OTL logfile created on: 2013-05-26 10:35:17 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\komp\Moje dokumenty\Pobieranie
Windows XP Professional Edition  (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2600.0000)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
511,47 Mb Total Physical Memory | 194,81 Mb Available Physical Memory | 38,09% Memory free
1,22 Gb Paging File | 0,94 Gb Available in Paging File | 77,30% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 15,63 Gb Total Space | 4,39 Gb Free Space | 28,09% Space Free | Partition Type: NTFS
Drive D: | 43,95 Gb Total Space | 10,15 Gb Free Space | 23,09% Space Free | Partition Type: NTFS
Drive E: | 44,43 Gb Total Space | 3,79 Gb Free Space | 8,53% Space Free | Partition Type: NTFS
Drive F: | 45,04 Gb Total Space | 10,03 Gb Free Space | 22,28% Space Free | Partition Type: NTFS
Drive H: | 38,28 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive J: | 14,40 Gb Total Space | 3,77 Gb Free Space | 26,17% Space Free | Partition Type: FAT32
 
Computer Name: KOMP-SJE7PRUQF9 | User Name: komp | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2013-05-26 10:34:11 | 000,609,792 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\komp\Moje dokumenty\Pobieranie\OTL.scr
PRC - [2013-04-07 19:28:41 | 000,069,336 | RHS- | M] () -- C:\Program Files\Common Files\System\MSASP32.exe
PRC - [2013-03-23 21:19:28 | 000,041,984 | RHS- | M] () -- C:\Program Files\Common Files\System\MSIWA32.exe
PRC - [2013-03-23 19:46:54 | 000,122,880 | ---- | M] () -- C:\Program Files\PLAY ONLINE\PLAY ONLINE.exe
PRC - [2012-06-22 17:11:46 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012-01-19 13:30:04 | 000,114,992 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files\SweetIM\Messenger\SweetIM.exe
PRC - [2010-11-16 15:37:38 | 000,271,872 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\DatacardService\HWDeviceService.exe
PRC - [2009-04-14 22:28:46 | 000,118,784 | R--- | M] (Huawei Technologies Co., Ltd.) -- C:\Documents and Settings\komp\Dane aplikacji\PLAY ONLINE\ouc.exe
PRC - [2008-08-04 01:02:20 | 000,043,520 | ---- | M] () -- D:\instalki\Winamp\winampa.exe
PRC - [2001-10-30 14:00:00 | 001,009,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2013-05-26 10:18:36 | 000,084,992 | RHS- | M] () -- C:\WINDOWS\system32\gasretyw0.dll
MOD - [2013-04-07 19:28:41 | 000,069,336 | RHS- | M] () -- C:\Program Files\Common Files\System\MSASP32.exe
MOD - [2013-03-23 21:19:28 | 000,041,984 | RHS- | M] () -- C:\Program Files\Common Files\System\MSIWA32.exe
MOD - [2013-03-23 19:46:54 | 000,122,880 | ---- | M] () -- C:\Program Files\PLAY ONLINE\PLAY ONLINE.exe
MOD - [2012-06-22 17:11:46 | 001,952,696 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2010-11-16 15:37:38 | 000,271,872 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\DatacardService\HWDeviceService.exe
MOD - [2009-12-10 12:52:38 | 000,192,512 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DeviceMgrUIPlugin.dll
MOD - [2009-12-10 12:51:36 | 000,114,688 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DeviceMgrPlugin.dll
MOD - [2009-12-10 12:40:20 | 000,991,232 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NDISAPI.dll
MOD - [2009-10-13 10:28:42 | 000,159,744 | ---- | M] () -- C:\Program Files\PLAY ONLINE\SMSPlugin.dll
MOD - [2009-10-13 10:28:42 | 000,061,440 | ---- | M] () -- C:\Program Files\PLAY ONLINE\XCodec.dll
MOD - [2009-10-13 10:28:40 | 000,557,056 | ---- | M] () -- C:\Program Files\PLAY ONLINE\atcomm.dll
MOD - [2009-10-13 10:28:40 | 000,155,648 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DetectDev.dll
MOD - [2009-10-13 10:28:40 | 000,139,264 | ---- | M] () -- C:\Program Files\PLAY ONLINE\LocaleMgrPlugin.dll
MOD - [2009-10-13 10:28:40 | 000,090,112 | ---- | M] () -- C:\Program Files\PLAY ONLINE\FileManager.dll
MOD - [2009-10-13 10:28:40 | 000,090,112 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DialUpPlugin.dll
MOD - [2009-10-13 10:28:40 | 000,061,440 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DeviceOperate.dll
MOD - [2009-10-13 10:28:40 | 000,057,344 | ---- | M] () -- C:\Program Files\PLAY ONLINE\ConfigFilePlugin.dll
MOD - [2009-10-13 10:28:40 | 000,032,768 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NotifyServicePlugin.dll
