OTL logfile created on: 2013-02-14 11:59:57 - Run 4
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\Monisia\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1,25 Gb Total Physical Memory | 0,78 Gb Available Physical Memory | 62,18% Memory free
2,98 Gb Paging File | 2,58 Gb Available in Paging File | 86,55% Paging File free
Paging file location(s): C:\pagefile.sys 1920 3840 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 56,64 Gb Total Space | 4,25 Gb Free Space | 7,50% Space Free | Partition Type: NTFS
Drive D: | 55,17 Gb Total Space | 15,09 Gb Free Space | 27,35% Space Free | Partition Type: NTFS
Drive F: | 3,73 Gb Total Space | 2,96 Gb Free Space | 79,39% Space Free | Partition Type: FAT32
Drive G: | 3,73 Gb Total Space | 0,97 Gb Free Space | 26,04% Space Free | Partition Type: FAT32
Drive H: | 1,87 Gb Total Space | 1,87 Gb Free Space | 99,99% Space Free | Partition Type: FAT
Drive I: | 970,13 Mb Total Space | 458,77 Mb Free Space | 47,29% Space Free | Partition Type: FAT
Drive J: | 596,17 Gb Total Space | 172,78 Gb Free Space | 28,98% Space Free | Partition Type: NTFS
 
Computer Name: MONIKA | User Name: Monisia | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2013-02-13 19:33:48 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Monisia\Pulpit\OTL.exe
PRC - [2013-01-26 03:35:08 | 001,248,208 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2012-09-29 15:41:52 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2011-10-26 19:48:48 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe
PRC - [2011-08-18 17:47:48 | 000,819,976 | ---- | M] (ABBYY) -- C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe
PRC - [2011-07-29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006-03-04 17:40:30 | 000,882,176 | ---- | M] () -- C:\Program Files\Kalendarz XP\Kalendarz.exe
PRC - [2004-03-04 15:46:24 | 000,172,032 | ---- | M] (HP) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
PRC - [2004-02-18 18:55:28 | 000,049,152 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd2.exe
PRC - [2003-05-29 16:28:32 | 000,790,528 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
PRC - [2002-09-20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2013-02-12 22:36:36 | 012,638,576 | ---- | M] () -- C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\PepperFlash\11.6.602.167\pepflashplayer.dll
MOD - [2013-01-26 03:35:06 | 000,460,240 | ---- | M] () -- C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\24.0.1312.57\ppgooglenaclpluginchrome.dll
MOD - [2013-01-26 03:35:04 | 004,012,496 | ---- | M] () -- C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\24.0.1312.57\pdf.dll
MOD - [2013-01-26 03:34:16 | 001,552,848 | ---- | M] () -- C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\24.0.1312.57\ffmpegsumo.dll
MOD - [2012-07-27 21:51:56 | 000,300,544 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.POL
MOD - [2011-07-29 00:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011-07-29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2006-03-04 17:40:30 | 000,882,176 | ---- | M] () -- C:\Program Files\Kalendarz XP\Kalendarz.exe
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - [2013-02-07 22:23:45 | 000,251,248 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-09-29 15:41:52 | 000,161,768 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2011-08-18 17:47:48 | 000,819,976 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.11.0)
SRV - [2002-09-20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2008-04-13 23:05:40 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139)
DRV - [2006-05-03 17:50:42 | 001,540,608 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2003-10-14 21:10:02 | 000,036,484 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SMBios.sys -- (SMBios)
DRV - [2003-05-09 06:00:56 | 000,033,248 | ---- | M] (Sonic Focus, Inc) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sf.sys -- (sf)
DRV - [2003-05-06 04:15:18 | 000,020,156 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\GVCplDrv.sys -- (GVCplDrv)
DRV - [2002-09-20 19:53:34 | 000,235,100 | ---- | M] (Analog Devices Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MidiSyn.sys -- (MidiSyn)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://www.google.com
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-790525478-115176313-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKU\S-1-5-21-790525478-115176313-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKU\S-1-5-21-790525478-115176313-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-790525478-115176313-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-790525478-115176313-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-790525478-115176313-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKU\S-1-5-21-790525478-115176313-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://www.google.com
IE - HKU\S-1-5-21-790525478-115176313-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://www.google.com
