OTL logfile created on: 12-11-19 21:20:37 - Run 3
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\Administrator\Moje dokumenty\Downloads
Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yy-MM-dd
 
759,36 Mb Total Physical Memory | 541,66 Mb Available Physical Memory | 71,33% Memory free
1,06 Gb Paging File | 0,91 Gb Available in Paging File | 85,26% Paging File free
Paging file location(s): C:\pagefile.sys 372 744 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 7,07 Gb Total Space | 1,93 Gb Free Space | 27,25% Space Free | Partition Type: NTFS
Drive E: | 48,82 Gb Total Space | 43,84 Gb Free Space | 89,80% Space Free | Partition Type: NTFS
 
Computer Name: SZCZEPAN-7CDECB | User Name: Szczepanek | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-11-18 23:03:15 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\OTL.exe
PRC - [2012-10-31 23:15:08 | 001,242,136 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2008-12-15 21:56:27 | 000,611,664 | ---- | M] (Lavasoft) -- E:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
PRC - [2004-08-04 13:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-10-31 23:15:05 | 000,460,312 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.64\ppgooglenaclpluginchrome.dll
MOD - [2012-10-31 23:15:02 | 004,007,448 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.64\pdf.dll
MOD - [2012-10-31 23:13:35 | 000,156,712 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.64\avutil-51.dll
MOD - [2012-10-31 23:13:34 | 000,274,984 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.64\avformat-54.dll
MOD - [2012-10-31 23:13:32 | 002,168,360 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.64\avcodec-54.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012-10-28 20:38:15 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2009-11-25 00:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Stopped] -- E:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009-11-25 00:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- E:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009-11-25 00:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- E:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009-11-25 00:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Stopped] -- E:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2008-12-15 21:56:27 | 000,611,664 | ---- | M] (Lavasoft) [Auto | Running] -- E:\Program Files\Lavasoft\Ad-Aware\aawservice.exe -- (aawservice)
SRV - [2004-08-11 00:46:56 | 000,483,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Windows Media Connect\mswmccds.exe -- (WmcCds)
SRV - [2004-08-10 21:50:42 | 000,028,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Media Connect\mswmcls.exe -- (WmcCdsLs)
SRV - [2002-09-20 14:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Stopped] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2010-06-25 13:16:00 | 000,044,400 | ---- | M] (Fuzhou Rockchip Electronics Co,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RK281X.sys -- (RK281X)
DRV - [2009-11-25 00:50:59 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Stopped] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009-11-25 00:50:12 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2009-11-25 00:50:00 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009-11-25 00:49:07 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009-11-25 00:48:57 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009-11-25 00:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2006-07-15 13:08:42 | 000,162,432 | ---- | M] () [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\ithsgt.sys -- (ithsgt)
DRV - [2006-07-15 13:08:41 | 000,012,032 | ---- | M] () [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\lilsgt.sys -- (lilsgt)
DRV - [2004-11-16 08:52:42 | 003,222,784 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w29n51.sys -- (w29n51)
DRV - [2004-10-26 12:22:50 | 001,337,274 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2004-10-26 11:55:26 | 000,398,208 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2004-10-26 11:49:54 | 000,147,896 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2004-10-26 11:47:24 | 000,030,299 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2004-10-26 11:47:08 | 000,030,125 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwmodem.sys -- (btwmodem)
DRV - [2004-10-26 11:46:58 | 000,044,035 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
DRV - [2004-10-26 11:46:04 | 000,055,320 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2004-09-03 18:23:10 | 000,115,680 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\prohlp02.sys -- (prohlp02)
DRV - [2004-09-03 18:19:07 | 000,054,368 | ---- | M] (Protection Technology) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\prodrv06.sys -- (prodrv06)
DRV - [2004-08-24 12:20:08 | 001,268,204 | R--- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2004-07-19 15:49:54 | 000,007,040 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\prosync1.sys -- (prosync1)
DRV - [2004-05-26 15:18:18 | 000,044,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2004-04-20 03:05:10 | 000,057,404 | R--- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftser2k.sys -- (FTSER2K)
DRV - [2004-04-20 03:04:56 | 000,024,209 | R--- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftdibus.sys -- (FTDIBUS)
DRV - [2004-04-14 07:36:50 | 000,007,432 | ---- | M] (Hewlett-Packard Company) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\eabfiltr.sys -- (eabfiltr)
DRV - [2004-02-20 10:35:28 | 000,059,044 | R--- | M] (Hewlett-Packard) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\clntmgmt.sys -- (ClntMgmt.sys)
DRV - [2003-12-08 11:53:48 | 000,053,600 | ---- | M] (THOMSON) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\alcan5wn.sys -- (alcan5wn)
DRV - [2003-12-08 11:53:46 | 000,070,688 | ---- | M] (THOMSON) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\alcaudsl.sys -- (alcaudsl)
DRV - [2003-12-01 16:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp01.sys -- (sfhlp01)
DRV - [2003-09-19 01:47:00 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (Pfc)
DRV - [2003-06-06 11:46:16 | 000,005,220 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EabUsb.sys -- (eabusb)
DRV - [2002-10-15 21:41:06 | 000,102,220 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sonypvs1.sys -- (sonypvs1)
DRV - [2001-08-10 07:00:00 | 000,003,252 | ---- | M] () [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\PQNTDRV.SYS -- (PQNTDrv)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?AF=108603&babsrc=HP_ss&mntrId=e0008120000000000000000e353aa22c
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: "www.google.pl"
FF - prefs.js..extensions.enabledItems: ffxtlbr@babylon.com:1.2.0
FF - prefs.js..keyword.URL: "http://search.babylon.com/?AF=108603&babsrc=adbartrp&mntrId=e0008120000000000000000e353aa22c&q="
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@idsoftware.com/QuakeLive: C:\Documents and Settings\All Users\Dane aplikacji\id Software\QuakeLive\npquakezero.dll (id Software Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2027: C:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1040: C:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\electronicarts.com/GameFacePlugin: C:\Documents and Settings\Szczepanek\Dane aplikacji\Electronic Arts\Game Face\npGameFacePlugin.dll (Electronic Arts)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-10-28 20:38:17 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-10-28 20:37:55 | 000,000,000 | ---D | M]
 
[2008-12-11 10:07:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Szczepanek\Dane aplikacji\Mozilla\Extensions
[2012-10-25 20:47:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Szczepanek\Dane aplikacji\Mozilla\Firefox\Profiles\chzf0wea.default\extensions
[2012-10-28 20:37:44 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-10-28 20:38:16 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2003-01-13 15:08:06 | 000,499,712 | ---- | M] (Morgan Multimedia) -- C:\Program Files\mozilla firefox\plugins\npjp2.dll
[2012-10-08 21:18:24 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012-10-14 21:19:11 | 000,002,058 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - homepage: http://search.babylon.com/?AF=108603&babsrc=HP_ss&mntrId=e0008120000000000000000e353aa22c
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://search.babylon.com/?AF=108603&babsrc=HP_ss&mntrId=e0008120000000000000000e353aa22c
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.64\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.64\pdf.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Morgan Multimedia JPEG2000 Netscape/Mozilla PlugIn (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npjp2.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)  (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: QuickTime Plug-in 6.5.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 6.5.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 6.5.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 6.5.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 6.5.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 6.5.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 6.5.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Quake Live (Enabled) = C:\Documents and Settings\All Users\Dane aplikacji\id Software\QuakeLive\npquakezero.dll
CHR - plugin: Game Face Plugin (Enabled) = C:\Documents and Settings\Szczepanek\Dane aplikacji\Electronic Arts\Game Face\npGameFacePlugin.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: Unity Player (Enabled) = C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Szukaj w Google = C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: Gmail = C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2009-03-25 19:41:52 | 000,000,686 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (Sonic Solutions)
O4 - HKLM..\Run: [avast!] E:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [QuickTime Task] C:\WINDOWS\System32\qttask.exe (Apple Computer, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\BTTray.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DVD Check.lnk =  File not found
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk = E:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\Szczepanek\Menu Start\Programy\Autostart\ctfmon.lnk =  File not found
O4 - Startup: C:\Documents and Settings\Szczepanek\Menu Start\Programy\Autostart\Picture Motion Browser Media Check Tool.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe (Sony Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - E:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Wyślij do interfejsu &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\NPJPI150.dll (Sun Microsystems, Inc.)
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E76D9B74-42EE-4B40-9BA5-80A164B2BDCF}: DhcpNameServer = 208.67.222.222 208.67.220.220
O18 - Protocol\Handler\widimg {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\BTXPPanel.dll (Broadcom Corporation.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - (igfxsrvc.dll) - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005-12-21 09:17:33 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{8a474086-e987-11db-9ebc-000e353aa22c}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe
O33 - MountPoints2\{8a474086-e987-11db-9ebc-000e353aa22c}\Shell\Open(&0)\command - "" = Recycled\ctfmon.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (lsdelete)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-11-19 20:56:55 | 000,000,000 | ---D | C] -- C:\_OTL
[2012-11-04 21:26:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Szczepanek\Pulpit\statut stowarzyszenia2_files
[2012-10-28 21:46:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Szczepanek\Pulpit\ipytania i odpowiedzi sprawy ROD_files
[2012-10-28 20:37:42 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012-10-25 21:31:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Szczepanek\Pulpit\ustawa 2005_files
[2012-10-22 21:30:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Szczepanek\Dane aplikacji\Malwarebytes
[2012-10-22 21:29:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2012-10-22 20:58:42 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Szczepanek\Recent
[2011-12-07 23:58:20 | 002,161,160 | ---- | C] (DownVision                                                  ) -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\setup.exe
[4 C:\Documents and Settings\Szczepanek\Pulpit\*.tmp files -> C:\Documents and Settings\Szczepanek\Pulpit\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-11-19 21:21:34 | 000,435,978 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2012-11-19 21:21:34 | 000,380,350 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012-11-19 21:21:34 | 000,067,078 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2012-11-19 21:21:34 | 000,052,764 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012-11-19 21:18:29 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012-11-19 21:17:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-11-17 14:43:11 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Menu Start\Programy\Autostart\ctfmon.lnk
[2012-11-17 14:35:00 | 000,001,152 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-746137067-1644491937-839522115-1004UA.job
[2012-11-16 22:26:21 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-11-14 19:41:16 | 007,249,167 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\fotki.zip
[2012-11-13 23:35:00 | 000,001,100 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-746137067-1644491937-839522115-1004Core.job
[2012-11-07 21:42:31 | 000,002,341 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\Google Chrome.lnk
[2012-11-05 00:12:44 | 006,127,071 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\Zalacznik_5.jpg
[2012-11-05 00:12:05 | 007,088,781 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\Zalacznik_4.jpg
[2012-11-04 21:26:24 | 000,167,433 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\statut stowarzyszenia2.htm
[2012-11-04 20:26:48 | 000,030,236 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\Działka(3).odt
[2012-11-04 20:24:31 | 000,030,236 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\Działka(2).odt
[2012-10-28 22:07:55 | 000,115,960 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\ustawa_o_ochronie_przyrody.pdf
[2012-10-28 22:07:01 | 000,088,823 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\ustawa_o_podatku_rolnym.pdf
[2012-10-28 22:06:03 | 000,090,415 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\ustawa_prawo_budowlanepozwolenie na budowe.pdf
[2012-10-28 22:04:44 | 000,130,486 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\ustawa_o_podatkach_i_oplatach_lokalnych.pdf
[2012-10-28 21:46:36 | 000,302,859 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\ipytania i odpowiedzi sprawy ROD.htm
[2012-10-28 19:26:04 | 003,096,663 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\przepisy.zip
[2012-10-25 21:31:50 | 000,051,744 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\ustawa 2005.htm
[2012-10-24 22:49:41 | 000,213,388 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\projekt statutu stowarzyszenia  ROD(1).pdf
[2012-10-24 22:47:59 | 000,213,388 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\projekt statutu stowarzyszenia  ROD.pdf
[2012-10-24 22:42:05 | 000,026,932 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\Działka(1).odt
[2012-10-24 22:31:34 | 000,026,932 | ---- | M] () -- C:\Documents and Settings\Szczepanek\Pulpit\Działka.odt
[2012-10-23 23:23:09 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2012-10-22 20:57:53 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk
[4 C:\Documents and Settings\Szczepanek\Pulpit\*.tmp files -> C:\Documents and Settings\Szczepanek\Pulpit\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-11-19 21:18:29 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012-11-17 14:43:10 | 000,001,042 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Menu Start\Programy\Autostart\ctfmon.lnk
[2012-11-14 19:40:25 | 007,249,167 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\fotki.zip
[2012-11-05 00:12:33 | 006,127,071 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\Zalacznik_5.jpg
[2012-11-05 00:11:53 | 007,088,781 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\Zalacznik_4.jpg
[2012-11-04 21:26:23 | 000,167,433 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\statut stowarzyszenia2.htm
[2012-11-04 20:26:48 | 000,030,236 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\Działka(3).odt
[2012-11-04 20:24:30 | 000,030,236 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\Działka(2).odt
[2012-10-28 22:07:52 | 000,115,960 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\ustawa_o_ochronie_przyrody.pdf
[2012-10-28 22:06:59 | 000,088,823 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\ustawa_o_podatku_rolnym.pdf
[2012-10-28 22:06:03 | 000,090,415 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\ustawa_prawo_budowlanepozwolenie na budowe.pdf
[2012-10-28 22:04:43 | 000,130,486 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\ustawa_o_podatkach_i_oplatach_lokalnych.pdf
[2012-10-28 21:46:35 | 000,302,859 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\ipytania i odpowiedzi sprawy ROD.htm
[2012-10-28 19:25:58 | 003,096,663 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\przepisy.zip
[2012-10-25 21:31:48 | 000,051,744 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\ustawa 2005.htm
[2012-10-24 22:49:41 | 000,213,388 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\projekt statutu stowarzyszenia  ROD(1).pdf
[2012-10-24 22:47:58 | 000,213,388 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\projekt statutu stowarzyszenia  ROD.pdf
[2012-10-24 22:42:05 | 000,026,932 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\Działka(1).odt
[2012-10-24 22:31:33 | 000,026,932 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit\Działka.odt
[2012-10-22 20:57:53 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk
[2012-01-28 23:16:49 | 000,001,763 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\uruchomienie_lark_freebird_35_8_komputerem.torrent
[2012-01-25 22:00:10 | 000,000,139 | ---- | C] () -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2012-01-25 22:00:03 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2011-12-14 23:13:30 | 000,001,743 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\test_ja_i_moje_otoczenie.torrent
[2011-12-08 00:04:33 | 000,001,743 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\jaimojeotoczeniesprawdzianzwosuodpowiedzi.torrent
[2011-12-07 23:58:27 | 000,001,743 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\ja_i_moje_otoczenie_sprawdzian_z_wosu_klucz_odpowiedzi.torrent
[2011-12-07 23:58:05 | 000,460,624 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\promo.exe
[2009-04-20 09:10:25 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Dane aplikacji\PnkBstrK.sys
[2009-03-26 18:05:26 | 000,011,776 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-12-14 18:29:48 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Dane aplikacji\$_hpcst$.hpc
[2007-12-07 22:14:52 | 000,016,506 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit(3)
[2007-12-07 22:14:47 | 000,016,506 | ---- | C] () -- C:\Documents and Settings\Szczepanek\Pulpit(2)
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2005-12-22 20:30:46 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2004-08-04 13:00:00 | 001,483,264 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2004-08-04 13:00:00 | 000,472,064 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2004-08-04 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

< End of report >