MOD - [2009-10-13 10:28:40 | 000,014,848 | ---- | M] () -- C:\Program Files\PLAY ONLINE\isaputrace.dll
MOD - [2009-09-19 12:21:06 | 000,139,264 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NetInfoPlugin.dll
MOD - [2008-08-04 01:02:20 | 000,043,520 | ---- | M] () -- D:\instalki\Winamp\winampa.exe
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2013-05-09 10:58:30 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2013-04-07 19:28:41 | 000,069,336 | RHS- | M] () [Auto | Running] -- C:\Program Files\Common Files\System\MSASP32.exe -- (Advance Service Process)
SRV - [2013-03-23 21:19:28 | 000,041,984 | RHS- | M] () [Auto | Running] -- C:\Program Files\Common Files\System\MSIWA32.exe -- (Integrated Windows Authentication)
SRV - [2012-06-22 17:11:46 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2010-11-16 15:37:38 | 000,271,872 | ---- | M] () [Auto | Running] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\DatacardService\HWDeviceService.exe -- (HWDeviceService.exe)
SRV - [2001-10-30 14:00:00 | 000,047,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\mspmspsv.dll -- (WmdmPmSp)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2013-05-09 10:59:10 | 000,368,944 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2013-05-09 10:59:10 | 000,174,664 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2013-05-09 10:59:10 | 000,056,080 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2013-05-09 10:59:10 | 000,049,376 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2013-05-09 10:59:09 | 000,110,920 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2013-05-09 10:59:09 | 000,049,760 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (AswRdr)
DRV - [2013-05-09 10:59:08 | 000,025,696 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2010-10-09 15:48:36 | 000,072,576 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV - [2010-08-27 14:53:32 | 000,117,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ewusbnet.sys -- (ewusbnet)
DRV - [2010-08-07 18:48:30 | 000,106,496 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2010-07-27 10:52:02 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV - [2005-07-29 12:44:08 | 000,340,992 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rt61.sys -- (RT61)
DRV - [2005-04-01 06:12:00 | 001,032,192 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2004-06-04 03:40:46 | 000,079,360 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvatabus.sys -- (nvatabus)
DRV - [2004-05-18 07:00:54 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2004-05-18 07:00:52 | 000,033,280 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2004-04-03 08:40:00 | 000,021,760 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nv_agp.SYS -- (nv_agp)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?st=1&barid={9ADD2DCB-9BE3-44BF-AD33-8D1D38110770}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchya.com/?chnl=ft-100&s=1&cr=1959018025&cd=2XzutAtN2Y1L1QzutDtDtDyEyCtCzy0B0FyEzz0D0EtDtAzz0EtN0D0TzutBtDtCtBtDtBtBtC&q=
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={9ADD2DCB-9BE3-44BF-AD33-8D1D38110770}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://searchya.com/?chnl=ft-100&s=0&cr=1959018025&cd=2XzutAtN2Y1L1QzutDtDtDyEyCtCzy0B0FyEzz0D0EtDtAzz0EtN0D0TzutBtDtCtBtDtBtBtC
IE - HKCU\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = 94A2AE90-7B04-4CE9-92A8-E74303397600
IE - HKCU\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={9ADD2DCB-9BE3-44BF-AD33-8D1D38110770}
IE - HKCU\..\SearchScopes\94A2AE90-7B04-4CE9-92A8-E74303397600: "URL" = http://searchya.com/?chnl=ft-100&s=1&cr=1959018025&cd=2XzutAtN2Y1L1QzutDtDtDyEyCtCzy0B0FyEzz0D0EtDtAzz0EtN0D0TzutBtDtCtBtDtBtBtC&q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledAddons: {66E978CD-981F-47DF-AC42-E3CF417C1467}:0.4.3
FF - prefs.js..searchreset.backup.browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.startup.homepage: "http://google.com"
FF - prefs.js..searchreset.backup.keyword.URL: "http://search.babylon.com/?AF=119998&babsrc=adbartrp&mntrId=b87e038e0000000000000004619bf48d&q="
 
 
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-05-26 10:00:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-06-22 17:11:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-02-21 13:58:12 | 000,000,000 | ---D | M]
 
[2012-02-21 13:58:23 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\komp\Dane aplikacji\Mozilla\Extensions
[2013-05-26 09:16:21 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\komp\Dane aplikacji\Mozilla\Firefox\Profiles\23yig0cf.default\extensions
[2013-05-26 09:16:21 | 000,003,793 | ---- | M] () (No name found) -- C:\Documents and Settings\komp\Dane aplikacji\Mozilla\Firefox\Profiles\23yig0cf.default\extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi
[2012-02-21 23:01:32 | 000,001,497 | ---- | M] () -- C:\Documents and Settings\komp\Dane aplikacji\Mozilla\Firefox\Profiles\23yig0cf.default\searchplugins\searchya.xml
[2012-02-21 13:58:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-06-22 17:11:47 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-06-22 17:11:41 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-02-21 14:29:47 | 000,002,310 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012-06-22 17:11:41 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-06-22 17:11:41 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-06-22 17:11:41 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-06-22 17:11:41 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-06-22 17:11:41 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2013-05-26 10:18:29 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 NtKrnlpa.info
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly Technologies Ltd)
O2 - BHO: (Complitly) - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - C:\Documents and Settings\komp\Dane aplikacji\Complitly\Complitly.dll (SimplyGen)
O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (&Radio) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Driver Genius]  File not found
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [WinampAgent] D:\instalki\Winamp\winampa.exe ()
O4 - HKCU..\Run: [HW_OPENEYE_OUC_PLAY ONLINE] C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe (Huawei Technologies Co., Ltd.)
O4 - HKCU..\Run: [kamsoft] C:\WINDOWS\system32\kamsoft.exe ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html ()
O9 - Extra Button: @shdoclc.dll,-866 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\Web\related.htm ()
O9 - Extra 'Tools' menuitem : @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\Web\related.htm ()
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 79.163.127.70 217.116.100.65
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{78A47F55-3C99-4965-A57E-31857402585D}: DhcpNameServer = 79.163.127.70 217.116.100.65
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CF20380F-A25C-4C1A-81FF-D17047319A62}: DhcpNameServer = 192.168.3.1 81.26.0.10
O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINDOWS\system32\msdxm.ocx (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-02-21 16:11:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2013-05-26 10:37:06 | 000,000,465 | RHS- | M] () - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2013-05-26 10:37:06 | 000,000,465 | RHS- | M] () - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2013-05-26 10:37:06 | 000,000,465 | RHS- | M] () - E:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2013-05-26 10:37:06 | 000,000,465 | RHS- | M] () - F:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-11-16 23:37:37 | 000,142,336 | R--- | M] () - H:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2008-03-07 10:34:52 | 000,000,047 | R--- | M] () - H:\AUTORUN.INF -- [ CDFS ]
O32 - AutoRun File - [2013-05-26 10:37:08 | 000,000,465 | RHS- | M] () - J:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2013-05-26 10:02:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\RoboForm
[2013-05-26 10:01:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\komp\Moje dokumenty\My Avast EasyPass Data
[2013-05-26 10:01:00 | 000,368,944 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2013-05-26 10:01:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\avast! Free Antivirus
[2013-05-26 10:00:59 | 000,056,080 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2013-05-26 10:00:59 | 000,049,760 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2013-05-26 10:00:58 | 000,110,920 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2013-05-26 10:00:58 | 000,102,936 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2013-05-26 10:00:57 | 000,229,648 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2013-05-26 10:00:57 | 000,025,696 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2013-05-26 09:59:58 | 000,041,664 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2013-05-26 09:59:06 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2013-05-26 09:58:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\AVAST Software
[2013-05-26 09:44:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\komp\My Documents
[2013-05-26 09:32:19 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2013-05-26 09:32:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Logs
[2013-05-26 09:32:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\TEMP
[2013-05-26 09:32:02 | 000,017,344 | ---- | C] (Dll-Files.com) -- C:\WINDOWS\System32\roboot.exe
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2013-05-26 10:38:48 | 000,000,465 | RHS- | M] () -- C:\autorun.inf
[2013-05-26 10:19:40 | 000,000,312 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2013-05-26 10:18:36 | 000,084,992 | RHS- | M] () -- C:\WINDOWS\System32\gasretyw0.dll
[2013-05-26 10:18:28 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013-05-26 10:01:00 | 000,001,689 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\avast! Free Antivirus.lnk
[2013-05-26 10:00:58 | 000,002,644 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2013-05-26 08:29:10 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013-05-26 04:06:10 | 007,930,509 | ---- | M] () -- C:\Documents and Settings\komp\Pulpit\Joomla_2.5.11-Stable-Full_Package.zip
[2013-05-09 10:59:10 | 000,368,944 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2013-05-09 10:59:10 | 000,174,664 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2013-05-09 10:59:10 | 000,056,080 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2013-05-09 10:59:10 | 000,049,376 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2013-05-09 10:59:09 | 000,110,920 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2013-05-09 10:59:09 | 000,102,936 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2013-05-09 10:59:09 | 000,049,760 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2013-05-09 10:59:08 | 000,025,696 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2013-05-09 10:58:37 | 000,041,664 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2013-05-09 10:58:28 | 000,229,648 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2013-05-08 20:25:27 | 000,069,336 | ---- | M] () -- C:\WINDOWS\System32\te.exe
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013-05-26 10:01:00 | 000,001,689 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\avast! Free Antivirus.lnk
[2013-05-26 10:00:59 | 000,174,664 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2013-05-26 10:00:59 | 000,000,312 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2013-05-26 10:00:58 | 000,049,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2013-05-26 08:39:50 | 007,930,509 | ---- | C] () -- C:\Documents and Settings\komp\Pulpit\Joomla_2.5.11-Stable-Full_Package.zip
[2013-05-26 00:21:03 | 017,687,224 | ---- | C] () -- C:\Documents and Settings\komp\Pulpit\Dla właścicieli stron WWW - paczka poradników(1).rar
[2013-05-08 20:25:22 | 000,069,336 | ---- | C] () -- C:\WINDOWS\System32\te.exe
[2013-04-12 22:17:13 | 000,069,336 | ---- | C] () -- C:\WINDOWS\System32\tg.exe
[2013-04-07 20:00:55 | 000,069,336 | ---- | C] () -- C:\WINDOWS\System32\ke.exe
[2013-03-25 20:06:16 | 000,041,984 | ---- | C] () -- C:\WINDOWS\System32\bj.exe
[2011-12-06 18:34:05 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2011-10-23 22:00:12 | 000,015,872 | ---- | C] () -- C:\Documents and Settings\komp\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\System32\shdocvw.dll -- [2001-10-30 14:00:00 | 001,338,880 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\System32\wbem\fastprox.dll -- [2001-10-30 14:00:00 | 000,585,216 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\System32\wbem\wbemess.dll -- [2001-10-30 14:00:00 | 000,259,072 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

< End of report >