IE - HKU\S-1-5-21-790525478-115176313-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-790525478-115176313-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://www.google.com
IE - HKU\S-1-5-21-790525478-115176313-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-03-01 23:32:39 | 000,000,000 | ---D | M]
 
[2012-10-12 17:39:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - homepage: http://www.22apple.com/?utm_source=b&ch=sof&uid=SAMSUNGXSP1203N_0650J1FW707992&reg=1360707705
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.22apple.com/?utm_source=b&ch=sof&uid=SAMSUNGXSP1203N_0650J1FW707992&reg=1360707705
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\24.0.1312.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\24.0.1312.57\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\24.0.1312.57\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: NPLastPass (Enabled) = C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\1.90.7_0\nplastpass.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Szukaj w Google = C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: LastPass = C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.0.21_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: Gmail = C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2008-04-15 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Bonus.SSR.FR11] C:\Program Files\ABBYY FineReader 11\Bonus.ScreenshotReader.exe (ABBYY.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe (HP)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Action Manager 32.lnk = C:\Program Files\Plustek\OptiPro ST28\AM32.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Kalendarz XP.lnk = C:\Program Files\Kalendarz XP\Kalendarz.exe ()
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-790525478-115176313-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_07-windows-i586.cab (Java Plug-in 1.7.0_07)
O16 - DPF: {CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_07-windows-i586.cab (Java Plug-in 1.7.0_07)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_07-windows-i586.cab (Java Plug-in 1.7.0_07)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.100 195.114.173.153
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{28AD6BC3-6353-4259-96D9-1B15DFD8E6BF}: DhcpNameServer = 192.168.0.100 195.114.173.153
O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011-12-30 17:33:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010-06-18 16:20:50 | 000,000,088 | ---- | M] () - J:\Autorun.inf -- [ NTFS ]
O33 - MountPoints2\{bc43fb60-5ca4-11e2-8a57-000e2e98747b}\Shell - "" = AutoRun
O33 - MountPoints2\{bc43fb60-5ca4-11e2-8a57-000e2e98747b}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2013-02-14 11:36:52 | 000,000,000 | ---D | C] -- C:\_OTL
[2013-02-13 21:42:19 | 000,000,000 | ---D | C] -- C:\UsbFix
[2013-02-13 21:41:52 | 001,322,562 | ---- | C] (El Desaparecido) -- C:\Documents and Settings\Monisia\Pulpit\usbfix (1).exe
[2013-02-13 21:40:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Monisia\Pulpit\LOGI
[2013-02-13 21:29:04 | 001,153,912 | ---- | C] (Emsi Software GmbH) -- C:\Documents and Settings\Monisia\Pulpit\BlitzBlank.exe
[2013-02-13 19:33:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Monisia\Pulpit\OTL.exe
[2013-02-12 23:22:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\337
[2013-02-12 23:22:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Monisia\Dane aplikacji\Systweak
[2013-02-12 23:22:01 | 000,018,360 | ---- | C] (Systweak Inc., (www.systweak.com)) -- C:\WINDOWS\System32\roboot.exe
[2013-02-12 23:22:00 | 000,000,000 | ---D | C] -- C:\Program Files\Desk 365
[2013-02-12 23:21:57 | 000,000,000 | R--D | C] -- C:\Program Files\RegClean Pro
[2013-02-12 23:21:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Monisia\Dane aplikacji\Desk 365
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2013-02-14 11:56:35 | 000,000,827 | ---- | M] () -- C:\Documents and Settings\Monisia\Pulpit\FIX.REG
[2013-02-14 11:50:00 | 000,001,140 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-790525478-115176313-1606980848-1003UA.job
[2013-02-14 11:46:24 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013-02-14 11:46:07 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013-02-14 11:46:04 | 1340,858,368 | -HS- | M] () -- C:\hiberfil.sys
[2013-02-14 11:23:00 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013-02-13 21:41:57 | 001,322,562 | ---- | M] (El Desaparecido) -- C:\Documents and Settings\Monisia\Pulpit\usbfix (1).exe
[2013-02-13 21:36:51 | 000,587,671 | ---- | M] () -- C:\Documents and Settings\Monisia\Pulpit\AdwCleaner.exe
[2013-02-13 21:29:04 | 001,153,912 | ---- | M] (Emsi Software GmbH) -- C:\Documents and Settings\Monisia\Pulpit\BlitzBlank.exe
[2013-02-13 21:22:55 | 000,000,285 | ---- | M] () -- C:\FIX.BAT
[2013-02-13 19:50:26 | 000,365,568 | ---- | M] () -- C:\Documents and Settings\Monisia\Pulpit\f51rscno.exe
[2013-02-13 19:33:48 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Monisia\Pulpit\OTL.exe
[2013-02-12 23:21:44 | 000,000,000 | ---- | M] () -- C:\extensions.sqlite
[2013-02-12 18:57:46 | 000,316,940 | ---- | M] () -- C:\Update_UsbFix.exe
[2013-02-07 22:23:44 | 000,697,712 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013-02-07 22:23:44 | 000,074,096 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013-02-07 22:23:33 | 016,365,936 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe
[2013-02-04 10:50:00 | 000,001,088 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-790525478-115176313-1606980848-1003Core.job
[2013-01-17 18:29:07 | 000,012,313 | ---- | M] () -- C:\Documents and Settings\Monisia\Pulpit\potwierdzenie.pdf
[2013-01-16 00:22:12 | 000,049,152 | ---- | M] () -- C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013-02-14 11:56:35 | 000,000,827 | ---- | C] () -- C:\Documents and Settings\Monisia\Pulpit\FIX.REG
[2013-02-13 21:36:50 | 000,587,671 | ---- | C] () -- C:\Documents and Settings\Monisia\Pulpit\AdwCleaner.exe
[2013-02-13 21:22:55 | 000,000,285 | ---- | C] () -- C:\FIX.BAT
[2013-02-13 19:50:25 | 000,365,568 | ---- | C] () -- C:\Documents and Settings\Monisia\Pulpit\f51rscno.exe
[2013-02-12 23:21:44 | 000,000,000 | ---- | C] () -- C:\extensions.sqlite
[2013-02-12 18:52:09 | 000,316,940 | ---- | C] () -- C:\Update_UsbFix.exe
[2013-01-17 18:29:07 | 000,012,313 | ---- | C] () -- C:\Documents and Settings\Monisia\Pulpit\potwierdzenie.pdf
[2012-11-25 19:15:33 | 000,002,048 | ---- | C] () -- C:\Documents and Settings\Monisia\Dane aplikacji\ZFOTO kreator Prefs
[2012-11-14 18:52:32 | 017,763,241 | ---- | C] () -- C:\WINDOWS\System32\PixBook.pl_PixBook_uninstaller.exe
[2012-11-06 10:44:16 | 000,015,432 | ---- | C] () -- C:\WINDOWS\Launcher.exe
[2012-05-13 14:11:47 | 000,159,528 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2012-05-07 17:52:19 | 000,650,752 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2012-05-07 17:52:19 | 000,243,200 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2012-05-07 17:52:16 | 000,079,360 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2012-05-06 21:13:14 | 000,049,152 | ---- | C] () -- C:\Documents and Settings\Monisia\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-01-07 20:26:29 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\GetInst32.dll
[2012-01-07 20:26:29 | 000,000,125 | ---- | C] () -- C:\WINDOWS\SCNDRVU.INI
[2011-12-30 19:55:53 | 000,011,549 | ---- | C] () -- C:\WINDOWS\hpdj5700.ini
[2011-12-30 19:34:37 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2011-12-30 19:10:33 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-12-30 18:42:40 | 000,175,616 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2011-12-30 18:20:53 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011-12-30 18:19:28 | 000,269,392 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-12-30 18:01:17 | 000,020,156 | R--- | C] () -- C:\WINDOWS\System32\drivers\GVCplDrv.sys
[2011-12-30 17:35:59 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011-12-30 17:29:39 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2003-03-21 13:37:56 | 000,016,056 | ---- | C] () -- C:\Program Files\owcstp16.dll
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2011-12-31 13:37:59 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2011-11-01 21:36:08 | 001,510,400 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 11:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-15 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-01-02 23:03:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2012-06-07 15:40:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2012-11-14 18:53:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\M-Photo
[2012-03-02 11:31:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2012-05-28 20:32:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Quark
[2012-06-07 15:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RDRM
[2012-05-07 18:16:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\AnvSoft
[2012-05-13 13:58:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\Aquafadas
[2012-08-20 20:25:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\Audacity
[2012-03-01 23:33:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\DDMSettings
[2013-02-12 23:23:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\Desk 365
[2012-01-02 20:51:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\Gadu-Gadu
[2012-01-02 23:14:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\Gadu-Gadu 10
[2012-09-15 17:14:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\ipla
[2012-01-02 22:12:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\Nowe Gadu-Gadu
[2012-01-01 22:03:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\OpenFM
[2012-07-04 14:30:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\Oracle
[2012-05-13 13:57:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\Quark
[2012-04-23 21:18:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\RST
[2013-02-12 23:29:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\Systweak
[2012-11-25 19:14:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Monisia\Dane aplikacji\ZFOTO kreator
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >