OTL logfile created on: 2012-01-09 18:11:33 - Run 1
OTL by OldTimer - Version 3.2.31.0     Folder = C:\Documents and Settings\xp\Moje dokumenty\Pobieranie
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,25 Gb Total Physical Memory | 2,50 Gb Available Physical Memory | 77,05% Memory free
5,09 Gb Paging File | 4,50 Gb Available in Paging File | 88,50% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 63,71 Gb Total Space | 5,15 Gb Free Space | 8,09% Space Free | Partition Type: NTFS
Drive D: | 117,20 Gb Total Space | 24,26 Gb Free Space | 20,70% Space Free | Partition Type: NTFS
Drive E: | 117,18 Gb Total Space | 21,53 Gb Free Space | 18,37% Space Free | Partition Type: NTFS
Drive K: | 7,39 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive M: | 3,72 Gb Total Space | 3,11 Gb Free Space | 83,71% Space Free | Partition Type: FAT32
 
Computer Name: OEM-ADE59CFEB14 | User Name: xp | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-01-09 18:10:31 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\xp\Moje dokumenty\Pobieranie\OTL.exe
PRC - [2012-01-01 22:05:08 | 000,912,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011-12-14 15:51:46 | 001,398,440 | ---- | M] (Ask) -- C:\Program Files\Ask.com\Updater\Updater.exe
PRC - [2011-05-02 13:45:21 | 000,117,328 | ---- | M] (ArcaBit) -- C:\Program Files\ArcaBit\ArcaUpdate\update.exe
PRC - [2010-06-14 14:07:14 | 000,615,936 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2010-06-07 12:51:24 | 000,138,752 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2010-03-28 10:16:06 | 000,797,112 | ---- | M] (iMesh, Inc) -- C:\Program Files\BearShare Applications\MediaBar\DataMngr\DataMngrUI.exe
PRC - [2009-12-23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2009-10-27 09:15:02 | 000,120,832 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2008-07-10 15:34:46 | 002,177,576 | ---- | M] (Gainward Co.) -- C:\Program Files\EXPERTool\TBPANEL.exe
PRC - [2008-04-14 21:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-02-21 10:24:44 | 000,091,432 | ---- | M] (cyberlink) -- C:\Program Files\CyberLink\Shared files\brs.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-01-01 22:05:10 | 000,849,368 | ---- | M] () -- C:\Program Files\Mozilla Firefox\js3250.dll
MOD - [2011-04-21 14:59:06 | 001,131,840 | ---- | M] () -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
MOD - [2010-02-18 10:03:14 | 000,088,656 | ---- | M] () -- C:\Program Files\ArcaBit\ArcaVir\AVShell.dll
MOD - [2010-01-27 02:07:32 | 003,884,312 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2008-06-25 20:57:00 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll
MOD - [2007-01-31 10:56:56 | 000,032,768 | ---- | M] () -- C:\Program Files\EXPERTool\TBPanelExt.dll
MOD - [1998-10-31 10:55:56 | 000,005,120 | ---- | M] () -- C:\Program Files\EXPERTool\TBMANAGE.DLL
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] --  -- (NMIndexingService)
SRV - [2011-05-02 13:45:21 | 000,117,328 | ---- | M] (ArcaBit) [Auto | Running] -- C:\Program Files\ArcaBit\ArcaUpdate\update.exe -- (AVUpdate)
SRV - [2011-01-28 18:10:49 | 000,289,360 | ---- | M] () [Auto | Stopped] -- C:\Program Files\ArcaBit\ArcaAgent\ArcaRemoteSvc.exe -- (ArcaRemoteService)
SRV - [2010-06-14 14:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010-06-08 12:17:52 | 000,096,848 | ---- | M] (ArcaBit) [Auto | Stopped] -- C:\Program Files\ArcaBit\Common\ArcaTasksService.exe -- (AVTasks2)
SRV - [2010-06-08 12:17:24 | 000,122,152 | ---- | M] (ArcaBit) [Auto | Stopped] -- C:\Program Files\ArcaBit\ArcaVir\ArcaMainSV.exe -- (ABMainSV)
SRV - [2010-06-03 19:34:26 | 000,085,096 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2010-02-05 15:36:40 | 000,207,440 | ---- | M] (ArcaBit) [On_Demand | Stopped] -- C:\Program Files\ArcaBit\Common\ArcaBit.Core.Configurator2.exe -- (ArcaBit.Core.Configurator)
SRV - [2009-12-23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009-09-11 13:44:36 | 000,248,400 | ---- | M] (ArcaBit) [On_Demand | Stopped] -- C:\Program Files\ArcaBit\Common\ArcaBit.Core.LoggingService.exe -- (ArcaBit.Core.LoggingService)
SRV - [2009-09-11 13:37:46 | 000,178,768 | ---- | M] (ArcaBit) [Auto | Stopped] -- C:\Program Files\ArcaBit\ArcaTools\arcabackup\ArcaBackupService.exe -- (AVBackup)
SRV - [2001-10-26 18:30:00 | 000,003,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\System32\regedt32.exe -- (.EsetTrialReset)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Running] --  -- (GGSAFERDriver)
DRV - [2010-11-18 19:49:34 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-10-03 09:04:00 | 000,051,792 | ---- | M] (ArcaBit) [File_System | On_Demand | Running] -- C:\Program Files\ArcaBit\ArcaVir\ABFLT.sys -- (ABFLT)
DRV - [2010-02-26 13:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010-02-26 13:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010-02-26 13:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010-02-26 13:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009-12-21 20:50:16 | 000,005,760 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vHidDev.sys -- (vHidDev)
DRV - [2009-12-01 17:14:34 | 000,034,384 | ---- | M] (ArcaBit) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\abndis.sys -- (ABndisMP)
DRV - [2009-12-01 17:14:34 | 000,034,384 | ---- | M] (ArcaBit) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\abndis.sys -- (ABndis)
