OTL logfile created on: 2012-07-25 18:40:43 - Run 1
OTL by OldTimer - Version 3.2.54.1     Folder = C:\Documents and Settings\Anusia i Kamiś\Pulpit\Programy
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1,99 Gb Total Physical Memory | 1,27 Gb Available Physical Memory | 63,64% Memory free
3,84 Gb Paging File | 3,23 Gb Available in Paging File | 84,09% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 69,65 Gb Total Space | 3,03 Gb Free Space | 4,35% Space Free | Partition Type: NTFS
Drive D: | 69,64 Gb Total Space | 2,99 Gb Free Space | 4,29% Space Free | Partition Type: NTFS
 
Computer Name: MI-26CB73444457 | User Name: Anusia i Kamiś | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-07-25 12:59:04 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Anusia i Kamiś\Pulpit\Programy\OTL.exe
PRC - [2012-07-10 06:09:02 | 001,250,328 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2012-06-14 16:33:54 | 001,288,104 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2012-06-14 16:33:48 | 004,431,664 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2012-05-24 10:18:04 | 000,021,416 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
PRC - [2012-04-27 02:13:06 | 003,521,424 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
PRC - [2011-12-14 16:51:46 | 001,398,440 | ---- | M] (Ask) -- C:\Program Files\Ask.com\Updater\Updater.exe
PRC - [2011-03-31 15:43:48 | 000,156,672 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2011-03-21 14:21:24 | 000,632,832 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2011-03-13 16:53:20 | 000,114,992 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files\SweetIM\Messenger\SweetIM.exe
PRC - [2009-02-24 19:26:51 | 000,208,896 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Temp\RtkBtMnt.exe
PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006-12-19 15:16:20 | 000,079,432 | ---- | M] (Broadcom Corporation) -- C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe
PRC - [2004-08-22 17:05:02 | 000,081,920 | ---- | M] (DAEMON'S HOME) -- C:\Program Files\D-Tools\daemon.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-07-10 06:09:00 | 000,438,296 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\20.0.1132.57\ppgooglenaclpluginchrome.dll
MOD - [2012-07-10 06:08:59 | 003,972,120 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\20.0.1132.57\pdf.dll
MOD - [2012-07-10 06:07:22 | 000,140,328 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\20.0.1132.57\avutil-51.dll
MOD - [2012-07-10 06:07:21 | 000,262,184 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\20.0.1132.57\avformat-54.dll
MOD - [2012-07-10 06:07:19 | 002,386,984 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\20.0.1132.57\avcodec-54.dll
MOD - [2012-07-07 17:33:08 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2012-07-03 15:41:46 | 004,051,456 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\SwiftShader\1.0.0.3\libGLESv2.dll
MOD - [2012-07-03 15:41:46 | 000,100,864 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\SwiftShader\1.0.0.3\libEGL.dll
MOD - [2012-05-27 22:54:30 | 000,539,648 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\5813730f8ff76293af7b693e99e0ec39\PresentationFramework.Luna.ni.dll
MOD - [2012-05-27 22:54:26 | 014,329,856 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\bb31564e82251017821111bac108c483\PresentationFramework.ni.dll
MOD - [2012-05-27 22:53:59 | 012,218,368 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationCore\b1a53f5cff913814899326b4965c6a9b\PresentationCore.ni.dll
MOD - [2012-05-27 22:53:39 | 003,325,440 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\WindowsBase\d44f780819640a42f062b2684ee0d1a8\WindowsBase.ni.dll
MOD - [2012-05-24 10:18:13 | 000,115,137 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Temp\c25e8b3d-33a7-42bf-85e6-6880c6753136\CliSecureRT.dll
MOD - [2012-05-24 10:18:04 | 000,649,640 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\CommonModule.dll
MOD - [2012-05-24 10:18:04 | 000,537,000 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\FirmwareUpdateAgent.Common.dll
MOD - [2012-05-24 10:18:04 | 000,021,416 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
MOD - [2012-05-24 10:18:04 | 000,007,168 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\IPCServer.dll
MOD - [2012-05-24 10:18:04 | 000,003,584 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\ISharedIPCInterface.dll
MOD - [2010-08-15 00:27:57 | 000,998,400 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\bc1cf48ba7dc00f45d0e949c49ab677a\System.Management.ni.dll
MOD - [2010-08-14 23:03:42 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\a6dbe24cbfe3ab6b318ed3095cc572d8\System.Xml.ni.dll
