OTL logfile created on: 2012-05-28 14:22:24 - Run 1
OTL by OldTimer - Version 3.2.43.1     Folder = c:\Util\software\antyspyware\OTL
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
511,36 Mb Total Physical Memory | 76,86 Mb Available Physical Memory | 15,03% Memory free
1,22 Gb Paging File | 0,32 Gb Available in Paging File | 26,10% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,25 Gb Total Space | 10,94 Gb Free Space | 29,36% Space Free | Partition Type: FAT32
 
Computer Name: TADEUSZ | User Name: admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-05-28 12:23:24 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012-05-23 02:30:50 | 000,595,968 | ---- | M] (OldTimer Tools) -- c:\Util\software\antyspyware\OTL\OTL.exe
PRC - [2007-09-19 20:38:38 | 000,303,616 | ---- | M] (ArcaBit) -- C:\Program Files\ArcaVir\Bin\avmonsv.exe
PRC - [2007-09-19 20:38:28 | 000,199,168 | ---- | M] (ArcaBit) -- C:\Program Files\ArcaVir\Bin\ABmenu.exe
PRC - [2007-09-19 20:34:36 | 000,114,754 | ---- | M] (ArcaBit sp. z o.o.) -- C:\Program Files\ArcaVir\Bin\netmonsv.exe
PRC - [2007-09-19 20:34:36 | 000,070,656 | ---- | M] (ArcaBit) -- C:\Program Files\ArcaVir\Bin\ABRegMon.exe
PRC - [2007-09-19 20:34:34 | 000,076,288 | ---- | M] (ArcaBit) -- C:\Program Files\ArcaVir\Bin\arcascan.exe
PRC - [2007-06-13 15:23:50 | 001,034,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-04-16 11:24:32 | 000,819,200 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
PRC - [2007-04-16 11:22:16 | 000,970,752 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
PRC - [2007-04-16 11:17:58 | 000,487,424 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
PRC - [2005-04-20 14:08:32 | 000,737,381 | ---- | M] (Cyberlink) -- C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
PRC - [2005-04-20 14:08:30 | 000,061,440 | ---- | M] (Cyberlink) -- C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
PRC - [2005-04-20 14:07:32 | 000,110,663 | ---- | M] () -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
PRC - [2005-04-20 14:07:24 | 000,221,257 | ---- | M] () -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
PRC - [2005-04-20 14:05:46 | 000,127,118 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerCinema\PCMService.exe
PRC - [2005-02-02 06:51:00 | 000,826,916 | ---- | M] (C. Ghisler & Co.) -- C:\Util\totalcmd\TOTALCMD.EXE
PRC - [2004-11-04 18:40:08 | 000,098,394 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
PRC - [2004-10-14 09:11:10 | 001,388,544 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
PRC - [2004-08-04 19:05:46 | 000,337,103 | RHS- | M] () -- C:\WINDOWS\SYSTEM32\ctfnom.exe
PRC - [2004-08-04 00:44:22 | 000,815,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SYSTEM32\mmc.exe
PRC - [2003-12-31 17:39:04 | 000,040,960 | ---- | M] () -- C:\WINDOWS\vsnpstd.exe
PRC - [2002-09-20 14:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
PRC - [2001-11-12 13:31:48 | 000,020,480 | ---- | M] (X10) -- C:\Program Files\Common Files\X10\Common\X10nets.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-05-28 12:23:22 | 001,952,696 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012-04-11 22:17:02 | 008,797,344 | ---- | M] () -- C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_11_2_202_228.dll
MOD - [2007-09-19 20:38:24 | 000,114,688 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\mon_cfg.dll
MOD - [2007-09-19 20:38:22 | 000,505,400 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\avengn.dll
MOD - [2007-09-19 20:34:36 | 000,876,544 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\libeay32.dll
MOD - [2007-09-19 20:34:36 | 000,159,744 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\ssleay32.dll
MOD - [2007-09-19 20:34:36 | 000,106,496 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\filesend.dll
MOD - [2007-09-19 20:34:36 | 000,081,920 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\log_adm.dll
MOD - [2007-09-19 20:34:36 | 000,057,405 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\mimemrg.dll
MOD - [2007-09-19 20:34:36 | 000,057,344 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\ArcaShl.dll
MOD - [2007-09-19 20:34:36 | 000,045,117 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\netsvcfg.dll
MOD - [2007-09-19 20:34:36 | 000,045,115 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\scanmod.dll
MOD - [2007-09-19 20:34:36 | 000,020,537 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\avlang.dll
MOD - [2007-09-19 20:34:36 | 000,014,848 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\localps.dll
MOD - [2007-09-19 20:34:34 | 000,159,744 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\AvQuar.dll
MOD - [2007-09-19 20:34:34 | 000,004,608 | ---- | M] () -- C:\Program Files\ArcaVir\Bin\arcascp.dll
MOD - [2007-04-16 11:17:32 | 000,118,784 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll
MOD - [2007-03-30 07:41:34 | 001,167,360 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\acAuth.dll
MOD - [2005-10-20 10:36:08 | 000,077,824 | R--- | M] () -- C:\Program Files\HP\Digital Imaging\bin\crm\xmltok.dll
MOD - [2005-10-20 10:36:08 | 000,065,536 | R--- | M] () -- C:\Program Files\HP\Digital Imaging\bin\crm\xmlparse.dll
MOD - [2005-04-20 14:07:32 | 000,110,663 | ---- | M] () -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
MOD - [2005-04-20 14:07:24 | 000,221,257 | ---- | M] () -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
MOD - [2005-04-20 14:06:52 | 000,061,513 | ---- | M] () -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSchMgr.dll
MOD - [2005-04-20 14:06:48 | 000,176,207 | ---- | M] () -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapEngine.dll
MOD - [2005-04-20 14:06:48 | 000,028,672 | ---- | M] () -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvcps.dll
MOD - [2004-11-02 16:57:08 | 000,121,344 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2004-08-04 19:05:46 | 000,337,103 | RHS- | M] () -- C:\WINDOWS\SYSTEM32\ctfnom.exe
MOD - [2004-08-04 00:44:04 | 000,014,336 | ---- | M] () -- C:\WINDOWS\SYSTEM32\msdmo.dll
MOD - [2003-12-31 17:39:04 | 000,040,960 | ---- | M] () -- C:\WINDOWS\vsnpstd.exe
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2012-05-28 12:23:26 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-04-11 22:17:04 | 000,253,600 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2007-09-19 20:38:38 | 000,303,616 | ---- | M] (ArcaBit) [Auto | Running] -- C:\Program Files\ArcaVir\Bin\avmonsv.exe -- (ArcaMonSvc)
SRV - [2007-09-19 20:34:36 | 000,170,496 | ---- | M] (ArcaBit Sp. z o. o.) [On_Demand | Stopped] -- C:\Program Files\ArcaVir\Bin\arcaserv.exe -- (arcaserv)
SRV - [2007-09-19 20:34:36 | 000,114,754 | ---- | M] (ArcaBit sp. z o.o.) [Auto | Running] -- C:\Program Files\ArcaVir\Bin\netmonsv.exe -- (ABNetMon)
SRV - [2007-09-19 20:34:34 | 000,076,288 | ---- | M] (ArcaBit) [On_Demand | Running] -- C:\Program Files\ArcaVir\Bin\arcascan.exe -- (ArcaScan)
SRV - [2006-03-03 21:03:10 | 000,069,632 | ---- | M] (HP) [Auto | Stopped] -- C:\WINDOWS\SYSTEM32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2005-04-20 14:08:30 | 000,061,440 | ---- | M] (Cyberlink) [Auto | Running] -- C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe -- (CyberLink Media Library Service)
SRV - [2005-04-20 14:07:32 | 000,110,663 | ---- | M] () [Auto | Running] -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe -- (CLSched) CyberLink Task Scheduler (CTS)
SRV - [2005-04-20 14:07:24 | 000,221,257 | ---- | M] () [Auto | Running] -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe -- (CLCapSvc) CyberLink Background Capture Service (CBCS)
SRV - [2002-09-20 14:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))
SRV - [2001-11-12 13:31:48 | 000,020,480 | ---- | M] (X10) [On_Demand | Running] -- C:\Program Files\Common Files\X10\Common\X10nets.exe -- (x10nets)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2012-04-21 19:11:06 | 000,145,152 | ---- | M] (ITE                      ) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\IT9135BDA.sys -- (IT9135BDA)
DRV - [2007-09-19 20:38:44 | 000,476,896 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\ArcaVir\Bin\arcaen.sys -- (arcaen)
DRV - [2007-09-19 20:34:36 | 000,048,322 | ---- | M] (ArcaBit sp. z o.o.) [Kernel | System | Running] -- C:\Program Files\ArcaVir\Bin\abtdi.sys -- (ABTDI)
DRV - [2007-09-19 20:34:34 | 000,086,880 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\ArcaVir\Bin\arcaev.sys -- (arcaev)
DRV - [2007-09-19 20:34:34 | 000,019,968 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\ArcaVir\Bin\arcafd.sys -- (arcafd)
DRV - [2007-05-11 03:10:50 | 000,034,704 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\blueletaudio.sys -- (BlueletAudio)
DRV - [2007-05-09 01:59:40 | 000,036,496 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\btcusb.sys -- (Btcsrusb)
DRV - [2007-04-04 13:46:52 | 002,210,048 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\w29n51.sys -- (w29n51) Sterownik karty Intel(R)
DRV - [2007-03-29 15:19:36 | 000,012,416 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\s24trans.sys -- (s24trans)
DRV - [2007-03-05 06:00:04 | 000,027,792 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\BlueletSCOAudio.sys -- (BlueletSCOAudio)
DRV - [2007-03-05 05:59:04 | 000,018,320 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\btnetdrv.sys -- (BT)
DRV - [2007-03-05 05:57:14 | 000,019,472 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\VHIDMini.sys -- (VHidMinidrv)
DRV - [2007-03-05 05:56:18 | 000,035,600 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\BTHidMgr.sys -- (BTHidMgr)
DRV - [2007-03-05 05:55:12 | 000,020,880 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\VBTEnum.sys -- (BTHidEnum)
DRV - [2007-03-05 05:53:18 | 000,044,304 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\VcommMgr.sys -- (VcommMgr)
DRV - [2007-03-05 05:52:18 | 000,034,448 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\VComm.sys -- (VComm)
DRV - [2007-02-25 05:01:12 | 000,057,320 | R--- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\btwusb.sys -- (BTWUSB)
DRV - [2006-11-21 22:41:18 | 000,022,416 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Program Files\IVT Corporation\BlueSoleil\device\Win2k\BTNetFilter.sys -- (BTNetFilter)
DRV - [2006-04-28 15:34:00 | 000,882,688 | R--- | M] (Philips Semiconductors GmbH) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\3xHybrid.sys -- (3xHybrid)
DRV - [2005-12-18 20:42:12 | 000,008,801 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\DScaler\DSDrv4.sys -- (DSDrv4)
DRV - [2005-06-07 22:19:52 | 001,201,152 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\ati2mtag.sys -- (ati2mtag)
DRV - [2005-04-19 10:03:26 | 001,066,278 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\AGRSM.sys -- (AgereSoftModem)
DRV - [2004-12-06 17:55:20 | 000,126,720 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\b57xp32.sys -- (b57w2k)
DRV - [2004-08-03 23:10:14 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\MPE.sys -- (MPE)
DRV - [2004-08-03 22:59:44 | 000,095,360 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\atapi.sys -- (atapi)
DRV - [2004-04-30 09:37:02 | 000,160,640 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\a347bus.sys -- (a347bus)
DRV - [2004-04-30 09:33:00 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\a347scsi.sys -- (a347scsi)
DRV - [2004-03-22 21:52:12 | 000,301,824 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\snpstd.sys -- (snpstd) USB PC Camera (SN9C102)
DRV - [2004-01-16 13:02:58 | 000,017,408 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\x10ufx2.sys -- (XUIF)
DRV - [2003-07-29 00:49:00 | 000,182,101 | ---- | M] (O2 Micro ) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\o2mmb.sys -- (CONAN)
DRV - [2003-07-24 14:50:00 | 000,005,689 | ---- | M] (O2 Micro) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\MbxStby.sys -- (MbxStby)
DRV - [2001-10-26 17:07:38 | 000,036,425 | ---- | M] (SMC) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\smcirda.sys -- (SMCIRDA)
DRV - [2000-11-28 21:47:16 | 000,004,256 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\UserPort.sys -- (UserPort)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.wp.pl/
IE - HKCU\..\SearchScopes,DefaultScope = {0A81102C-20FD-4E56-94FF-388DB49A30DA}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0A81102C-20FD-4E56-94FF-388DB49A30DA}: "URL" = http://www.google.pl/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_228.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll File not found
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2007-09-19 21:47:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2007-09-19 21:47:24 | 000,000,000 | ---D | M]
 
[2008-10-25 14:09:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Extensions
[2007-09-19 21:49:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\gfe67q5l.default\extensions
[2007-09-19 21:49:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\wr3t82a2.default\extensions
[2012-05-26 15:43:26 | 000,000,000 | ---D | M] (Flagfox) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\wr3t82a2.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2007-09-19 21:47:34 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\zhsxouph.default\extensions
[2007-09-19 21:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-05-28 12:23:24 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-04-11 22:42:18 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
[2012-04-11 22:42:18 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-04-11 22:42:18 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-04-11 22:42:18 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-04-11 22:42:18 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-04-11 22:42:18 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\18.0.1025.152\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.1.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.1.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.1.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.1.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.1.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np32dsw.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)  (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\18.0.1025.152\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\18.0.1025.152\pdf.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\npSkypeChromePlugin.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
 
O1 HOSTS File: ([2001-10-26 15:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\SYSTEM32\DRIVERS\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O4 - HKLM..\Run: [ABmenu] C:\Program Files\ArcaVir\Bin\ABmenu.exe (ArcaBit)
O4 - HKLM..\Run: [ABREGMON] C:\Program Files\ArcaVir\Bin\ABRegMon.exe (ArcaBit)
O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation)
O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\SYSTEM32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [PCMService] C:\Program Files\CyberLink\PowerCinema\PCMService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe ()