DRV - [2009-04-21 16:58:42 | 000,011,136 | ---- | M] (Razer (Asia-Pacific) Pte Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\danew.sys -- (danewFltr)
DRV - [2009-01-17 16:16:37 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-05-15 01:03:12 | 004,742,144 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008-02-26 13:45:10 | 000,051,208 | ---- | M] (ArcaBit) [Kernel | System | Running] -- C:\Program Files\ArcaBit\ArcaVir\ABTDI.sys -- (ABTDI)
DRV - [2008-01-18 23:01:28 | 000,041,456 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\CyberLink\PowerDVD\000.fcl -- ({95808DC4-FA4A-4C74-92FE-5B863F82066B})
DRV - [2008-01-04 07:10:16 | 000,105,856 | R--- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007-03-16 10:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\TBPanel.sys -- (TBPanel)
DRV - [2007-03-16 10:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TBPanel.sys -- (Cardex)
DRV - [2006-07-05 12:50:52 | 000,683,791 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\torususb.sys -- (TaurusUsb)
DRV - [2006-07-01 23:32:26 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2003-08-12 11:51:00 | 000,060,255 | ---- | M] (STMicroelectronics              ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\stmatm.sys -- (Stmatm)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-839522115-1788223648-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-839522115-1788223648-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb
IE - HKU\S-1-5-21-839522115-1788223648-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-839522115-1788223648-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?AF=100478&babsrc=HP_ss&mntrId=73a7cba9000000000000005345000000
IE - HKU\S-1-5-21-839522115-1788223648-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-839522115-1788223648-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-839522115-1788223648-682003330-1003\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKU\S-1-5-21-839522115-1788223648-682003330-1003\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
IE - HKU\S-1-5-21-839522115-1788223648-682003330-1003\..\URLSearchHook: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-839522115-1788223648-682003330-1003\..\URLSearchHook: {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\prxtbfre2.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-839522115-1788223648-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "Softonic-Polska Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2530240&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://vshare.toolbarhome.com/?hp=df"
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {E84D42CA-64EB-11DE-A65F-8C3656D89593}:3.1
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.732
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.13.2.100009
FF - prefs.js..extensions.enabledItems: zacz3k@gmail.com:1.1
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.1.1.2rc1
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..extensions.enabledItems: {58beca16-cae6-4b7a-a0e8-153d0cbba63a}:3.3.3.2
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.8.0191
FF - prefs.js..extensions.enabledItems: {ecdee021-0d17-467f-a1ff-c7a115230949}:3.3.3.2
FF - prefs.js..extensions.enabledItems: vshare@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.6.0.8442
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.7
FF - prefs.js..extensions.enabledItems: ffxtlbr@babylon.com:1.2.0
FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?client=ff&src=kw&tb=NRO2&o=15422&locale=en_US&apn_uid=2D9CF460-A65D-42ED-A1D0-F74CE92A2523&apn_ptnrs=NA&apn_sauid=40DBF97E-9845-4F9A-A655-DD601EB13D91&apn_dtid=YYYYYYYYPL&&q="
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@idsoftware.com/QuakeLive: C:\Documents and Settings\All Users\Dane aplikacji\id Software\QuakeLive\npquakezero.dll (id Software Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.com/NxGame: C:\Documents and Settings\All Users\Dane aplikacji\Nexon\NGM\npNxGame.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2010-07-25 10:50:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.25\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-01-01 22:05:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.25\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-01-01 22:05:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
 
[2010-04-30 16:12:57 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Extensions
[2012-01-09 17:32:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions
[2011-03-03 11:46:32 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011-05-23 13:16:00 | 000,000,000 | ---D | M] (MovieBario Community Toolbar) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\{58beca16-cae6-4b7a-a0e8-153d0cbba63a}
[2011-06-24 11:55:52 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2011-12-15 13:10:41 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011-06-24 11:55:50 | 000,000,000 | ---D | M] (Softonic-Polska Community Toolbar) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\{c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}
[2011-06-24 11:55:53 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2010-05-28 19:05:00 | 000,000,000 | ---D | M] (MediaBar) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}
[2010-06-11 14:00:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}chrome
[2011-05-23 13:15:41 | 000,000,000 | ---D | M] (free-downloads.net Community Toolbar) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\{ecdee021-0d17-467f-a1ff-c7a115230949}
[2011-05-23 13:15:54 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\DTToolbar@toolbarnet.com
[2011-06-24 11:55:52 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\engine@conduit.com
[2012-01-02 15:55:31 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\ffxtlbr@babylon.com
[2012-01-04 21:16:27 | 000,000,000 | ---D | M] ("Nero Toolbar") -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\toolbar@ask.com
[2011-04-27 21:53:39 | 000,000,000 | ---D | M] (vShare) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\vshare@toolbar
[2011-05-23 13:16:02 | 000,000,000 | ---D | M] (Twojanuta.pl) -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\extensions\zacz3k@gmail.com
[2012-01-09 14:04:34 | 000,002,573 | ---- | M] () -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\searchplugins\askcom.xml
[2010-03-28 10:04:34 | 000,002,476 | ---- | M] () -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\searchplugins\BearShareWebSearch.xml
[2010-12-08 14:49:56 | 000,000,933 | ---- | M] () -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\searchplugins\conduit.xml
[2010-11-13 16:16:48 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\searchplugins\daemon-search.xml
[2011-05-04 22:31:30 | 000,001,583 | ---- | M] () -- C:\Documents and Settings\xp\Dane aplikacji\Mozilla\Firefox\Profiles\si5c82g8.default\searchplugins\web-search.xml
[2012-01-08 20:30:23 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-10-27 10:05:50 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2010-05-28 16:17:18 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-06-07 14:42:59 | 000,000,000 | ---D | M] (ArcaBit Ext.) -- C:\Program Files\Mozilla Firefox\extensions\arcabit@www.arcabit.pl
[2010-05-28 16:17:10 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010-07-25 10:50:08 | 000,000,000 | ---D | M] (PC Sync 2 Synchronisation Extension) -- C:\PROGRAM FILES\NOKIA\NOKIA PC SUITE 7\BKMRKSYNC
[2010-05-18 13:40:04 | 000,931,328 | ---- | M] (Ganymede Technologies) -- C:\Program Files\mozilla firefox\plugins\NPBOARDS.dll
[2010-05-28 16:17:10 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011-11-22 19:31:09 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-01-02 15:55:16 | 000,002,310 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2010-03-28 10:04:34 | 000,002,476 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\BearShareWebSearch.xml
[2011-11-22 19:31:09 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2011-11-22 19:31:09 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2011-11-22 19:31:09 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2011-11-22 19:31:09 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2011-11-22 19:31:09 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2001-10-26 16:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (MediaBar) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\Program Files\BearShare Applications\MediaBar\ToolBar\BearshareMediabarDx.dll ()
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (UrlHelper Class) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files\BearShare Applications\MediaBar\DataMngr\IEBHO.dll (MusicLab, LLC)
O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
O2 - BHO: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\prxtbfre2.dll (Conduit Ltd.)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll File not found
O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKLM\..\Toolbar: (MediaBar) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\Program Files\BearShare Applications\MediaBar\ToolBar\BearshareMediabarDx.dll ()
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\prxtbfre2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKU\S-1-5-21-839522115-1788223648-682003330-1003\..\Toolbar\ShellBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKU\S-1-5-21-839522115-1788223648-682003330-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-839522115-1788223648-682003330-1003\..\Toolbar\WebBrowser: (Softonic-Polska Toolbar) - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - C:\Program Files\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-839522115-1788223648-682003330-1003\..\Toolbar\WebBrowser: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKU\S-1-5-21-839522115-1788223648-682003330-1003\..\Toolbar\WebBrowser: (free-downloads.net Toolbar) - {ECDEE021-0D17-467F-A1FF-C7A115230949} - C:\Program Files\free-downloads.net\prxtbfre2.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-839522115-1788223648-682003330-1003\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [ABRegmon] C:\Program Files\ArcaBit\ArcaVir\ABregmon.exe (ArcaBit)
O4 - HKLM..\Run: [AdslTaskBar] C:\WINDOWS\System32\stmctrl.dll (STMicroelectronics              )
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [AvMenu] C:\Program Files\ArcaBit\ArcaVir\AVMenu.exe (ArcaBit)
O4 - HKLM..\Run: [BDRegion] C:\Program Files\CyberLink\Shared files\brs.exe (cyberlink)