MOD - [2010-08-14 23:03:20 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\439c466b60614915587c5273eaf0ca7f\System.Windows.Forms.ni.dll
MOD - [2010-08-14 23:02:54 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\dcc0244092fe52e6885b50be25ef3b31\System.Drawing.ni.dll
MOD - [2010-08-14 23:00:42 | 002,295,296 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\faeda674832135a080bc73eda51813ff\System.Core.ni.dll
MOD - [2010-08-14 22:59:18 | 007,949,824 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\08ffa4d388d5f007869aa7651c458e7c\System.ni.dll
MOD - [2010-08-14 22:59:05 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\7bffd7ff2009f421fe5d229927588496\mscorlib.ni.dll
MOD - [2004-08-22 17:04:56 | 000,069,120 | ---- | M] () -- C:\WINDOWS\daemon.dll
MOD - [2003-12-30 21:52:00 | 000,007,168 | ---- | M] () -- C:\Program Files\D-Tools\Plugins\Images\bw5mount.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2012-06-14 16:33:54 | 001,288,104 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2011-03-21 14:21:24 | 000,632,832 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2006-12-19 15:16:20 | 000,079,432 | ---- | M] (Broadcom Corporation) [Auto | Running] -- C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe -- (ASFIPmon)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\ZDPSp50.sys -- (ZDPSp50)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\ZDCndis5.SYS -- (ZDCndis5)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2012-06-14 16:34:08 | 000,104,736 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2012-06-14 16:33:52 | 000,121,216 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2012-06-14 16:33:28 | 000,161,880 | ---- | M] (ESET) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2011-06-02 07:47:22 | 000,136,808 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2011-06-02 07:47:22 | 000,121,064 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadbus.sys -- (ssadbus)
DRV - [2011-06-02 07:47:22 | 000,114,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadserd.sys -- (ssadserd)
DRV - [2011-06-02 07:47:22 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV - [2011-05-18 11:12:38 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011-05-18 11:12:36 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011-05-18 11:12:32 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2011-05-18 11:12:28 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010-12-21 07:55:02 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadadb.sys -- (androidusb)
DRV - [2010-09-25 13:48:49 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2008-08-26 11:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007-05-31 11:04:56 | 004,424,192 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2007-05-02 12:00:58 | 000,546,976 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2007-02-16 16:46:00 | 000,160,256 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2007-01-25 05:44:06 | 000,290,304 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)
DRV - [2006-12-23 02:56:44 | 000,988,800 | R--- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2006-12-23 02:56:00 | 000,209,664 | R--- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2006-12-23 02:55:56 | 000,730,112 | R--- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2006-12-19 15:16:24 | 000,010,480 | ---- | M] (Broadcom Corporation) [Kernel | Auto | Running] -- C:\Program Files\Broadcom\ASFIPMon\BASFND.sys -- (BASFND)
DRV - [2006-11-30 16:14:22 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45unic.sys -- (se45unic)
DRV - [2006-11-30 16:14:14 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45obex.sys -- (se45obex)
DRV - [2006-11-30 16:14:10 | 000,088,624 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45mgmt.sys -- (se45mgmt)
DRV - [2006-11-30 16:14:10 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45nd5.sys -- (se45nd5)
DRV - [2006-11-30 16:14:04 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45mdm.sys -- (se45mdm)
DRV - [2006-11-30 16:14:04 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45mdfl.sys -- (se45mdfl)
DRV - [2006-11-30 16:13:56 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45bus.sys -- (se45bus)
DRV - [2006-06-10 00:38:24 | 000,006,909 | R--- | M] (Conexant Systems, Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\UIUSYS.SYS -- (UIUSys)
DRV - [2004-11-29 20:14:30 | 000,019,648 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfsync02.sys -- (sfsync02)
DRV - [2004-11-25 18:41:08 | 000,046,080 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01)
DRV - [2004-10-28 12:47:59 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02)
DRV - [2004-08-22 16:31:48 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\d347prt.sys -- (d347prt)
