OTL logfile created on: 2011-02-19 11:23:48 - Run 1
OTL by OldTimer - Version 3.2.20.6     Folder = D:\logi\otl
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1 023,00 Mb Total Physical Memory | 613,00 Mb Available Physical Memory | 60,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 86,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 3,22 Gb Free Space | 16,49% Space Free | Partition Type: NTFS
Drive D: | 39,06 Gb Total Space | 11,25 Gb Free Space | 28,81% Space Free | Partition Type: NTFS
Drive E: | 39,06 Gb Total Space | 6,97 Gb Free Space | 17,85% Space Free | Partition Type: NTFS
Drive F: | 51,39 Gb Total Space | 15,41 Gb Free Space | 29,99% Space Free | Partition Type: NTFS
 
Computer Name: GASKA-B70E1DDCC | User Name: gaska | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-02-19 11:18:18 | 000,602,624 | ---- | M] (OldTimer Tools) -- D:\logi\otl\OTL.exe
PRC - [2011-02-19 10:58:28 | 000,032,778 | ---- | M] (Opera Software) -- C:\Documents and Settings\gaska\Dane aplikacji\zfwmgbcbylkcfhehpoadjrjbyavreft2\csrss.exe
PRC - [2010-01-12 19:50:12 | 000,723,632 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
PRC - [2010-01-04 14:46:36 | 000,300,656 | ---- | M] (Speedbit Ltd.) -- C:\Program Files\SpeedBit Video Accelerator\VideoAcceleratorService.exe
PRC - [2008-06-23 20:28:08 | 000,208,896 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Keyboard & Mouse Driver\KMWDSrv.exe
PRC - [2008-04-14 21:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006-11-13 15:57:16 | 001,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe
PRC - [2006-11-13 15:57:06 | 000,199,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011-02-19 11:18:18 | 000,602,624 | ---- | M] (OldTimer Tools) -- D:\logi\otl\OTL.exe
MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010-01-03 13:35:10 | 000,171,552 | ---- | M] (COMODO) -- C:\WINDOWS\system32\guard32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2010-01-12 19:50:12 | 000,723,632 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2010-01-04 14:46:36 | 000,300,656 | ---- | M] (Speedbit Ltd.) [Auto | Running] -- C:\Program Files\SpeedBit Video Accelerator\VideoAcceleratorService.exe -- (VideoAcceleratorService)
SRV - [2009-10-27 09:26:36 | 000,657,408 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008-06-23 20:28:08 | 000,208,896 | ---- | M] (UASSOFT.COM) [Auto | Running] -- C:\Program Files\Keyboard & Mouse Driver\KMWDSrv.exe -- (KMWDSERVICE)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2010-05-10 08:09:34 | 000,627,288 | ---- | M] (TechniSat Digital, S.A.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SkyNET.sys -- (SKYNET)
DRV - [2010-02-09 14:10:45 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-01-03 13:35:10 | 000,133,064 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmdguard.sys -- (cmdGuard)
DRV - [2009-11-21 03:34:54 | 010,235,968 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009-10-06 11:56:34 | 000,136,704 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2009-10-06 11:56:32 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2009-10-06 11:52:50 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2009-10-06 11:52:34 | 000,022,016 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2009-10-06 11:52:34 | 000,017,664 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009-10-06 11:52:34 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-03-22 10:31:58 | 000,017,024 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\KMWDFilter.SYS -- (KMWDFilter)
DRV - [2006-06-22 09:21:06 | 003,972,736 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2006-06-18 10:09:04 | 000,013,824 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Amusbprt.sys -- (Amusbprt)
DRV - [2006-01-11 07:33:32 | 000,008,704 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Amfilter.sys -- (Amfilter)
DRV - [2005-04-05 20:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005-04-05 20:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2002-10-01 08:22:32 | 000,009,856 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2002-07-19 08:10:20 | 000,006,656 | ---- | M] (Sonic Solutions) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cinemsup.sys -- (Cinemsup)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-1275210071-527237240-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.start24.pl/
IE - HKU\S-1-5-21-1275210071-527237240-682003330-1003\..\URLSearchHook: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof2.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1275210071-527237240-682003330-1003\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\tbDVD2.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1275210071-527237240-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.startup.homepage: "http://www.searchqu.com/"
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.1.0014
FF - prefs.js..extensions.enabledItems: {F17C1572-C9EC-4e5c-A542-D05CBB5C5A08}:9.2.0.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.723
FF - prefs.js..extensions.enabledItems: {EBFCD017-BCAD-42C3-9ED5-89DBDFC59171}:1.0.0
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198
FF - prefs.js..extensions.enabledItems: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}:2.5.8.6
FF - prefs.js..extensions.enabledItems: {872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.0.14
FF - prefs.js..keyword.URL: "http://www.searchqu.com/web?src=ffb&systemid=101&q="
FF - prefs.js..browser.search.defaultenginename: "Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=15627"
FF - prefs.js..browser.search.order.1: "Web Search"
 
FF - HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2010-01-27 11:46:21 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-02-22 19:21:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-02-09 20:46:47 | 000,000,000 | ---D | M]
 
[2011-01-09 21:10:40 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\gaska\Dane aplikacji\Mozilla\Extensions
[2011-01-22 23:59:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\gaska\Dane aplikacji\Mozilla\Firefox\Profiles\nwrzlamr.default\extensions
[2010-07-04 09:06:50 | 000,000,000 | ---D | M] (Softonic-Eng7 Toolbar) -- C:\Documents and Settings\gaska\Dane aplikacji\Mozilla\Firefox\Profiles\nwrzlamr.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}
[2011-01-22 23:59:47 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Documents and Settings\gaska\Dane aplikacji\Mozilla\Firefox\Profiles\nwrzlamr.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}
[2010-07-05 21:35:46 | 000,000,000 | ---D | M] (DVDVideoSoftTB Toolbar) -- C:\Documents and Settings\gaska\Dane aplikacji\Mozilla\Firefox\Profiles\nwrzlamr.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
[2010-02-09 14:11:14 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Documents and Settings\gaska\Dane aplikacji\Mozilla\Firefox\Profiles\nwrzlamr.default\extensions\DTToolbar@toolbarnet.com
[2010-12-03 20:31:12 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\gaska\Dane aplikacji\Mozilla\Firefox\Profiles\nwrzlamr.default\extensions\ffxtlbr@babylon.com
[2010-02-09 14:11:10 | 000,002,055 | ---- | M] () -- C:\Documents and Settings\gaska\Dane aplikacji\Mozilla\Firefox\Profiles\nwrzlamr.default\searchplugins\daemon-search.xml
[2010-08-12 12:12:24 | 000,005,529 | ---- | M] () -- C:\Documents and Settings\gaska\Dane aplikacji\Mozilla\Firefox\Profiles\nwrzlamr.default\searchplugins\SearchquWebSearch.xml
[2011-01-09 21:10:40 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010-08-18 23:25:08 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010-04-20 14:43:38 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-09-08 21:21:35 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-11-04 15:08:33 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010-01-04 14:43:20 | 000,000,000 | ---D | M] (Download Accelerator Plus Integration) -- C:\PROGRAM FILES\DAP\DAPFIREFOX
[2010-09-08 21:21:20 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010-01-27 11:46:21 | 000,000,000 | ---D | M] (PC Sync 2 Synchronisation Extension) -- C:\PROGRAM FILES\NOKIA\NOKIA PC SUITE 7\BKMRKSYNC
[2010-02-09 14:09:28 | 000,000,000 | ---D | M] (SpeedBit Toolbar) -- C:\PROGRAM FILES\SPEEDBIT TOOLBAR\SPFIREFOX
[2010-09-15 04:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009-12-21 06:47:02 | 000,063,488 | ---- | M] (Nullsoft) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
[2009-12-02 09:23:35 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-12-03 20:31:02 | 000,002,226 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
[2009-12-02 09:23:35 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2009-12-02 09:23:35 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2009-12-02 09:23:35 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-08-12 12:12:24 | 000,005,529 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\SearchquWebSearch.xml
[2009-12-02 09:23:35 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2009-12-02 09:23:35 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2001-10-26 16:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (IE7Pro BHO) - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\IEPro.dll (IE7Pro.com)
O2 - BHO: (CescrtHlpr Object) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.15.10\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (Softonic-Eng7 Toolbar) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof2.dll (Conduit Ltd.)
O2 - BHO: (SPEEDBIT1 Class) - {425E30F0-CCC6-4E24-BBEB-BCBD31720B37} - C:\Program Files\SpeedBit Toolbar\Toolbar\Speedbit.dll ()
O2 - BHO: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\tbDVD2.dll (Conduit Ltd.)
O2 - BHO: (Babylon IE plugin) - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O2 - BHO: (DAPIELoader Class) - {FF6C3CF0-4B15-11D1-ABED-709549C10000} - C:\Program Files\DAP\dapieloader.dll (SpeedBit Ltd.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Softonic-Eng7 Toolbar) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\tbDVD2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.15.10\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\IEPro\IEProRecorder.dll ()
O3 - HKLM\..\Toolbar: (SpeedBit) - {EBFCD017-BCAD-42C3-9ED5-89DBDFC59171} - C:\Program Files\SpeedBit Toolbar\Toolbar\Speedbit.dll ()
O3 - HKU\S-1-5-21-1275210071-527237240-682003330-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-1275210071-527237240-682003330-1003\..\Toolbar\WebBrowser: (Softonic-Eng7 Toolbar) - {414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - C:\Program Files\Softonic-Eng7\tbSof2.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1275210071-527237240-682003330-1003\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - C:\Program Files\DVDVideoSoftTB\tbDVD2.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1275210071-527237240-682003330-1003\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\IEPro\IEProRecorder.dll ()
O3 - HKU\S-1-5-21-1275210071-527237240-682003330-1003\..\Toolbar\WebBrowser: (SpeedBit) - {EBFCD017-BCAD-42C3-9ED5-89DBDFC59171} - C:\Program Files\SpeedBit Toolbar\Toolbar\Speedbit.dll ()
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [KernelFaultCheck]  File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKU\S-1-5-21-1275210071-527237240-682003330-1003..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
O4 - HKU\.DEFAULT..\RunOnce: [nltide_2]  File not found
O4 - HKU\S-1-5-18..\RunOnce: [nltide_2]  File not found
O4 - HKU\S-1-5-19..\RunOnce: [nltide_2]  File not found
O4 - HKU\S-1-5-20..\RunOnce: [nltide_2]  File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1275210071-527237240-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm ()
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm ()
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm ()
O8 - Extra context menu item: Translate this web page with Babylon - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O8 - Extra context menu item: Translate with Babylon - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O9 - Extra Button: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\IEPro.dll (IE7Pro.com)
O9 - Extra 'Tools' menuitem : IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\IEPro.dll (IE7Pro.com)
O9 - Extra Button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\IEPro.dll (IE7Pro.com)
O9 - Extra 'Tools' menuitem : IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\IEPro.dll (IE7Pro.com)
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O9 - Extra 'Tools' menuitem : Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (C:\WINDOWS\system32\guard32.dll) - C:\WINDOWS\system32\guard32.dll (COMODO)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - ("C:\Documents and Settings\gaska\Dane aplikacji\zfwmgbcbylkcfhehpoadjrjbyavreft2\csrss.exe") - C:\Documents and Settings\gaska\Dane aplikacji\zfwmgbcbylkcfhehpoadjrjbyavreft2\csrss.exe (Opera Software)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-01-02 19:03:25 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-02-19 10:58:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\gaska\Dane aplikacji\zfwmgbcbylkcfhehpoadjrjbyavreft2
[2011-02-16 13:12:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\gaska\Pulpit\222
[2011-02-11 20:39:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\gaska\Pulpit\fo
[2011-01-30 11:55:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\gaska\Moje dokumenty\Deluxe Ski Jump 4
[2011-01-30 11:55:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Deluxe Ski Jump 4
[2011-01-30 11:54:57 | 000,000,000 | ---D | C] -- C:\Program Files\Deluxe Ski Jump 4
[2011-01-29 17:54:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\gaska\Pulpit\mmmm
[2011-01-23 00:01:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS
[2011-01-23 00:01:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS\0300010.008
[2011-01-23 00:01:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Norton Security Scan
[2011-01-22 23:59:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood(2).Tmp
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\gaska\Ustawienia lokalne\Dane aplikacji\*.tmp files -> C:\Documents and Settings\gaska\Ustawienia lokalne\Dane aplikacji\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-02-19 11:31:22 | 001,474,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2011-02-19 11:27:00 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011-02-19 11:25:52 | 000,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2011-02-19 11:25:52 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011-02-19 11:25:52 | 000,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2011-02-19 11:25:52 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011-02-19 11:21:37 | 000,272,537 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2011-02-19 11:21:31 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011-02-19 11:21:28 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-02-19 11:17:00 | 000,001,132 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1275210071-527237240-682003330-1003UA.job
[2011-02-18 19:17:00 | 000,001,080 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1275210071-527237240-682003330-1003Core.job
[2011-02-17 16:32:52 | 000,164,385 | ---- | M] () -- C:\Documents and Settings\gaska\Pulpit\Oksana2.jpg
[2011-02-17 16:32:46 | 000,234,542 | ---- | M] () -- C:\Documents and Settings\gaska\Pulpit\oksana.jpg
[2011-02-16 20:39:42 | 000,018,432 | ---- | M] () -- C:\Documents and Settings\gaska\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-02-16 13:11:59 | 002,293,104 | ---- | M] () -- C:\Documents and Settings\gaska\Pulpit\Holzmex3.rar
[2011-02-14 15:57:53 | 000,003,240 | ---- | M] () -- C:\Documents and Settings\gaska\Pulpit\załacznik_2
[2011-02-14 14:54:23 | 001,388,601 | ---- | M] () -- C:\Documents and Settings\gaska\Pulpit\CLATRONIC KEB 2656.pdf
[2011-02-11 17:08:35 | 000,275,993 | ---- | M] () -- C:\Documents and Settings\gaska\Pulpit\propozycja_umowy_budzetowej_kody_www.holzmex.eu .pdf
[2011-02-10 12:58:09 | 000,170,688 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-02-10 11:57:22 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011-02-09 21:10:00 | 000,000,033 | ---- | M] () -- C:\ProgDVB.ini
[2011-02-09 20:46:48 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk
[2011-02-07 21:04:53 | 000,845,312 | ---- | M] () -- C:\Documents and Settings\gaska\Pulpit\MC Arena szara.doc
[2011-02-07 21:04:42 | 000,882,176 | ---- | M] () -- C:\Documents and Settings\gaska\Pulpit\MC Arena biała.doc
[2011-02-07 16:40:59 | 000,142,336 | ---- | M] () -- C:\Documents and Settings\gaska\Pulpit\E-mail Wstępny formularz na dotacje unijne.doc
[2011-02-03 23:13:41 | 000,060,166 | ---- | M] () -- C:\Documents and Settings\gaska\Pulpit\a6e3f00380.jpg
[2011-02-02 17:48:26 | 002,010,922 | ---- | M] () -- C:\Documents and Settings\gaska\Pulpit\PastedGraphic-5.tiff
[2011-01-29 11:44:55 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-01-23 11:41:37 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-01-21 15:44:11 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shell32.dll
[2011-01-21 15:44:11 | 000,440,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shimgvw.dll
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\gaska\Ustawienia lokalne\Dane aplikacji\*.tmp files -> C:\Documents and Settings\gaska\Ustawienia lokalne\Dane aplikacji\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-02-17 16:32:52 | 000,164,385 | ---- | C] () -- C:\Documents and Settings\gaska\Pulpit\Oksana2.jpg
[2011-02-17 16:32:45 | 000,234,542 | ---- | C] () -- C:\Documents and Settings\gaska\Pulpit\oksana.jpg
[2011-02-16 13:11:56 | 002,293,104 | ---- | C] () -- C:\Documents and Settings\gaska\Pulpit\Holzmex3.rar
[2011-02-14 15:57:52 | 000,003,240 | ---- | C] () -- C:\Documents and Settings\gaska\Pulpit\załacznik_2
[2011-02-14 14:54:21 | 001,388,601 | ---- | C] () -- C:\Documents and Settings\gaska\Pulpit\CLATRONIC KEB 2656.pdf
[2011-02-11 17:08:34 | 000,275,993 | ---- | C] () -- C:\Documents and Settings\gaska\Pulpit\propozycja_umowy_budzetowej_kody_www.holzmex.eu .pdf
[2011-02-09 20:46:47 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk
[2011-02-07 21:04:52 | 000,845,312 | ---- | C] () -- C:\Documents and Settings\gaska\Pulpit\MC Arena szara.doc
[2011-02-07 21:04:40 | 000,882,176 | ---- | C] () -- C:\Documents and Settings\gaska\Pulpit\MC Arena biała.doc
[2011-02-07 16:32:59 | 000,142,336 | ---- | C] () -- C:\Documents and Settings\gaska\Pulpit\E-mail Wstępny formularz na dotacje unijne.doc
[2011-02-03 23:32:25 | 000,060,166 | ---- | C] () -- C:\Documents and Settings\gaska\Pulpit\a6e3f00380.jpg
[2011-02-02 17:48:23 | 002,010,922 | ---- | C] () -- C:\Documents and Settings\gaska\Pulpit\PastedGraphic-5.tiff
[2011-01-23 09:39:39 | 000,000,680 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Gadu-Gadu 10.lnk
[2010-12-03 22:58:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\MPGEditor.INI
[2010-12-03 22:29:37 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini
[2010-12-03 22:29:37 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini
[2010-12-03 22:29:35 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
[2010-12-03 22:29:30 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2010-12-03 22:29:23 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-11-08 22:16:43 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\gaska\Dane aplikacji\$_hpcst$.hpc
[2010-09-18 12:59:20 | 000,004,980 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\mxnhytee.feu
[2010-07-05 21:11:28 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2010-04-20 18:39:02 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-04-11 08:34:23 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2010-02-09 14:10:45 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-01-04 17:44:59 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-01-03 16:56:49 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010-01-03 13:20:49 | 000,018,432 | ---- | C] () -- C:\Documents and Settings\gaska\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-02 19:40:06 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-01-02 19:18:11 | 000,143,360 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2010-01-02 19:14:33 | 000,006,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\ALLOW-IO.SYS
[2006-05-23 15:33:02 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\SDPlib.dll
[1999-09-20 10:05:32 | 000,013,387 | ---- | C] () -- C:\WINDOWS\System32\CinemSup.sys
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-12-04 13:08:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon
[2010-06-25 18:41:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CMUV
[2010-02-09 14:10:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-06-08 11:38:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-01-27 11:44:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2011-01-01 20:36:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2011-01-03 15:17:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-01-27 11:48:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-01-04 14:43:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SpeedBit
[2010-06-25 18:39:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Technisat
[2010-09-19 08:23:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-12-03 22:31:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\Babylon
[2010-12-03 20:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\BabylonToolbar
[2010-02-09 14:15:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\DAEMON Tools Lite
[2010-12-24 21:46:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\Gadu-Gadu 10
[2010-06-11 21:03:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\GrabPro
[2010-06-11 21:03:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\IEPro
[2011-01-01 20:38:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\ipla
[2010-01-04 22:41:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\IrfanView
[2010-01-27 11:49:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\Nokia
[2010-01-04 16:11:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\OpenFM
[2010-04-07 17:01:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\PC Suite
[2011-02-13 10:53:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\PriceGong
[2010-06-11 21:03:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\ProgSense
[2011-01-22 23:59:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\searchqutb
[2011-02-19 10:58:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gaska\Dane aplikacji\zfwmgbcbylkcfhehpoadjrjbyavreft2
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:D74B6CF5

< End of report >