O4 - HKLM..\Run: [DataMngr] C:\Program Files\BearShare Applications\MediaBar\DataMngr\DataMngrUI.exe (iMesh, Inc)
O4 - HKLM..\Run: [GEST] m‘|\ü File not found
O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" File not found
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [AlcoholAutomount] C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe (Alcohol Soft Development Team)
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe ()
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" File not found
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [DW6] "C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe" File not found
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [GAINWARD] C:\Program Files\EXPERTool\TBPanel.exe (Gainward Co.)
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [GameXN (news)] C:\Documents and Settings\All Users\Dane aplikacji\GameXN\GameXNGO.exe (EasyBits Software AS)
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [GameXN (update)] C:\Documents and Settings\All Users\Dane aplikacji\GameXN\GameXNGO.exe (EasyBits Software AS)
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [KPeerNexonEU] C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe (NEXON Inc.)
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [PC Suite Tray] C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [Steam] D:\Valve\Steam\Steam.exe (Valve Corporation)
O4 - HKU\S-1-5-21-839522115-1788223648-682003330-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-839522115-1788223648-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-839522115-1788223648-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: ArcaVir >> - {40525A66-DB98-480D-BCF9-7AF88C1AF438} - C:\Program Files\ArcaBit\WebExtensions\ie\ArcaIEExt.dll (ArcaBit sp. z o.o)
O9 - Extra 'Tools' menuitem : ArcaVir >> - {40525A66-DB98-480D-BCF9-7AF88C1AF438} - C:\Program Files\ArcaBit\WebExtensions\ie\ArcaIEExt.dll (ArcaBit sp. z o.o)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{323D1EFC-1E27-460D-8297-F91D23982C70}: NameServer = 79.163.127.70 217.116.100.65
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EF6EF5E0-AF4C-44B7-95CC-712A908F19DD}: DhcpNameServer = 10.0.0.2
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (C:\PROGRA~1\BEARSH~1\MediaBar\DataMngr\datamngr.dll) -C:\Program Files\BearShare Applications\MediaBar\DataMngr\datamngr.dll (iMesh, Inc)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\xp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\xp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-01-17 16:02:44 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010-09-23 20:32:44 | 000,000,133 | R--- | M] () - K:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{129b6d46-f3da-11df-b227-f03aad022cf4}\Shell - "" = AutoRun
O33 - MountPoints2\{129b6d46-f3da-11df-b227-f03aad022cf4}\Shell\AutoRun\command - "" = K:\Setup.exe -- [2010-09-18 04:01:31 | 000,349,520 | R--- | M] (Valve Corporation)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-01-09 17:41:20 | 004,353,794 | ---- | C] (Swearware) -- C:\Documents and Settings\xp\Pulpit\ComboFix(3).exe
[2012-01-09 17:29:35 | 000,000,000 | --SD | C] -- C:\ComboFix
[2012-01-09 17:11:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\Pulpit\zdjj
[2012-01-09 17:11:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\Pulpit\dok
[2012-01-09 17:06:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\xp\Moje dokumenty\Kopia Moje obrazy
[2012-01-09 17:06:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\xp\Moje dokumenty\Kopia Moja muzyka
[2012-01-09 15:33:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\Menu Start\Programy\CyberLink PowerDVD
[2012-01-08 00:00:48 | 000,000,000 | ---D | C] -- C:\cmdcons
[2012-01-07 23:55:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2012-01-07 23:52:35 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012-01-07 23:52:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\xp\Moje dokumenty\Moje wideo
[2012-01-04 21:11:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\Dane aplikacji\BabylonToolbar
[2012-01-02 15:57:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\Dane aplikacji\SumatraPDF
[2012-01-02 15:55:32 | 000,000,000 | ---D | C] -- C:\Program Files\BabylonToolbar
[2012-01-02 15:55:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\Menu Start\Programy\PDF Reader
[2012-01-02 15:54:56 | 000,000,000 | ---D | C] -- C:\Program Files\PDFReader
[2012-01-02 15:54:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\Ustawienia lokalne\Dane aplikacji\Babylon
[2012-01-02 15:54:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\Dane aplikacji\Babylon
[2012-01-02 15:54:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon
[2011-12-15 14:06:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\Pulpit\PP2_WM2
[2011-12-15 13:12:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\dwhelper
[2011-12-14 20:38:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\Ustawienia lokalne\Dane aplikacji\Ubisoft Game Launcher
[2011-12-14 20:38:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\Moje dokumenty\Assassin's Creed Revelations
[2011-12-14 16:55:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xp\Dane aplikacji\PunkBuster
[2011-12-14 16:52:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Ubisoft