DRV - [2004-08-22 16:31:10 | 000,155,136 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\d347bus.sys -- (d347bus)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.mirarsearch.com/?useie5=1&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\..\SearchScopes,DefaultScope = {F22EB1E3-FFED-403B-BC6A-F876FFA98A9E}
IE - HKLM\..\SearchScopes\{F22EB1E3-FFED-403B-BC6A-F876FFA98A9E}: "URL" = http://www.mirarsearch.com/?q={searchTerms}&a=SEARCH
 
 
IE - HKU\.DEFAULT\..\SearchScopes\{9E97782C-FCA4-4365-A16A-A4E563F293BD}: "URL" = http://www.spacequery.com/?prt=SPACEQUERY199&keywords={searchTerms}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\..\SearchScopes\{9E97782C-FCA4-4365-A16A-A4E563F293BD}: "URL" = http://www.spacequery.com/?prt=SPACEQUERY199&keywords={searchTerms}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.google.pl/
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\SearchScopes,DefaultScope = {C6335DAA-CB93-4489-B9C4-87B7DCC846C2}
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=UT2V5&o=15158&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=UG&apn_dtid=&apn_uid=EC4663F6-D7B4-405D-A8B9-12A2B3CD1D1E&apn_sauid=47F61A8E-F7AA-4AEC-9EEE-196AFEACE5B6
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\SearchScopes\{C6335DAA-CB93-4489-B9C4-87B7DCC846C2}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8&rlz=1I7GGLL_en
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&crg=2.1001.75000&q={searchTerms}
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\SearchScopes\{FD5CD67F-DA82-6C3B-A049-4E82BBB6B6E2}: "URL" = http://www.etypestart.com/s/?q={searchTerms}&src=defsearch&provider=&provider_name=yahoo&provider_code=&partner_id=697&product_id=730&affiliate_id=&channel=&toolbar_id=205&toolbar_version=2.3.0&install_country=PL&install_date=20110910&user_guid=E2CECD02E7D9413DA89E3C62556FF27D&machine_id=591830aa650a27ef5c0ea1987229eb90&browser=IE&os=win&os_version=5.1-x86-SP3&iesrc={referrer:source}
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "Brothersoft Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "Yahoo"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4}:3.3.3.2
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.12.2.100006
FF - prefs.js..extensions.enabledItems: radiobar@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: {0A328249-98DF-476C-9D25-3853C961DAB9}:1.0
FF - prefs.js..extensions.enabledItems: {ce18769b-c7fa-42d2-860d-17c4662c70ad}:3.3.3.2
FF - prefs.js..extensions.enabledItems: ffxtlbr@Facemoods.com:1.1.0
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.7.0190
FF - prefs.js..extensions.enabledItems: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}:3.3.3.2
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..extensions.enabledItems: {e8de9422-3b2c-4243-bf6f-235da84d8ef8}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {EEE6C361-6118-11DC-9C72-001320C79847}:1.2.0.2
FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?client=ff&src=kw&tb=UT2V5&o=15158&locale=en_US&apn_uid=EC4663F6-D7B4-405D-A8B9-12A2B3CD1D1E&apn_ptnrs=UG&apn_sauid=47F61A8E-F7AA-4AEC-9EEE-196AFEACE5B6&apn_dtid=&&q="
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "SweetIM Search"
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "http://websearch.ask.com/redirect?client=ff&src=kw&tb=UT2V5&o=15158&locale=en_US&apn_uid=EC4663F6-D7B4-405D-A8B9-12A2B3CD1D1E&apn_ptnrs=UG&apn_sauid=47F61A8E-F7AA-4AEC-9EEE-196AFEACE5B6&apn_dtid=&q="
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.3088: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.11.3006: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-07-24 19:14:38 | 000,000,000 | ---D | M]
 
[2010-02-25 18:58:11 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Extensions
[2012-03-12 21:56:39 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions
[2010-07-25 11:17:44 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011-12-05 20:10:33 | 000,000,000 | ---D | M] (Softonic-Eng7 Community Toolbar) -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}
[2011-12-06 20:52:29 | 000,000,000 | ---D | M] (MyAshampoo Community Toolbar) -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}
[2011-12-05 20:10:38 | 000,000,000 | ---D | M] (Babylon-EnglishBB Community Toolbar) -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions\{ce18769b-c7fa-42d2-860d-17c4662c70ad}
[2011-12-05 20:10:40 | 000,000,000 | ---D | M] (Brothersoft Community Toolbar) -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}
[2012-03-12 21:56:39 | 000,000,000 | ---D | M] (DealPly) -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