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKCU..\Run: [C:\Util\software\liczniki_pobranych_danych\NetMeter\NetMeter.exe] C:\Util\software\liczniki_pobranych_danych\NetMeter\NetMeter.exe ()
O4 - HKCU..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\BlueSoleil.lnk = C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe (IVT Corporation.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Kalendarz XP.lnk = C:\Program Files\Kalendarz XP\Kalendarz.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: ctfmom = C:\WINDOWS\system32\ctfnom.exe ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Value error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab (IWinAmpActiveX Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.204.152.34 194.204.159.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4A76C0A3-5733-4869-A449-7C57050F641B}: DhcpNameServer = 194.204.152.34 194.204.159.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E06FEA94-CFA9-418D-8CC6-B62E4D6DF1A8}: DhcpNameServer = 194.204.152.34 194.204.159.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (ctfnom.exe) - C:\WINDOWS\System32\ctfnom.exe ()
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\SYSTEM32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\WgaLogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\WEB\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\WEB\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2019-09-19 16:36:26 | 000,000,133 | -H-- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]
O33 - MountPoints2\{d49c81d0-647b-11e1-b2b4-00116768593b}\Shell - "" = AutoRun
O33 - MountPoints2\{d49c81d0-647b-11e1-b2b4-00116768593b}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2019-09-19 16:37:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\NetHood
[2019-09-19 16:37:46 | 000,000,000 | ---D | C] -- C:\Moje dokumenty
[2019-09-19 16:36:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System\CatRoot
[2019-09-19 16:36:09 | 000,000,000 | --SD | C] -- C:\WINDOWS\Temporary Internet Files
[2019-09-19 16:36:09 | 000,000,000 | --SD | C] -- C:\WINDOWS\Historia
[2019-09-19 16:36:09 | 000,000,000 | --SD | C] -- C:\WINDOWS\Cookies
[2019-09-19 16:36:08 | 000,000,000 | ---D | C] -- C:\Program Files\DirectX
[2019-09-19 16:35:31 | 000,000,000 | --SD | C] -- C:\WINDOWS\Ulubione
[2019-09-19 16:35:27 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2019-09-19 16:35:26 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2019-09-19 16:35:01 | 000,000,000 | ---D | C] -- C:\Program Files\Uninstall Information
[2019-09-19 16:34:04 | 000,000,000 | -H-D | C] -- C:\WINDOWS\Recent
[2019-09-19 16:34:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\SendTo
[2019-09-19 16:34:03 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2019-09-19 16:34:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\Menu Start
[2019-09-19 16:33:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Pulpit
[2019-09-19 16:33:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\All Users
[2012-05-28 14:15:25 | 000,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll
[2012-05-28 14:15:24 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2012-05-28 14:15:22 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll
[2012-05-28 14:15:21 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll
[2012-05-28 14:15:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2012-05-28 14:15:04 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll
[2012-05-28 12:27:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\admin\Recent
[2012-05-28 12:23:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla
[2012-05-28 12:23:31 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2019-09-19 16:36:26 | 000,000,133 | -H-- | M] () -- C:\AUTOEXEC.BAT
[2019-09-19 16:36:26 | 000,000,100 | -H-- | M] () -- C:\CONFIG.SYS
[2019-09-19 16:35:34 | 000,011,232 | -H-- | M] () -- C:\Program Files\folder.htt
[2012-05-28 14:21:00 | 000,001,972 | ---- | M] () -- C:\WINDOWS\WINCMD.INI
[2012-05-28 12:48:50 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-05-28 11:16:04 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-05-26 15:13:08 | 000,001,723 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2019-09-19 16:36:24 | 000,000,133 | -H-- | C] () -- C:\AUTOEXEC.BAT
[2019-09-19 16:36:24 | 000,000,100 | -H-- | C] () -- C:\CONFIG.SYS
[2019-09-19 16:35:32 | 000,011,232 | -H-- | C] () -- C:\Program Files\folder.htt
[2012-04-21 19:20:04 | 000,175,616 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2012-04-21 19:12:30 | 000,000,014 | ---- | C] () -- C:\WINDOWS\System32\systeminfo.dll
[2012-04-21 19:11:11 | 000,000,147 | ---- | C] () -- C:\WINDOWS\System32\AF15IRTBL.bin
[2012-02-20 17:07:50 | 000,000,221 | ---- | C] () -- C:\WINDOWS\NCLogConfig.ini
[2011-03-05 07:27:29 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\msds.dat

< End of report >