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-01-09 18:11:03 | 000,000,228 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2012-01-09 17:41:20 | 004,353,794 | ---- | M] (Swearware) -- C:\Documents and Settings\xp\Pulpit\ComboFix(3).exe
[2012-01-09 17:10:07 | 000,051,186 | ---- | M] () -- C:\Documents and Settings\xp\Dane aplikacji\room_v3.dat
[2012-01-09 15:35:29 | 000,188,780 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2012-01-09 15:32:49 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2012-01-09 15:32:21 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-01-09 10:44:19 | 000,124,416 | ---- | M] () -- C:\Documents and Settings\xp\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-01-08 00:01:02 | 000,000,340 | RHS- | M] () -- C:\boot.ini
[2012-01-07 12:25:31 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-01-02 20:00:00 | 000,000,612 | ---- | M] () -- C:\WINDOWS\tasks\Norton Internet Security - Run Full System Scan - xp.job
[2012-01-02 15:55:34 | 000,000,237 | ---- | M] () -- C:\user.js
[2011-12-28 17:52:20 | 000,078,394 | ---- | M] () -- C:\Documents and Settings\xp\Moje dokumenty\ts3_clientui-win32-14345-2011-12-28 17_52_17.546875.dmp
[2011-12-26 13:38:42 | 000,278,152 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-12-25 23:45:38 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011-12-17 12:16:00 | 000,730,266 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2011-12-17 12:15:59 | 000,642,154 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011-12-17 12:15:59 | 000,205,646 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2011-12-17 12:15:59 | 000,156,028 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011-12-12 22:07:25 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-01-08 00:01:02 | 000,000,224 | ---- | C] () -- C:\Boot.bak
[2012-01-08 00:00:55 | 000,262,400 | RHS- | C] () -- C:\cmldr
[2012-01-02 15:55:33 | 000,000,237 | ---- | C] () -- C:\user.js
[2011-12-28 17:52:17 | 000,078,394 | ---- | C] () -- C:\Documents and Settings\xp\Moje dokumenty\ts3_clientui-win32-14345-2011-12-28 17_52_17.546875.dmp
[2011-12-14 16:55:31 | 000,189,248 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011-12-14 16:55:16 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2011-06-30 00:41:06 | 000,051,186 | ---- | C] () -- C:\Documents and Settings\xp\Dane aplikacji\room_v3.dat
[2011-05-31 07:39:50 | 000,058,368 | ---- | C] () -- C:\WINDOWS\System32\bdmpegv.dll
[2011-05-31 07:38:18 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\bdmjpeg.dll
[2011-05-02 00:08:28 | 000,046,658 | ---- | C] () -- C:\Documents and Settings\xp\Dane aplikacji\room.dat
[2010-11-29 23:41:10 | 000,578,736 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-11-13 21:48:52 | 000,066,778 | ---- | C] () -- C:\WINDOWS\War3Unin.dat
[2010-09-29 20:04:45 | 000,052,028 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010-08-10 20:39:28 | 000,683,791 | ---- | C] () -- C:\WINDOWS\System32\drivers\torususb.sys
[2010-08-10 20:39:28 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\stmclean.exe
[2010-08-10 20:39:28 | 000,000,915 | ---- | C] () -- C:\WINDOWS\System32\setup.ini
[2010-08-10 20:39:28 | 000,000,161 | ---- | C] () -- C:\WINDOWS\DSLSetup.ini
[2010-07-01 17:57:46 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-07-01 14:59:55 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2010-07-01 14:59:55 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2010-07-01 14:59:55 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2010-07-01 13:49:58 | 000,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-07-01 13:49:57 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-07-01 13:49:56 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2010-07-01 13:49:56 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-07-01 13:49:55 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-07-01 13:14:11 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2010-05-28 16:49:53 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\proc-503976190.bin
[2010-05-04 21:19:47 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-04-30 16:12:49 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010-04-30 15:55:31 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-04-30 15:55:30 | 000,124,416 | ---- | C] () -- C:\Documents and Settings\xp\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-01-17 17:04:43 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009-01-17 16:49:03 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009-01-17 16:47:55 | 000,278,152 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009-01-17 16:25:06 | 000,001,648 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009-01-17 16:22:03 | 001,630,208 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2009-01-17 16:22:03 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2009-01-17 16:22:03 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2009-01-17 16:22:03 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2009-01-17 16:22:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009-01-17 16:22:00 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009-01-17 16:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009-01-17 16:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009-01-17 16:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2009-01-17 16:15:21 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2009-01-17 16:04:39 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009-01-17 15:59:48 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008-07-10 09:44:23 | 000,007,237 | ---- | C] () -- C:\WINDOWS\cadx2.ini
[2004-08-03 23:56:48 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004-08-02 13:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2001-10-26 17:15:16 | 000,730,266 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2001-10-26 17:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2001-10-26 17:15:16 | 000,205,646 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2001-10-26 17:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2001-08-23 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001-08-23 14:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001-08-17 22:30:24 | 000,642,154 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001-08-17 22:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001-08-17 22:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001-08-17 22:30:22 | 000,156,028 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001-08-17 22:15:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001-07-21 23:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001-07-21 23:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001-07-21 23:24:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-10-01 13:35:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\bearsharemediabartb
[2010-08-03 11:44:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\18290
[2010-06-11 18:29:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Activision
[2011-03-23 22:05:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ArcaBit
[2010-06-03 19:33:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk
[2012-01-02 15:54:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon
[2010-11-13 16:16:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2011-09-12 09:58:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easybits GO
[2010-04-30 15:08:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2010-05-01 17:37:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2011-09-13 11:57:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GameXN
[2010-12-29 23:13:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\id Software
[2010-07-25 10:48:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2011-11-15 10:37:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nexon
[2011-11-14 11:33:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NexonEU
[2010-12-19 00:36:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-07-25 10:53:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2011-12-14 20:38:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2010-06-07 15:42:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\ArcaBit
[2010-06-07 14:42:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\ArcaBit
[2010-09-10 19:41:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\AskToolbar
[2010-05-30 21:37:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\Autodesk
[2012-01-02 15:54:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\Babylon
[2012-01-04 21:11:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\BabylonToolbar
[2010-10-16 11:06:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\BattleMonitor.CBB9E7AA66E25114B3A13CCE3F3CE2192E229F78.1
[2010-05-30 21:52:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\bearsharemediabartb
[2010-11-13 16:19:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\DAEMON Tools Lite
[2011-02-11 21:49:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\Gadu-Gadu 10
[2010-05-28 16:49:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\GanymedeNet
[2011-09-12 09:59:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\go
[2010-11-20 00:15:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\GrabIt
[2011-02-16 20:41:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\gtk-2.0
[2010-12-29 23:13:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\id Software
[2010-07-25 11:16:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\Nokia
[2010-05-01 18:48:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\OpenFM
[2010-07-25 11:16:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\PC Suite
[2012-01-04 21:12:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\PriceGong
[2011-12-14 16:55:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\PunkBuster
[2010-08-09 13:37:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\Razer
[2010-05-07 14:35:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\Soldat
[2012-01-02 15:57:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\SumatraPDF
[2011-11-07 17:24:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\TS3Client
[2011-01-31 19:48:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\Ubisoft
[2010-05-08 18:53:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\Uniblue
[2012-01-09 15:45:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xp\Dane aplikacji\uTorrent
[2012-01-09 18:11:03 | 000,000,228 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
[2012-01-09 15:32:49 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\xp\Pulpit\Ventrilo18.exe:SummaryInformation

< End of report >