[2011-05-18 20:15:02 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2011-04-22 17:11:15 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions\DTToolbar@toolbarnet.com
[2011-04-22 17:10:56 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions\engine@conduit.com
[2012-03-12 21:55:45 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions\ffxtlbr@babylon.com
[2010-06-17 19:55:14 | 000,000,000 | ---D | M] (RadioBar Toolbar) -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions\radiobar@toolbar
[2011-12-28 21:17:39 | 000,000,000 | ---D | M] ("Ask Toolbar") -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\extensions\toolbar@ask.com
[2011-12-30 14:15:20 | 000,002,564 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\searchplugins\askcom.xml
[2010-03-28 11:04:34 | 000,002,476 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\searchplugins\BearShareWebSearch.xml
[2010-09-12 17:28:52 | 000,000,925 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\searchplugins\conduit.xml
[2010-09-29 19:53:06 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\searchplugins\daemon-search.xml
[2011-05-18 20:17:58 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\searchplugins\SweetIM Search.xml
[2011-05-18 20:14:58 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\searchplugins\sweetim.xml
[2011-09-09 02:36:51 | 000,001,565 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\searchplugins\web-search.xml
[2011-09-10 22:39:03 | 000,001,391 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Mozilla\Firefox\Profiles\1c5ddg52.default\searchplugins\yahoo-zugo.xml
[2011-12-30 14:30:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-06-17 12:03:06 | 000,000,000 | ---D | M] (SpaceQuery) -- C:\Program Files\Mozilla Firefox\extensions\{0A328249-98DF-476C-9D25-3853C961DAB9}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ANUSIA I KAMIĹ›\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\1C5DDG52.DEFAULT\EXTENSIONS\{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ANUSIA I KAMIĹ›\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\1C5DDG52.DEFAULT\EXTENSIONS\{A1E75A0E-4397-4BA8-BB50-E19FB66890F4}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ANUSIA I KAMIĹ›\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\1C5DDG52.DEFAULT\EXTENSIONS\{CE18769B-C7FA-42D2-860D-17C4662C70AD}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ANUSIA I KAMIĹ›\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\1C5DDG52.DEFAULT\EXTENSIONS\{E8DE9422-3B2C-4243-BF6F-235DA84D8EF8}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ANUSIA I KAMIĹ›\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\1C5DDG52.DEFAULT\EXTENSIONS\FFXTLBR@FACEMOODS.COM.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ANUSIA I KAMIĹ›\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\1C5DDG52.DEFAULT\EXTENSIONS\TOOLBAR@ASK.COM
[2010-09-15 05:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010-03-28 11:04:34 | 000,002,476 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\BearShareWebSearch.xml
[2010-03-28 18:56:18 | 000,002,035 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrchFxt.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - homepage: http://www.google.pl/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.pl/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Anusia i Kami\u015B\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Anusia i Kami\u015B\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\20.0.1132.57\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Anusia i Kami\u015B\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\20.0.1132.57\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Anusia i Kami\u015B\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Documents and Settings\Anusia i Kami\u015B\Dane aplikacji\Mozilla\plugins\np-mswmp.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.220.4 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U22 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Anusia i Kami\u015B\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)  (Enabled) = C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Szukaj w Google = C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Green Turf = C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\egibdfeapdnfgniledopjbhchaheolem\1.35_0\
CHR - Extension: DealPly = C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.0.7.2_0\
CHR - Extension: Gmail = C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Mirar) - {04778CA9-B20F-4DB0-BC23-7570E6489ADD} - Reg Error: Value error. File not found
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {2EECD738-5844-4a99-B4B6-146BF802613B} - No CLSID value found.
O2 - BHO: (no name) - {37B85A21-692B-4205-9CAD-2626E4993404} - No CLSID value found.
O2 - BHO: (ST-Eng7 Toolbar) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\prxtbSof0.dll (Conduit Ltd.)
O2 - BHO: (compliance 54328 Toolbar) - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\prxtbMyP0.dll (Conduit Ltd.)
O2 - BHO: (MyAshampoo Toolbar) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\prxtbMyA0.dll (Conduit Ltd.)
O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly Technologies Ltd)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.)
O3 - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKLM\..\Toolbar: (My Global Search Bar) - {37B85A29-692B-4205-9CAD-2626E4993404} - Reg Error: Value error. File not found
O3 - HKLM\..\Toolbar: (ST-Eng7 Toolbar) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\prxtbSof0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (compliance 54328 Toolbar) - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\prxtbMyP0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - No CLSID value found.
O3 - HKLM\..\Toolbar: (MyAshampoo Toolbar) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\prxtbMyA0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\Toolbar\WebBrowser: (Mirar) - {04778CA8-B20F-4DB0-BC23-7570E6489ADD} - Reg Error: Value error. File not found
O3 - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\Toolbar\WebBrowser: (My Global Search Bar) - {37B85A29-692B-4205-9CAD-2626E4993404} - Reg Error: Value error. File not found
O3 - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\Toolbar\WebBrowser: (ST-Eng7 Toolbar) - {414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - C:\Program Files\Softonic-Eng7\prxtbSof0.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\Toolbar\WebBrowser: (compliance 54328 Toolbar) - {4724C5D8-DFA7-417A-A2F5-1EABFEE9B4AC} - C:\Program Files\MyPlayCity\prxtbMyP0.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\Toolbar\WebBrowser: (MyAshampoo Toolbar) - {A1E75A0E-4397-4BA8-BB50-E19FB66890F4} - C:\Program Files\MyAshampoo\prxtbMyA0.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKU\S-1-5-21-2000478354-484061587-725345543-1003\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [DAEMON Tools-1033] C:\Program Files\D-Tools\daemon.exe (DAEMON'S HOME)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKU\S-1-5-21-2000478354-484061587-725345543-1003..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe (Samsung)
O4 - HKU\S-1-5-21-2000478354-484061587-725345543-1003..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
O4 - HKU\S-1-5-21-2000478354-484061587-725345543-1003..\Run: [uTorrent] C:\Program Files\u Torrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2000478354-484061587-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Download All using 4shared Desktop - C:\Program Files\4shared Desktop\down_all.htm File not found
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.1.cab (DLM Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 217.17.34.10 89.107.153.6
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DF416A8A-A65A-40D0-A6A3-A9913353BCF4}: DhcpNameServer = 8.8.8.8 217.17.34.10 89.107.153.6
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 () - http://danlis.com/img/beks/3.jpg
O24 - Desktop Components:1 () - file:///C:/DOCUME~1/ANUSIA~1/USTAWI~1/Temp/msohtml1/01/clip_image001.jpg
O24 - Desktop Components:2 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-02-24 19:11:45 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-07-24 19:19:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\ESET
[2012-07-24 19:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ESET
[2012-07-24 19:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2012-07-24 19:05:22 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Anusia i Kamiś\Recent
[2012-07-24 19:01:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CCleaner
[2012-07-24 19:01:38 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012-07-02 10:05:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Temp
[2012-07-02 09:56:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Anusia i Kamiś\Moje dokumenty\SelfMV
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-07-25 18:41:01 | 000,000,252 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2012-07-25 18:36:02 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012-07-25 18:34:12 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2012-07-25 18:34:02 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012-07-25 18:33:57 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012-07-25 18:33:40 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-07-25 18:33:37 | 000,379,240 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-07-25 12:58:01 | 000,001,168 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2000478354-484061587-725345543-1003UA.job
[2012-07-24 12:25:51 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-07-22 01:58:00 | 000,001,116 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2000478354-484061587-725345543-1003Core.job
[2012-07-16 22:28:44 | 000,039,424 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-07-16 11:58:24 | 000,002,369 | ---- | M] () -- C:\Documents and Settings\Anusia i Kamiś\Pulpit\Google Chrome.lnk
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-05-27 22:59:54 | 000,658,816 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2012-04-22 15:11:20 | 000,000,309 | ---- | C] () -- C:\Documents and Settings\Anusia i Kamiś\acdb.err
[2012-02-15 22:11:48 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011-10-01 18:32:59 | 000,000,049 | ---- | C] () -- C:\WINDOWS\DictionaryServiceProxy.INI
