OTL logfile created on: 2012-09-14 17:59:19 - Run 1
OTL by OldTimer - Version 3.2.61.3     Folder = C:\Documents and Settings\Administrator\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,25 Gb Total Physical Memory | 2,76 Gb Available Physical Memory | 84,84% Memory free
5,09 Gb Paging File | 4,81 Gb Available in Paging File | 94,52% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 98,50 Gb Total Space | 66,21 Gb Free Space | 67,22% Space Free | Partition Type: NTFS
Drive D: | 51,76 Gb Total Space | 18,47 Gb Free Space | 35,69% Space Free | Partition Type: NTFS
Drive H: | 540,69 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive J: | 293,94 Gb Total Space | 136,75 Gb Free Space | 46,52% Space Free | Partition Type: NTFS
Drive K: | 487,30 Gb Total Space | 231,12 Gb Free Space | 47,43% Space Free | Partition Type: NTFS
 
Computer Name: S-97CCE750FCB24 | User Name: Administrator | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-09-11 23:33:34 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Pulpit\OTL.exe
PRC - [2012-09-08 18:59:56 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012-08-23 10:17:28 | 000,070,352 | ---- | M] (Comodo Security Solutions Inc.) -- C:\Program Files\Common Files\Comodo\launcher_service.exe
PRC - [2012-01-27 09:47:20 | 000,828,944 | ---- | M] (GlavSoft LLC.) -- C:\Program Files\Common Files\Comodo\tvnserver.exe
PRC - [2009-03-10 22:18:20 | 000,970,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WgaTray.exe
PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-09-08 18:59:52 | 002,244,064 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012-08-15 20:49:45 | 009,465,032 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll
MOD - [2009-02-27 20:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - File not found [Auto | Stopped] -- C:\PROGRA~1\ArcaBit\Common\ARCATA~1.EXE -- (AVTasks2)
SRV - File not found [Auto | Stopped] -- C:\Program Files\ArcaBit\ArcaTools\arcabackup\ArcaBackupService.exe -- (AVBackup)
SRV - File not found [Auto | Stopped] -- C:\Program Files\ArcaBit\ArcaAgent\ArcaRemoteSvc.exe -- (ArcaRemoteService)
SRV - [2012-09-08 18:59:53 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-09-04 20:19:46 | 000,161,768 | ---- | M] (Oracle Corporation) [Auto | Stopped] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012-08-23 10:17:28 | 000,070,352 | ---- | M] (Comodo Security Solutions Inc.) [Auto | Running] -- C:\Program Files\Common Files\Comodo\launcher_service.exe -- (CLPSLauncher)
SRV - [2012-08-15 20:49:48 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-07-26 19:40:56 | 000,794,560 | ---- | M] (Spigot, Inc.) [Auto | Stopped] -- C:\Program Files\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2012-05-26 12:04:52 | 000,913,792 | ---- | M] (IObit) [Auto | Stopped] -- C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe -- (AdvancedSystemCareService5)
SRV - [2012-04-13 14:59:46 | 000,409,232 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Comodo\Dragon\dragon_updater.exe -- (DragonUpdater)
SRV - [2012-03-11 21:13:22 | 001,983,232 | ---- | M] (COMODO) [Auto | Stopped] -- C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2012-01-27 09:47:20 | 000,828,944 | ---- | M] (GlavSoft LLC.) [Auto | Running] -- C:\Program Files\Common Files\Comodo\tvnserver.exe -- (tvnserver)
SRV - [2012-01-04 13:32:36 | 000,718,888 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011-01-13 10:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbmodem.sys -- (USBModem)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbdiag.sys -- (UsbDiag)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbbus.sys -- (usbbus)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (aswTdi)
DRV - File not found [Kernel | System | Stopped] --  -- (aswSP)
DRV - File not found [Kernel | System | Stopped] --  -- (aswRdr)
DRV - File not found [File_System | Auto | Stopped] --  -- (aswMon2)
DRV - File not found [File_System | Auto | Stopped] -- aswFsBlk.sys -- (aswFsBlk)
DRV - File not found [Kernel | On_Demand | Unknown] --  -- (ac8ct1at)
DRV - File not found [Kernel | System | Stopped] --  -- (Aavmker4)
DRV - [2012-08-03 10:23:28 | 000,036,112 | ---- | M] (Windows (R) Win 7 DDK provider) [File_System | System | Stopped] -- C:\WINDOWS\system32\drivers\CFRMD.sys -- (CFRMD)
DRV - [2012-03-11 21:13:48 | 000,097,760 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\inspect.sys -- (Inspect)
DRV - [2012-03-11 21:13:46 | 000,494,968 | ---- | M] (COMODO) [File_System | System | Stopped] -- C:\WINDOWS\system32\drivers\cmdGuard.sys -- (cmdGuard)
DRV - [2012-03-11 21:13:46 | 000,031,704 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp)
DRV - [2012-03-11 21:13:44 | 000,018,056 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmderd.sys -- (cmderd)
DRV - [2012-01-09 17:28:20 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2012-01-09 17:28:20 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2012-01-09 17:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2012-01-09 17:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2012-01-08 01:59:21 | 000,441,760 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
DRV - [2012-01-08 01:59:21 | 000,044,384 | ---- | M] (Acronis) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2011-11-10 05:42:12 | 007,493,120 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010-11-09 15:35:30 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\cpuz135_x32.sys -- (cpuz135)
DRV - [2010-08-27 18:55:34 | 000,278,984 | ---- | M] () [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010-08-27 18:55:33 | 000,025,416 | ---- | M] () [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009-07-22 15:00:07 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2009-07-22 10:44:43 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2009-04-22 14:32:20 | 000,042,552 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmdLLD.sys -- (AmdLLD)
DRV - [2009-01-20 12:53:06 | 005,027,840 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2008-12-25 11:32:32 | 003,721,664 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtKHDMI.sys -- (RTHDMIAzAudService)
DRV - [2008-10-30 15:14:20 | 000,117,888 | R--- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-04-13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\changer.sys -- (Changer)
DRV - [2008-04-13 20:40:26 | 000,034,688 | ---- | M] (Toshiba Corp.) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\lbrtfdc.sys -- (lbrtfdc)
DRV - [2007-04-16 16:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)
DRV - [2002-11-15 04:15:00 | 000,012,640 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\itchfltr.sys -- (itchfltr)
DRV - [2002-11-08 11:50:00 | 000,070,238 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFlt2.Sys -- (LMouFlt2)
DRV - [2002-11-08 11:50:00 | 000,052,238 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l8042pr2.sys -- (L8042PR2)
DRV - [2002-11-08 11:50:00 | 000,041,420 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidUsb.sys -- (LHidUsb)
DRV - [2002-11-08 11:50:00 | 000,023,838 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidFlt2.Sys -- (LHidFlt2)
DRV - [2002-11-08 11:50:00 | 000,014,156 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LCcfltr.sys -- (LCcfltr)
DRV - [2002-09-16 17:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct=&gc=1&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.1010006&st=12&barid={1E1444BF-CF5E-11E1-AE96-00241D2C14B3}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct=&gc=1&q=
IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&crg=3.1010006&st=12&q={searchTerms}&barid={1E1444BF-CF5E-11E1-AE96-00241D2C14B3}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.1010006&st=12&barid={1E1444BF-CF5E-11E1-AE96-00241D2C14B3}
IE - HKCU\..\URLSearchHook: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files\IObit Toolbar\IE\6.2\iobitToolbarIE.dll (Spigot, Inc.)
IE - HKCU\..\URLSearchHook: {C94E154B-1459-4A47-966B-4B843BEFC7DB} - C:\Program Files\AskSearch\bin\DefaultSearch.dll ()
IE - HKCU\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2790392
IE - HKCU\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedirect?gct=&gc=1&q={searchTerms}&crm=1&toolbar=UT2
IE - HKCU\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&crg=3.1010006&st=12&q={searchTerms}&barid={1E1444BF-CF5E-11E1-AE96-00241D2C14B3}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="
FF - prefs.js..browser.search.order.1: "Ask"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&ilc=12&type=685749"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "start24.pl"
FF - prefs.js..extensions.enabledAddons: info@thebflix.com:1.1
FF - prefs.js..extensions.enabledAddons: iobit@mybrowserbar.com:6.2
FF - prefs.js..extensions.enabledAddons: m3ffxtbr@mywebsearch.com:1.3
FF - prefs.js..extensions.enabledAddons: wtxpcom@mybrowserbar.com:6.2
FF - prefs.js..extensions.enabledAddons: {88c7f2aa-f93f-432c-8f0e-b7d85967a527}:3.15.1.0
FF - prefs.js..extensions.enabledItems: iobit@mybrowserbar.com:4.9
FF - prefs.js..extensions.enabledItems: plugin@wrzuc.to:1.0
FF - prefs.js..extensions.enabledItems: wtxpcom@mybrowserbar.com:4.9
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {88c7f2aa-f93f-432c-8f0e-b7d85967a527}:3.8.1.0
FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=685749&p="
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0:  File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2010-07-15 14:50:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-09-08 18:59:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-08-21 16:41:23 | 000,000,000 | ---D | M]
 
[2009-07-22 10:49:25 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Extensions
[2012-08-28 20:44:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\5udm7c6y.default\extensions
[2012-05-14 19:32:56 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\5udm7c6y.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2012-08-28 20:44:45 | 000,000,000 | ---D | M] (BitTorrentBar Community Toolbar) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\5udm7c6y.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}
[2012-01-20 19:02:15 | 000,000,000 | ---D | M] (Bflix extension) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\5udm7c6y.default\extensions\info@thebflix.com
[2012-02-08 12:25:09 | 000,000,000 | ---D | M] (My Web Search) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\5udm7c6y.default\extensions\m3ffxtbr@mywebsearch.com
[2010-06-03 22:13:11 | 000,000,000 | ---D | M] ("TV.wrzuc.to") -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\5udm7c6y.default\extensions\plugin@wrzuc.to
[2012-02-15 00:37:30 | 000,020,591 | ---- | M] () (No name found) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\5udm7c6y.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi
[2012-07-16 17:51:48 | 000,172,310 | ---- | M] () (No name found) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\5udm7c6y.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
[2012-07-16 17:51:49 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\5udm7c6y.default\searchplugins\sweetim.xml
[2012-05-07 20:27:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-08-30 20:35:44 | 000,000,000 | ---D | M] (Widgi Toolbar Platform) -- C:\PROGRAM FILES\COMMON FILES\SPIGOT\WTXPCOM
[2012-07-31 17:01:38 | 000,000,000 | ---D | M] (IObit Toolbar) -- C:\PROGRAM FILES\IOBIT TOOLBAR\FF
[2012-09-08 18:59:56 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-04-09 18:26:24 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012-02-15 00:36:58 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-02-15 00:36:58 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-02-15 00:36:58 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-02-15 00:36:58 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-02-15 00:36:58 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-02-15 00:36:58 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - homepage: http://home.sweetim.com/?crg=3.1010006&st=12&barid={1E1444BF-CF5E-11E1-AE96-00241D2C14B3}
CHR - default_search_provider: SweetIM Search (Enabled)
CHR - default_search_provider: search_url = http://search.sweetim.com/search.asp?src=6&crg=3.1010006&st=12&q={searchTerms}&barid={1E1444BF-CF5E-11E1-AE96-00241D2C14B3}
CHR - default_search_provider: suggest_url = 
CHR - homepage: http://home.sweetim.com/?crg=3.1010006&st=12&barid={1E1444BF-CF5E-11E1-AE96-00241D2C14B3}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.89\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.89\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.89\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)  (Enabled) = C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Szukaj w Google = C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of 
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
CHR - Extension: Gmail = C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
CHR - Extension: YouTube = C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Szukaj w Google = C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of 
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
CHR - Extension: Gmail = C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2001-10-26 15:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (IObit Toolbar) - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files\IObit Toolbar\IE\6.2\iobitToolbarIE.dll (Spigot, Inc.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\Administrator\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)
O3 - HKLM\..\Toolbar: (IObit Toolbar) - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files\IObit Toolbar\IE\6.2\iobitToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [Logitech Utility] C:\WINDOWS\LOGI_MWX.EXE (Logitech Inc.)
O4 - HKLM..\Run: [NSU_agent] C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe ()
O4 - HKLM..\Run: [SearchSettings] C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [tvncontrol] C:\Program Files\Common Files\Comodo\tvnserver.exe (GlavSoft LLC.)
O4 - HKCU..\Run: [Advanced SystemCare 5] C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe (IObit)
O4 - HKCU..\Run: [NokiaPCInternetAccess] C:\Program Files\Nokia\PC Internet Access\NPCIA.exe (Nokia)
O4 - HKCU..\Run: [Nowe Gadu-Gadu] C:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.)
O4 - HKCU..\Run: [srhxsigkdrnepug] C:\WINDOWS\srhxsigk.exe (Zion)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Start GeekBuddy.lnk = C:\Program Files\Comodo\GeekBuddy\launcher.exe (Comodo Security Solutions Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BC903859-F5CA-4976-9C73-87F387DF5052}: DhcpNameServer = 192.168.2.1
O20 - AppInit_DLLs: (C:\WINDOWS\system32\guard32.dll) - C:\WINDOWS\system32\guard32.dll (COMODO)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-07-22 10:33:22 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2003-08-06 17:40:33 | 000,000,112 | R--- | M] () - H:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{2b446fbe-900f-11df-8c79-00241d2c14b3}\Shell - "" = Autorun
O33 - MountPoints2\{2b446fbe-900f-11df-8c79-00241d2c14b3}\Shell\AutoRun\command - "" = L:\setup.exe
O33 - MountPoints2\{310bbbd4-d986-11e0-8fd8-00241d2c14b3}\Shell - "" = Autorun
O33 - MountPoints2\{310bbbd4-d986-11e0-8fd8-00241d2c14b3}\Shell\AutoRun\command - "" = L:\setup.exe
O33 - MountPoints2\{4e5aefe0-1977-11e0-8db0-00241d2c14b3}\Shell - "" = AutoRun
O33 - MountPoints2\{4e5aefe0-1977-11e0-8db0-00241d2c14b3}\Shell\AutoRun\command - "" = F:\NokiaPCIA_Autorun.exe
O33 - MountPoints2\{a499127e-837a-11de-8954-00241d2c14b3}\Shell - "" = AutoRun
O33 - MountPoints2\{a499127e-837a-11de-8954-00241d2c14b3}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{afc0b132-ae9a-11de-89cf-00241d2c14b3}\Shell - "" = Autorun
O33 - MountPoints2\{afc0b132-ae9a-11de-89cf-00241d2c14b3}\Shell\AutoRun\command - "" = N:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-09-11 23:33:30 | 000,600,064 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Pulpit\OTL.exe
[2012-09-10 22:45:29 | 000,042,760 | ---- | C] (COMODO CA Limited) -- C:\WINDOWS\System32\certsentry.dll
[2012-09-10 21:55:48 | 016,743,107 | ---- | C] (COMODO) -- C:\Documents and Settings\Administrator\Pulpit\cispro_30day_installer_1157_1a.exe.part
[2012-09-10 21:37:47 | 005,128,320 | ---- | C] (SpeedMaxPc, Inc.) -- C:\Documents and Settings\Administrator\Pulpit\SpeedMaxpc_installer_de.exe
[2012-09-10 21:32:20 | 092,031,704 | ---- | C] (COMODO) -- C:\Documents and Settings\Administrator\Pulpit\cavadvanced_30day_installer_1158_38.exe
[2012-09-10 21:32:00 | 062,062,592 | ---- | C] (COMODO) -- C:\Documents and Settings\Administrator\Pulpit\cispremium_installer.exe
[2012-09-09 14:12:14 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2012-09-08 17:17:59 | 000,156,160 | ---- | C] (Zion) -- C:\WINDOWS\srhxsigk.exe
[2012-09-08 17:17:58 | 000,156,160 | ---- | C] (Zion) -- C:\Documents and Settings\All Users\Dane aplikacji\srhxsigk.exe
[2012-09-07 10:39:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit\TOYOTA
[2012-09-07 10:36:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit\Nowy folder
[2012-09-04 20:25:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Sun
[2012-09-04 20:20:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012-09-04 20:20:33 | 000,143,872 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2012-09-04 20:20:32 | 000,821,736 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll
[2012-09-04 20:20:32 | 000,246,760 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2012-09-04 20:20:18 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012-09-04 20:20:18 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012-09-04 20:20:18 | 000,093,672 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2012-09-04 20:16:38 | 000,894,952 | ---- | C] (Oracle Corporation) -- C:\Documents and Settings\Administrator\Pulpit\jxpiinstall.exe
[2012-09-02 22:36:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Kyodai Mahjongg 2006
[2012-09-02 22:36:21 | 000,000,000 | ---D | C] -- C:\Program Files\Kyodai Mahjongg 2006
[2012-08-28 20:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Comodo
[2012-08-26 18:08:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit\CV ANG
[2012-08-16 22:12:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\TightVNC
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Administrator\*.tmp files -> C:\Documents and Settings\Administrator\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-09-14 17:52:14 | 000,496,494 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2012-09-14 17:52:14 | 000,437,940 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012-09-14 17:52:14 | 000,086,252 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2012-09-14 17:52:14 | 000,069,492 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012-09-14 17:51:33 | 000,000,452 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\spider.sav
[2012-09-14 17:48:11 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-09-14 17:47:57 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-09-11 23:33:34 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Pulpit\OTL.exe
[2012-09-11 23:33:15 | 000,512,399 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\adwcleaner.exe
[2012-09-11 23:33:03 | 000,468,072 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\OTL(19450).exe
[2012-09-10 22:46:21 | 000,108,730 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\vvcvc.xml
[2012-09-10 22:45:37 | 000,000,769 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Comodo Dragon.lnk
[2012-09-10 22:45:29 | 000,042,760 | ---- | M] (COMODO CA Limited) -- C:\WINDOWS\System32\certsentry.dll
[2012-09-10 22:34:18 | 000,001,046 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012-09-10 22:34:18 | 000,000,392 | ---- | M] () -- C:\WINDOWS\tasks\AWC AutoSweep.job
[2012-09-10 22:30:21 | 092,031,704 | ---- | M] (COMODO) -- C:\Documents and Settings\Administrator\Pulpit\cavadvanced_30day_installer_1158_38.exe
[2012-09-10 21:55:53 | 016,743,107 | ---- | M] (COMODO) -- C:\Documents and Settings\Administrator\Pulpit\cispro_30day_installer_1157_1a.exe.part
[2012-09-10 21:55:53 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\cispro_30day_installer_1157_1a.exe
[2012-09-10 21:39:26 | 005,128,320 | ---- | M] (SpeedMaxPc, Inc.) -- C:\Documents and Settings\Administrator\Pulpit\SpeedMaxpc_installer_de.exe
[2012-09-10 21:33:20 | 062,062,592 | ---- | M] (COMODO) -- C:\Documents and Settings\Administrator\Pulpit\cispremium_installer.exe
[2012-09-09 14:18:57 | 121,284,634 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\avast_internet_security_setup.exe.part
[2012-09-09 14:18:57 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\avast_internet_security_setup.exe
[2012-09-09 10:49:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012-09-08 23:25:00 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012-09-08 19:36:19 | 000,010,786 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\2597237296.jpg
[2012-09-08 17:18:01 | 000,078,023 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\omfsxqkxbfngvjb
[2012-09-08 17:17:46 | 000,156,160 | ---- | M] (Zion) -- C:\WINDOWS\srhxsigk.exe
[2012-09-08 17:17:46 | 000,156,160 | ---- | M] (Zion) -- C:\Documents and Settings\All Users\Dane aplikacji\srhxsigk.exe
[2012-09-08 17:08:07 | 000,425,481 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\X_Files.mp3
[2012-09-07 11:42:00 | 000,000,404 | ---- | M] () -- C:\WINDOWS\tasks\AWC Update.job
[2012-09-06 12:24:25 | 000,407,736 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\VW_bus_station_wagon.jpg
[2012-09-06 12:24:12 | 000,514,255 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\VW_bus.jpg
[2012-09-06 11:33:20 | 000,053,365 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\lee75.jpg
[2012-09-06 11:33:07 | 000,095,304 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\il_570xN.293668205.jpg
[2012-09-04 20:19:47 | 000,093,672 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2012-09-04 20:19:43 | 000,246,760 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2012-09-04 20:19:43 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012-09-04 20:19:43 | 000,143,872 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2012-09-04 20:19:42 | 000,821,736 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll
[2012-09-04 20:19:42 | 000,746,984 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll
[2012-09-04 20:19:42 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012-09-04 20:16:39 | 000,894,952 | ---- | M] (Oracle Corporation) -- C:\Documents and Settings\Administrator\Pulpit\jxpiinstall.exe
[2012-09-04 19:16:48 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2012-09-02 22:36:24 | 000,000,665 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\Kyodai Mahjongg.lnk
[2012-08-28 20:09:02 | 000,001,790 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AntiError.lnk
[2012-08-28 20:09:02 | 000,001,786 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\GeekBuddy.lnk
[2012-08-28 20:09:02 | 000,001,780 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Start GeekBuddy.lnk
[2012-08-21 16:41:23 | 000,001,735 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk
[2012-08-17 21:35:43 | 000,214,016 | ---- | M] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-08-15 20:49:46 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012-08-15 20:49:46 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012-08-15 20:49:42 | 009,826,504 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe
[2012-08-15 20:09:37 | 000,270,984 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Administrator\*.tmp files -> C:\Documents and Settings\Administrator\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-09-11 23:33:08 | 000,512,399 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\adwcleaner.exe
[2012-09-11 23:32:59 | 000,468,072 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\OTL(19450).exe
[2012-09-10 22:46:21 | 000,108,730 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\vvcvc.xml
[2012-09-10 22:45:37 | 000,000,769 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Comodo Dragon.lnk
[2012-09-10 21:32:51 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\cispro_30day_installer_1157_1a.exe
[2012-09-09 14:18:57 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\avast_internet_security_setup.exe
[2012-09-09 14:18:54 | 121,284,634 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\avast_internet_security_setup.exe.part
[2012-09-08 19:36:19 | 000,010,786 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\2597237296.jpg
[2012-09-08 17:17:48 | 000,078,023 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\omfsxqkxbfngvjb
[2012-09-08 17:08:07 | 000,425,481 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\X_Files.mp3
[2012-09-06 12:24:22 | 000,407,736 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\VW_bus_station_wagon.jpg
[2012-09-06 12:24:11 | 000,514,255 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\VW_bus.jpg
[2012-09-06 11:33:19 | 000,053,365 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\lee75.jpg
[2012-09-06 11:33:06 | 000,095,304 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\il_570xN.293668205.jpg
[2012-09-02 22:36:24 | 000,000,665 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\Kyodai Mahjongg.lnk
[2012-08-28 20:09:02 | 000,001,790 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AntiError.lnk
[2012-08-28 20:09:02 | 000,001,786 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\GeekBuddy.lnk
[2012-08-28 20:09:02 | 000,001,780 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Start GeekBuddy.lnk
[2012-08-21 16:41:23 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader 9.lnk
[2012-08-21 16:41:23 | 000,001,735 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk
[2012-06-03 11:11:21 | 000,000,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2012-02-18 00:19:38 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011-12-03 14:35:01 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\milosc53.gif
[2011-12-02 12:29:10 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\milosc68_(www.e-gify.pl).gif
[2011-12-02 11:44:50 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\milosc28_(www.e-gify.pl).gif
[2011-11-24 13:25:56 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\gołąb.jpg
[2011-10-23 21:02:38 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\lastscan.jpg
[2011-10-23 19:56:26 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Maxiu.zip
[2011-08-29 12:25:13 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\prom.jpg
[2011-07-31 09:38:10 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\festival.JPG
[2011-07-30 18:35:03 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\ups.jpeg
[2011-04-20 22:35:16 | 000,180,624 | ---- | C] () -- C:\WINDOWS\System32\Primomonnt.dll
[2011-02-10 06:03:48 | 000,000,314 | ---- | C] () -- C:\WINDOWS\primopdf.ini
[2011-01-31 21:08:41 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Administrator\Dane aplikacji\$_hpcst$.hpc
[2011-01-11 22:22:08 | 000,303,104 | ---- | C] () -- C:\WINDOWS\Uninstall_tkexe.exe
[2010-09-24 23:08:00 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\IE.jpg
[2010-03-19 15:53:52 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Clips
[2010-03-19 15:53:52 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Channel
[2010-03-19 15:45:47 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLdu.DAT
[2010-03-19 15:45:47 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Dane aplikacji\Cocoa
[2010-03-08 21:46:19 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\714150829e60d68f2cc3ac7.gif
[2010-03-05 11:59:01 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\NetworkService\Dane aplikacji\rbuwzv.dat
[2010-03-05 11:58:59 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Administrator\Dane aplikacji\avdrn.dat
[2010-02-10 20:40:26 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Nocleg - noclegi Zakopane - Wynajem Pokoi Króle 1a - Zakopane - BAZA TURYSTYCZNA - pensjonaty, domy wypoczynkowe.url
[2010-02-10 20:39:56 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\.url
[2010-01-16 18:45:09 | 000,005,703 | ---- | C] () -- C:\Documents and Settings\Administrator\.recently-used.xbel
[2009-07-22 12:22:14 | 000,214,016 | ---- | C] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-05-16 16:18:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\BitTorrent
[2012-01-06 17:15:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Colibri Games
[2012-06-02 22:33:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\DAEMON Tools Lite
[2012-01-14 00:44:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\DeepBurner
[2012-04-18 03:45:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\EurekaLog
[2010-01-16 18:45:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\gtk-2.0
[2012-06-03 00:02:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\IObit
[2010-12-02 00:11:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\ipla
[2009-07-25 12:16:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\LG Electronics
[2012-01-18 19:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\NapiProjekt
[2010-03-19 15:50:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Nikon
[2010-07-15 14:51:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Nokia
[2012-01-06 16:29:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Nowe Gadu-Gadu
[2009-07-23 10:52:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\OpenFM
[2012-01-07 22:18:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\PandoraRecovery
[2012-05-10 17:46:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\PC Suite
[2012-08-26 18:11:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\PrimoPDF
[2012-07-31 17:01:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Search Settings
[2012-06-19 10:58:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\wtxpcom
[2011-02-07 21:15:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2012-06-03 00:06:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
[2012-01-06 17:15:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Colibri Games
[2012-08-16 22:11:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CPA_VA
[2009-07-22 15:19:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-03-19 15:45:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EnterNHelp
[2012-06-14 18:17:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2012-01-10 02:39:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate
[2012-06-02 22:18:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IObit
[2010-10-27 22:39:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2011-06-07 21:48:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia
[2010-03-25 11:35:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2012-09-09 14:06:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2012-01-10 02:36:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Premium
[2012-01-08 01:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Seagate
[2012-07-16 17:51:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SweetIM
[2012-01-07 04:26:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-03-19 15:45:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ultima_T15
[2012-09-10 22:34:18 | 000,000,392 | ---- | M] () -- C:\WINDOWS\Tasks\AWC AutoSweep.job
[2012-09-07 11:42:00 | 000,000,404 | ---- | M] () -- C:\WINDOWS\Tasks\AWC Update.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:63238B95

< End of report >