\Users\waldek\AppData\Local\TempaN3444.html [2011-03-03 06:33:09 | 057,836,000 | ---- | C] () -- C:\Users\waldek\Desktop\launch.exe [2011-03-02 21:37:05 | 000,000,906 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2011-03-01 20:30:55 | 000,797,184 | ---- | C] () -- C:\Windows\System32\ac3filter.ax [2011-03-01 20:30:55 | 000,497,664 | ---- | C] () -- C:\Windows\System32\ac3filter.acm [2011-03-01 20:30:55 | 000,319,488 | ---- | C] () -- C:\Windows\System32\coreaac.ax [2011-03-01 20:30:54 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll [2011-03-01 20:30:54 | 000,150,528 | ---- | C] () -- C:\Windows\System32\xvid.ax [2011-03-01 20:30:54 | 000,004,816 | ---- | C] () -- C:\Windows\System32\divxsm.tlb [2011-03-01 20:25:03 | 000,000,414 | ---- | C] () -- C:\Windows\System32\lame_acm.xml [2011-03-01 20:25:03 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini [2011-03-01 20:25:02 | 000,887,296 | ---- | C] () -- C:\Windows\System32\xvidcore.dll [2011-03-01 20:25:02 | 000,198,144 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll [2011-02-22 20:56:50 | 000,034,108 | ---- | C] () -- C:\Users\waldek\Documents\Zeznanie_podatkowe_2011-02-22 20-56-40.dpit [2011-02-22 20:56:50 | 000,000,084 | ---- | C] () -- C:\Users\waldek\Documents\Zeznanie_podatkowe_2011-02-22 20-56-40.dpite [2011-02-19 09:33:43 | 000,062,564 | ---- | C] () -- C:\Users\waldek\Desktop\UPL-1(2).pdf [2011-02-12 16:59:15 | 000,527,115 | ---- | C] () -- C:\Users\waldek\Documents\Zdjęcie0199.jpg [2011-02-12 16:58:57 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Zdjęcie0199.jpg [2011-02-06 10:19:12 | 000,000,732 | ---- | C] () -- C:\Users\waldek\Desktop\SIW.lnk [2011-02-05 14:25:40 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Zdjęcie0196.jpg [2011-02-05 14:25:36 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Zdjęcie0197.jpg [2011-02-05 14:25:25 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Zdjęcie0195.jpg [2011-02-05 14:25:18 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Zdjęcie0194.jpg [2011-02-05 14:24:53 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Zdjęcie0193.jpg [2011-02-02 17:37:08 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Zdjęcie0192.jpg [2011-02-02 17:36:45 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Zdjęcie0191.jpg [2011-01-27 21:58:50 | 000,000,000 | ---- | C] () -- C:\ProgramData\LauncherAccess.dt [2011-01-27 21:49:51 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys [2010-07-28 16:51:01 | 000,000,168 | ---- | C] () -- C:\Windows\adidsl.ini [2010-07-28 16:51:01 | 000,000,021 | ---- | C] () -- C:\Windows\Fast800.ini [2010-07-28 16:45:26 | 000,253,008 | ---- | C] () -- C:\Windows\adirasx64.exe [2010-07-28 16:45:26 | 000,194,128 | ---- | C] () -- C:\Windows\adiras.exe [2010-07-28 16:45:24 | 000,127,456 | ---- | C] () -- C:\Windows\System32\IPDETECT.EXE [2010-07-28 16:45:22 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P2.BIN [2010-07-28 16:45:22 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I2.BIN [2010-07-28 16:45:21 | 000,024,576 | ---- | C] () -- C:\Windows\enddisk32.exe [2010-07-28 16:45:20 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P1.BIN [2010-07-28 16:45:20 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P0.BIN [2010-07-28 16:45:20 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I1.BIN [2010-07-28 16:45:20 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I0.BIN [2010-07-28 16:45:20 | 000,046,892 | ---- | C] () -- C:\Windows\System32\ADADIX16.DLL [2010-07-28 16:45:19 | 000,152,308 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I2.BIN [2010-07-28 16:45:19 | 000,152,306 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I1.BIN [2010-07-28 16:45:19 | 000,152,306 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I0.BIN [2010-07-28 16:45:19 | 000,152,146 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P2.BIN [2010-07-28 16:45:19 | 000,152,145 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P1.BIN [2010-07-28 16:45:19 | 000,152,145 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P0.BIN [2010-07-28 16:45:19 | 000,152,036 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D2.BIN [2010-07-28 16:45:19 | 000,152,034 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D0.BIN [2010-07-28 16:45:18 | 000,152,034 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D1.BIN [2010-07-28 16:45:18 | 000,022,395 | ---- | C] () -- C:\Windows\System32\drivers\fpga.bin [2010-06-27 13:39:56 | 000,000,680 | ---- | C] () -- C:\Users\waldek\AppData\Local\d3d9caps.dat [2010-05-25 06:00:48 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll [2010-04-10 22:02:03 | 000,128,780 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat [2010-03-29 00:05:51 | 000,185,856 | ---- | C] () -- C:\Windows\System32\Bmp2Jpeg.dll [2010-03-21 10:18:58 | 000,000,530 | ---- | C] () -- C:\Windows\eReg.dat [2010-03-09 21:23:14 | 000,001,461 | ---- | C] () -- C:\Windows\brydz3.ini [2010-02-21 22:23:49 | 000,064,000 | ---- | C] () -- C:\Windows\System32\esfw41.bin [2010-01-15 18:57:59 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2010-01-15 18:57:58 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2009-10-19 18:21:41 | 000,000,990 | ---- | C] () -- C:\Windows\adiras.ini [2009-10-19 18:21:38 | 000,126,976 | ---- | C] () -- C:\Windows\System32\coclassfast.dll [2009-10-19 18:21:36 | 000,143,360 | ---- | C] () -- C:\Windows\autoclk.exe [2009-10-19 18:20:45 | 000,000,021 | ---- | C] () -- C:\Windows\kit.ini [2009-10-04 22:20:23 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat [2009-10-02 18:28:04 | 000,258,048 | ---- | C] () -- C:\Windows\System32\libFLAC.dll [2009-10-02 18:21:21 | 000,079,360 | ---- | C] () -- C:\Windows\System32\mkzlib.dll [2009-10-02 18:21:12 | 000,023,552 | ---- | C] () -- C:\Windows\System32\mkunicode.dll [2009-09-29 22:06:59 | 000,020,480 | ---- | C] () -- C:\Windows\FixCamera.exe [2009-09-29 22:06:58 | 000,827,392 | ---- | C] () -- C:\Windows\vsnp325.exe [2009-09-29 22:06:58 | 000,270,336 | ---- | C] () -- C:\Windows\tsnp325.exe [2009-09-29 22:06:58 | 000,015,498 | ---- | C] () -- C:\Windows\snp325.ini [2009-09-01 09:51:08 | 000,532,480 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Sony.dll [2009-08-29 20:57:51 | 000,001,783 | ---- | C] () -- C:\Windows\nsreg.dat [2009-08-29 20:57:32 | 000,041,068 | ---- | C] () -- C:\Windows\System32\ActPanel.dll [2009-08-29 15:28:01 | 000,179,712 | ---- | C] () -- C:\Users\waldek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-08-28 19:24:51 | 000,114,243 | ---- | C] () -- C:\Windows\System32\drivers\klin.dat [2009-08-28 19:24:47 | 000,097,859 | ---- | C] () -- C:\Windows\System32\drivers\klick.dat [2009-08-28 19:23:55 | 008,390,176 | -HS- | C] () -- C:\Windows\System32\drivers\fidbox.dat [2009-08-28 19:23:55 | 001,466,400 | -HS- | C] () -- C:\Windows\System32\drivers\fidbox2.dat [2009-08-28 16:44:35 | 000,312,086 | ---- | C] () -- C:\ProgramData\nvModes.001 [2009-08-28 16:44:02 | 000,312,086 | ---- | C] () -- C:\ProgramData\nvModes.dat [2009-06-28 00:13:04 | 009,338,880 | ---- | C] () -- C:\Windows\System32\Facev.dll [2009-06-28 00:13:04 | 000,208,896 | ---- | C] () -- C:\Windows\System32\image.dll [2009-06-28 00:13:02 | 000,655,360 | ---- | C] () -- C:\Windows\System32\EncIcons.dll [2009-06-28 00:13:02 | 000,507,904 | ---- | C] () -- C:\Windows\System32\SimpleExt.dll [2009-06-28 00:13:02 | 000,241,752 | ---- | C] () -- C:\Windows\System32\IcnOvrly.dll [2009-06-28 00:13:02 | 000,053,248 | ---- | C] () -- C:\Windows\System32\FunFrm.dll [2009-06-28 00:13:01 | 000,221,184 | ---- | C] () -- C:\Windows\System32\SetDev.dll [2009-06-28 00:13:01 | 000,126,976 | ---- | C] () -- C:\Windows\System32\VideoOp.dll [2009-06-28 00:13:00 | 009,502,720 | ---- | C] () -- C:\Windows\System32\FaceVerify.dll [2009-06-28 00:13:00 | 001,564,672 | ---- | C] () -- C:\Windows\System32\MainOp.dll [2009-06-28 00:13:00 | 001,163,264 | ---- | C] () -- C:\Windows\System32\PicNotify.dll [2009-06-28 00:13:00 | 000,094,208 | ---- | C] () -- C:\Windows\System32\Momo.dll [2009-06-28 00:13:00 | 000,049,152 | ---- | C] () -- C:\Windows\System32\DevFilt.dll [2009-06-28 00:12:59 | 001,974,272 | ---- | C] () -- C:\Windows\System32\Imagereog.dll [2009-06-28 00:12:59 | 000,442,368 | ---- | C] () -- C:\Windows\System32\Apblend.dll [2009-06-27 23:53:54 | 000,057,344 | ---- | C] () -- C:\Windows\AsfHelper.dll [2009-06-27 23:53:54 | 000,049,472 | ---- | C] () -- C:\Windows\System32\drivers\funfrm.sys [2009-06-27 23:53:49 | 000,241,664 | ---- | C] () -- C:\Windows\System32\3DImageRenderer.dll [2009-06-27 23:06:41 | 001,747,200 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys [2009-06-27 23:06:41 | 000,028,160 | ---- | C] () -- C:\Windows\System32\drivers\sncduvc.sys [2009-06-27 22:43:04 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat [2009-06-27 22:09:02 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin [2009-06-27 21:48:23 | 000,722,196 | ---- | C] () -- C:\Windows\System32\perfh015.dat [2009-06-27 21:48:23 | 000,332,832 | ---- | C] () -- C:\Windows\System32\perfi015.dat [2009-06-27 21:48:23 | 000,149,294 | ---- | C] () -- C:\Windows\System32\perfc015.dat [2009-06-27 21:48:23 | 000,037,468 | ---- | C] () -- C:\Windows\System32\perfd015.dat [2009-03-03 10:05:19 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [2008-11-11 19:58:54 | 000,025,601 | ---- | C] () -- C:\Windows\System32\drivers\klopp.dat [2008-08-26 11:54:12 | 000,057,344 | ---- | C] () -- C:\Windows\System32\BtwNamespaceExt2.dll [2008-06-13 20:22:02 | 000,008,832 | ---- | C] () -- C:\Windows\System32\drivers\Wdkbdmou.sys [2007-04-16 02:24:16 | 000,023,752 | ---- | C] () -- C:\Windows\System32\providers.bin [2006-11-02 13:57:28 | 000,067,584 | ---- | C] () -- C:\Windows\bootstat.dat [2006-11-02 13:47:37 | 000,397,256 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2006-11-02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006-11-02 11:33:01 | 000,645,608 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2006-11-02 11:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2006-11-02 11:33:01 | 000,122,436 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2006-11-02 11:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2006-11-02 11:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2006-11-02 09:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2006-11-02 09:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2006-11-02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006-11-02 08:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2005-01-17 16:27:10 | 000,037,376 | ---- | C] () -- C:\Windows\System32\MobOlExt.dll [2001-11-14 12:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll [color=#E56717]========== LOP Check ==========[/color] [2010-01-27 22:39:32 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\AnvSoft [2011-02-26 14:41:18 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\Azureus [2011-01-10 21:17:34 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\BearShare [2011-03-01 20:05:23 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\BESTplayer [2010-01-09 19:28:13 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\DAEMON Tools Lite [2010-10-25 18:18:31 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\EPSON [2010-11-11 10:12:03 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\FreeHideIP [2010-04-23 20:24:23 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\Gadu-Gadu 10 [2010-11-11 10:04:41 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\Hide IP NG [2010-05-28 18:53:13 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\ipla [2009-09-07 15:27:09 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\iPlus [2010-03-18 17:36:38 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\Leadertech [2009-08-28 13:57:58 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\Lenovo [2010-12-03 22:25:07 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\MOBILedit [2009-10-25 20:02:22 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\Nokia [2009-12-26 12:32:06 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\Nowe Gadu-Gadu [2010-08-12 18:14:54 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\ooVoo Details [2011-02-06 10:19:11 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\OpenCandy [2009-08-30 09:40:38 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\OpenFM [2009-08-28 18:27:41 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\Opera [2009-10-25 20:02:30 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\PC Suite [2010-09-19 13:29:00 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\PhotoScape [2011-01-11 19:03:16 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\PITy2010 [2011-01-29 08:16:40 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\Samsung [2010-04-05 09:32:34 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\Software Informer [2009-12-04 18:56:48 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\TeamViewer [2010-11-29 20:12:40 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\Teleca [2010-11-14 12:05:11 | 000,000,000 | ---D | M] -- C:\Users\waldek\AppData\Roaming\uTorrent [2011-03-03 15:39:19 | 000,032,578 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2011-01-22 10:26:59 | 000,000,464 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{1E0D2303-F188-4485-8392-3CFC71D35707}.job [color=#E56717]========== Purity Check ==========[/color] < End of report >