[2011-09-08 04:06:22 | 000,000,114 | ---- | C] () -- C:\WINDOWS\System32\imon1.dat
[2011-03-02 07:57:44 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe
[2011-03-02 07:57:40 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll
[2011-03-02 07:57:40 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll
[2011-03-02 07:57:40 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll
[2011-03-02 07:57:40 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll
[2010-11-07 16:43:54 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\Anusia i Kamiś\intlname.ols
[2010-10-02 17:02:27 | 001,498,560 | ---- | C] () -- C:\WINDOWS\System32\igkrng400.bin
[2010-09-29 20:12:43 | 000,155,136 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347bus.sys
[2010-09-29 20:12:43 | 000,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347prt.sys
[2010-09-23 22:23:42 | 000,112,640 | ---- | C] () -- C:\WINDOWS\lsb_un20.exe
[2010-09-08 21:09:52 | 000,000,570 | ---- | C] () -- C:\WINDOWS\System32\pdfreader-prefs.dat
[2010-09-08 21:09:08 | 004,473,856 | ---- | C] () -- C:\WINDOWS\System32\SumatraPDF.exe
[2009-02-24 19:45:36 | 000,039,424 | ---- | C] () -- C:\Documents and Settings\Anusia i Kamiś\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2009-02-24 19:51:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ashampoo
[2012-03-12 21:55:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon
[2009-02-24 19:39:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Broadcom
[2010-09-25 13:48:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-06-26 17:05:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Pro
[2012-07-24 19:14:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2010-05-01 14:59:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2011-11-27 16:15:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2010-06-05 00:43:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2009-11-16 21:11:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NokiaMusic
[2011-06-01 10:11:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2009-11-16 21:15:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2012-01-06 01:25:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RDRM
[2012-05-24 10:13:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Samsung
[2012-07-24 19:22:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SpaceQuery
[2011-05-18 20:19:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SweetIM
[2012-05-24 11:07:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer
[2009-02-24 19:57:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca
[2012-03-06 19:26:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
[2012-02-27 03:08:44 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{32364CEA-7855-4A3C-B674-53D8E9B97936}
[2009-02-24 19:51:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Ashampoo
[2012-04-21 10:29:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Autodesk
[2012-03-12 21:55:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Babylon
[2012-06-25 20:03:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\BESTplayer
[2012-07-24 19:06:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\DAEMON Tools Lite
[2010-06-26 17:05:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\DAEMON Tools Pro
[2012-01-14 03:09:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\eType
[2010-09-23 18:50:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\facemoods.com
[2011-05-18 20:31:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Free PDF to Word Converter
[2010-08-30 22:56:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\GabPath
[2009-02-24 20:25:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Gadu-Gadu
[2011-03-12 02:31:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Gadu-Gadu 10
[2010-09-24 21:58:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\GrabIt
[2009-10-10 20:47:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\GuiltyGearIsukaNA
[2012-02-13 18:25:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\ipla
[2009-04-13 23:02:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Leadertech
[2009-11-16 21:12:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Nokia
[2010-05-01 15:38:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\OpenFM
[2011-03-08 22:39:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\OpenOffice.org
[2009-11-16 21:14:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\PC Suite
[2012-07-24 13:23:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\PriceGong
[2012-05-24 10:17:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Samsung
[2011-02-13 11:43:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\ShanghaiAlice
[2009-02-24 20:10:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Teleca
[2012-07-02 10:07:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Temp
[2012-02-27 03:10:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\TuneUp Software
[2010-10-01 22:41:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\Uniblue
[2009-10-17 12:17:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\URSE Games
[2012-07-25 18:34:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\uTorrent
[2012-04-21 01:35:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Anusia i Kamiś\Dane aplikacji\VSRevoGroup
[2012-03-05 23:02:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\TuneUp Software
[2012-07-25 18:41:01 | 000,000,252 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
[2012-07-25 18:34:12 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >