x-kom hosting

Na bank coś tam siedzi

Z0nK
utworzono
utworzono

Witam

Ostatnio coś mi się włamało do kompa, kasperski wykrył ale nic nie zrobił, teraz na bank coś tam siedzi i potrzebuje czegoś co to usunie cholerstwo ;O może odrobaczanie ... na wszelki wypadek wrzucam logi z OTL

EXTRAS

Log do sprawdzenia
OTL Extras logfile created on: 2009-08-14 19:19:36 - Run 1

OTL by OldTimer - Version 3.0.10.7 Folder = D:\programy sprawdzające

Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.2180)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,44 Gb Available Physical Memory | 71,81% Memory free

3,84 Gb Paging File | 3,36 Gb Available in Paging File | 87,54% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 50,00 Gb Total Space | 8,37 Gb Free Space | 16,73% Space Free | Partition Type: NTFS

Drive D: | 91,44 Gb Total Space | 41,29 Gb Free Space | 45,15% Space Free | Partition Type: NTFS

Drive E: | 91,43 Gb Total Space | 45,92 Gb Free Space | 50,22% Space Free | Partition Type: NTFS

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: MADEJ-3BA1FFB6E

Current User Name: madej

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: All users

Company Name Whitelist: On

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1645522239-630328440-839522115-1003\SOFTWARE\Classes\<extension>]

.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"FirstRunDisabled" = 1

"AntiVirusDisableNotify" = 0

"FirewallDisableNotify" = 0

"UpdatesDisableNotify" = 0

"AntiVirusOverride" = 0

"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

"DisableMonitoring" = 1

"" =

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

"67:UDP" = 67:UDP:*:Enabled:DHCP Discovery Service

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

"C:\Program Files\uTorrent\utorrent.exe" = C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)

"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)

"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)

"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)

"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)

"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)

"C:\Program Files\FlashGet\flashget.exe" = C:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget -- (FlashGet.com)

"C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe" = C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe:LocalSubNet:Enabled:Pure Networks Platform Service -- (Cisco Systems, Inc.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam

"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour

"{0D2E9DCB-9938-475E-B4DD-8851738852FF}" = AIO_Scan

"{15095BF3-A3D7-4DDF-B193-3A496881E003}" = Microsoft .NET Framework 3.0

"{1746EA69-DCB6-4408-B5A5-E75F55439CDF}" = Scan

"{178B8741-18FA-4CCD-B17F-1B9E36D55AC3}" = DJS Trial

"{179C56A4-F57F-4561-8BBF-F911D26EB435}" = WebReg

"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime

"{24557DC0-0839-496f-82F9-C4EB72EFE4FA}" = HP Deskjet All-In-One Software 8.0

"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java 6 Update 13

"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java 6 Update 3

"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{491DD792-AD81-429C-9EB4-86DD3D22E333}" = Windows Communication Foundation

"{51C91B84-7B46-4FE7-8999-8228CFA75F89}" = Intel® Integrated Performance Primitives RTI 4.0

"{5EFCBB42-36AB-4FF9-B90C-E78C7B9EE7B3}" = iTunes

"{657F8B33-CBBB-45F4-9087-274F22C89400}" = DJ_AIO_ProductContext

"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder

"{67D3F1A0-A1F2-49b7-B9EE-011277B170CD}" = HPProductAssistant

"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update

"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder

"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0

"{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}" = Windows Workflow Foundation

"{7DDEABFB-0621-4321-B385-CB86D3A6F90F}" = F4100

"{84D04D4F-2201-4AED-BE9A-FFA62069CA19}_is1" = reFX Nexus 1.0.0

"{8C6027FD-53DC-446D-BB75-CACD7028A134}" = HP Update

"{8CB14A64-CEF4-4C8F-B1C8-1C3B8752CB55}" = Kaspersky Internet Security 2009

"{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12

"{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007

"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007

"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007

"{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007

"{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007

"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007

"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007

"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007

"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007

"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007

"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007

"{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007

"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007

"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007

"{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007

"{95D08F4E-DFC2-4ce3-ACB7-8C8E206217E9}" = MarketResearch

"{978C25EE-5777-46e4-8988-732C297CBDBD}" = Status

"{9B1FD9CE-0776-4f0b-A6F5-C6AB7B650CDF}" = Destinations

"{9ECB4705-B9CB-405A-B6D4-33BDF707308E}" = DJ_AIO_Software

"{A36CD345-625C-4d6c-B3E2-76E1248CB451}" = SolutionCenter

"{A3B7C670-4A1E-4EE2-950E-C875BC1965D0}" = Copy

"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder

"{AC76BA86-7AD7-1045-7B44-A70000000000}" = Adobe Reader 7.0 - Polish

"{ACE22C48-49D7-4531-BE20-5C3D03393AB6}" = F4100_Help

"{AFA20D47-69C3-4030-8DF8-D37466E70F13}" = Apple Mobile Device Support

"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation

"{BE77A81F-B315-4666-9BF3-AE70C0ADB057}" = BufferChm

"{BF2A74BF-8D12-47F1-8B19-22B30AF6B0D1}" = Linksys EasyLink Advisor

"{C34FAEF3-4241-4C4E-9CFF-7BBD8BCEABE7}" = WebEx Support Manager for Internet Explorer

"{C716522C-3731-4667-8579-40B098294500}" = Toolbox

"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver

"{DC83F417-8068-4074-BA2F-C4F8AB872556}" = DJ_AIO_Software_min

"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware

"{E06F04B9-45E6-4AC0-8083-85F7515F40F7}" = UnloadSupport

"{E3030F57-9E6B-4E36-95B6-F7B4DBDEB8FB}" = HP Smart Web Printing 1.0

"{EB21A812-671B-4D08-B974-2A347F0D8F70}" = HP Photosmart Essential

"{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}" = HPSSupply

"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX

"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer

"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)

"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01

"{FBDBC490-089D-4476-BF72-1F7A6368200A}" = Pure Networks Platform

"{FF075778-6E50-47ed-991D-3B07FD4E3250}" = TrayApp

"Ad-Aware" = Ad-Aware

"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX

"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin

"ALLPlayer_is1" = ALLPlayer V4.X

"ASIO4ALL" = ASIO4ALL

"a-squared Free_is1" = a-squared Free 4.5

"Collab" = Collab

"Cool Edit Pro 2.0" = Cool Edit Pro 2.0

"DJS 1.0" = DJS Trial

"ENTERPRISE" = Microsoft Office Enterprise 2007

"ffdshow_is1" = ffdshow [rev 2946] [2009-05-15]

"FL Studio 8" = FL Studio 8

"FlashGet" = FlashGet 1.9.6.1073

"HP Imaging Device Functions" = HP Imaging Device Functions 8.0

"HP Solution Center & Imaging Support Tools" = HP Solution Center 8.0

"HPExtendedCapabilities" = HP Customer Participation Program 8.0

"IL Download Manager" = IL Download Manager

"InstallWIX_{8CB14A64-CEF4-4C8F-B1C8-1C3B8752CB55}" = Kaspersky Internet Security 2009

"Linksys EasyLink Advisor" = Linksys EasyLink Advisor

"Live 7.0.3" = Live 7.0.3

"Magic ISO Maker v5.4 (build 0251)" = Magic ISO Maker v5.4 (build 0251)

"MagicDisc 2.7.105" = MagicDisc 2.7.105

"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0

"Microsoft .NET Framework 3.0" = Microsoft .NET Framework 3.0

"Mozilla Firefox (3.0.13)" = Mozilla Firefox (3.0.13)

"Nero - Burning Rom!UninstallKey" = Nero OEM

"NVIDIA Drivers" = NVIDIA Drivers

"PhotoFiltre" = PhotoFiltre

"PoiZone" = PoiZone

"reFX Nexus 1.0.9_is1" = reFX Nexus 1.0.9

"Steam App 10" = Counter-Strike

"Tlen.pl" = Tlen.pl

"Total Video Converter 3.20_is1" = Total Video Converter 3.20 090104

"Toxic Biohazard" = Toxic Biohazard

"uTorrent" = µTorrent

"Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions

"WIC" = Windows Imaging Component

"Winamp" = Winamp

"WinRAR archiver" = Archiwizator WinRAR

"winscp3_is1" = WinSCP 4.1.6

"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0

========== Last 10 Event Log Errors ==========

[ Application Events ]

Error - 2009-06-28 11:39:39 | Computer Name = MADEJ-3BA1FFB6E | Source = Microsoft Office 12 | ID = 1000

Description = Faulting application winword.exe, version 12.0.4518.1014, stamp 45428028,

faulting module hpz3r4v2.dll, version 61.63.247.0, stamp 45949947, debug? 0, fault

address 0x00045a98.

Error - 2009-06-28 17:46:29 | Computer Name = MADEJ-3BA1FFB6E | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca wmplayer.exe, wersja 9.0.0.3250, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-07-01 17:54:23 | Computer Name = MADEJ-3BA1FFB6E | Source = crypt32 | ID = 131080

Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej

listy innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>,

wystąpił błąd: Operacja została zwrócona, ponieważ przekroczono limit czasu.

Error - 2009-07-04 13:22:40 | Computer Name = MADEJ-3BA1FFB6E | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca tlen.exe, wersja 6.0.3.77, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-07-09 11:18:36 | Computer Name = MADEJ-3BA1FFB6E | Source = crypt32 | ID = 131080

Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej

listy innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>,

wystąpił błąd: Operacja została zwrócona, ponieważ przekroczono limit czasu.

Error - 2009-07-09 14:01:32 | Computer Name = MADEJ-3BA1FFB6E | Source = Microsoft Office 12 | ID = 1000

Description = Faulting application winword.exe, version 12.0.4518.1014, stamp 45428028,

faulting module hpz3r4v2.dll, version 61.63.247.0, stamp 45949947, debug? 0, fault

address 0x00045a98.

Error - 2009-07-09 14:02:37 | Computer Name = MADEJ-3BA1FFB6E | Source = Microsoft Office 12 | ID = 1000

Description = Faulting application winword.exe, version 12.0.4518.1014, stamp 45428028,

faulting module hpz3r4v2.dll, version 61.63.247.0, stamp 45949947, debug? 0, fault

address 0x00045a98.

Error - 2009-07-09 14:04:02 | Computer Name = MADEJ-3BA1FFB6E | Source = Microsoft Office 12 | ID = 1000

Description = Faulting application winword.exe, version 12.0.4518.1014, stamp 45428028,

faulting module hpz3r4v2.dll, version 61.63.247.0, stamp 45949947, debug? 0, fault

address 0x00045a98.

Error - 2009-07-09 14:08:26 | Computer Name = MADEJ-3BA1FFB6E | Source = Microsoft Office 12 | ID = 1000

Description = Faulting application winword.exe, version 12.0.4518.1014, stamp 45428028,

faulting module hpz3r4v2.dll, version 61.63.247.0, stamp 45949947, debug? 0, fault

address 0x00045a98.

Error - 2009-07-10 14:47:49 | Computer Name = MADEJ-3BA1FFB6E | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca WinSCP.exe, wersja 4.1.6.412, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

[ System Events ]

Error - 2009-07-07 17:05:37 | Computer Name = MADEJ-3BA1FFB6E | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-07-07 17:05:43 | Computer Name = MADEJ-3BA1FFB6E | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-07-07 17:05:54 | Computer Name = MADEJ-3BA1FFB6E | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-07-07 17:05:59 | Computer Name = MADEJ-3BA1FFB6E | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-07-07 17:06:05 | Computer Name = MADEJ-3BA1FFB6E | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-07-07 17:06:09 | Computer Name = MADEJ-3BA1FFB6E | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-07-07 17:06:15 | Computer Name = MADEJ-3BA1FFB6E | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-07-07 17:06:26 | Computer Name = MADEJ-3BA1FFB6E | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-07-07 17:06:32 | Computer Name = MADEJ-3BA1FFB6E | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-07-07 17:06:37 | Computer Name = MADEJ-3BA1FFB6E | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

< End of report >

OTL

Log do sprawdzenia
OTL logfile created on: 2009-08-14 19:19:36 - Run 1

OTL by OldTimer - Version 3.0.10.7 Folder = D:\programy sprawdzające

Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.2180)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,44 Gb Available Physical Memory | 71,81% Memory free

3,84 Gb Paging File | 3,36 Gb Available in Paging File | 87,54% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 50,00 Gb Total Space | 8,37 Gb Free Space | 16,73% Space Free | Partition Type: NTFS

Drive D: | 91,44 Gb Total Space | 41,29 Gb Free Space | 45,15% Space Free | Partition Type: NTFS

Drive E: | 91,43 Gb Total Space | 45,92 Gb Free Space | 50,22% Space Free | Partition Type: NTFS

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: MADEJ-3BA1FFB6E

Current User Name: madej

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: All users

Company Name Whitelist: On

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Processes (SafeList) ==========

PRC - [2009-07-02 22:21:35 | 01,029,456 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe

PRC - [2004-08-04 01:44:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE

PRC - [2007-03-16 08:06:34 | 00,868,352 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe

PRC - [2007-04-03 20:55:08 | 00,839,680 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\Smax4.exe

PRC - [2009-05-19 00:13:31 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe

PRC - [2008-12-12 18:06:40 | 00,642,856 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe

PRC - [2009-07-21 13:42:05 | 00,208,616 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe

PRC - [2009-06-29 23:27:40 | 00,520,024 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe

PRC - [2009-07-21 13:42:05 | 00,208,616 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe

PRC - [2009-05-19 00:13:31 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe

PRC - [2008-11-13 21:43:49 | 00,204,800 | ---- | M] () -- C:\Program Files\Linksys\Linksys Updater\bin\LinksysUpdater.exe

PRC - [2007-12-05 01:41:00 | 00,155,716 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe

PRC - [2009-05-19 00:13:31 | 00,144,792 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe

PRC - [2008-12-12 18:06:40 | 00,642,856 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe

PRC - [2004-08-04 01:44:30 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wscntfy.exe

PRC - [2009-05-28 22:11:04 | 00,717,320 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe

PRC - [2004-08-04 01:44:30 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\wmiprvse.exe

PRC - [2009-08-04 22:07:50 | 00,307,704 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2009-03-26 15:31:20 | 00,132,424 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

PRC - [2009-08-14 19:16:58 | 00,514,048 | ---- | M] (OldTimer Tools) -- D:\programy sprawdzające\OTL.exe

========== Win32 Services (SafeList) ==========

SRV - [2009-05-28 22:11:04 | 00,717,320 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe -- (a2free [Auto | Running])

SRV - [2009-03-26 15:31:20 | 00,132,424 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running])

SRV - [2005-09-23 07:28:32 | 00,029,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])

SRV - [2009-07-21 13:42:05 | 00,208,616 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe -- (AVP [Auto | Running])

SRV - [2008-12-12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Stopped])

SRV - [2005-09-23 07:28:56 | 00,066,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])

SRV - [2006-10-20 21:21:24 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])

SRV - [2004-08-04 01:44:08 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])

SRV - [2007-01-19 23:44:40 | 00,225,280 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08 [On_Demand | Running])

SRV - [2007-01-19 23:44:40 | 00,131,072 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc [Auto | Running])

SRV - [2006-10-30 03:33:58 | 00,741,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [unknown | Stopped])

SRV - [2009-04-02 16:10:56 | 00,656,168 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Stopped])

SRV - [2009-05-19 00:13:31 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])

SRV - [2009-07-02 22:21:35 | 01,029,456 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service [Auto | Running])

SRV - [2008-11-13 21:43:49 | 00,204,800 | ---- | M] () -- C:\Program Files\Linksys\Linksys Updater\bin\LinksysUpdater.exe -- (LinksysUpdater [Auto | Running])

SRV - [2006-10-27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])

SRV - [2006-11-08 16:35:36 | 00,043,520 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZinw12.dll -- (Net Driver HPZ12 [Auto | Running])

SRV - [2006-10-30 03:34:02 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])

SRV - [2008-12-12 18:06:40 | 00,642,856 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe -- (nmservice [Auto | Running])

SRV - [2007-12-05 01:41:00 | 00,155,716 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running])

SRV - [2006-10-26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])

SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])

SRV - [2006-11-08 16:35:38 | 00,053,248 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZipm12.dll -- (Pml Driver HPZ12 [Auto | Running])

========== Driver Services (SafeList) ==========

DRV - [2007-05-18 11:01:50 | 00,304,640 | ---- | M] (Analog Devices, Inc.) -- C:\WINDOWS\System32\drivers\ADIHdAud.sys -- (ADIHdAudAddService [On_Demand | Running])

DRV - [2007-05-18 09:20:24 | 00,094,848 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\System32\drivers\AEAudio.sys -- (AEAudio [On_Demand | Running])

DRV - [2009-03-19 16:32:48 | 00,023,400 | ---- | M] (GEAR Software Inc.) -- C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Running])

DRV - [2004-10-27 15:21:36 | 00,138,240 | ---- | M] (Windows ® Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])

DRV - [2006-12-06 08:02:28 | 00,049,920 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZid412.sys -- (HPZid412 [On_Demand | Stopped])

DRV - [2006-12-06 08:02:28 | 00,016,496 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZipr12.sys -- (HPZipr12 [On_Demand | Stopped])

DRV - [2006-12-06 08:02:29 | 00,021,568 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZius12.sys -- (HPZius12 [On_Demand | Stopped])

DRV - [2008-07-21 17:34:36 | 00,121,872 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1 [boot | Running])

DRV - [2009-05-18 23:56:04 | 00,033,808 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\klbg.sys -- (klbg [boot | Running])

DRV - [2008-03-13 18:02:46 | 00,026,640 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\DRIVERS\klfltdev.sys -- (KLFLTDEV [On_Demand | Running])

DRV - [2009-05-18 23:56:04 | 00,226,832 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\DRIVERS\klif.sys -- (KLIF [system | Running])

DRV - [2008-04-30 17:06:48 | 00,024,592 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\DRIVERS\klim5.sys -- (klim5 [On_Demand | Running])

DRV - [2009-05-28 22:21:06 | 00,064,160 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd [boot | Running])

DRV - [2008-07-28 17:19:28 | 00,116,736 | ---- | M] (MagicISO, Inc.) -- C:\WINDOWS\System32\DRIVERS\mcdbus.sys -- (mcdbus [On_Demand | Running])

DRV - [2004-08-13 04:56:20 | 00,005,810 | R--- | M] () -- C:\WINDOWS\System32\DRIVERS\ASACPI.sys -- (MTsensor [On_Demand | Running])

DRV - [2007-12-05 01:41:00 | 07,435,392 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])

DRV - [2008-12-12 18:05:18 | 00,023,984 | ---- | M] (Cisco Systems, Inc.) -- C:\WINDOWS\System32\DRIVERS\pnarp.sys -- (pnarp [Auto | Running])

DRV - [2001-08-17 23:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])

DRV - [2008-12-12 18:05:20 | 00,025,264 | ---- | M] (Cisco Systems, Inc.) -- C:\WINDOWS\System32\DRIVERS\purendis.sys -- (purendis [Auto | Running])

DRV - [2008-08-20 19:58:58 | 00,044,944 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [boot | Running])

DRV - [2006-07-27 03:49:10 | 00,083,712 | R--- | M] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\DRIVERS\Rtenicxp.sys -- (RTLE8023xp [On_Demand | Running])

DRV - [2004-11-30 12:10:00 | 00,161,792 | ---- | M] () -- C:\WINDOWS\system32\drivers\sdpiosys.sys -- (sdpiosys [system | Running])

DRV - [2004-07-17 12:36:38 | 00,027,440 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])

DRV - [2006-03-17 18:18:58 | 00,392,960 | ---- | M] (Sensaura) -- C:\WINDOWS\System32\drivers\Senfilt.sys -- (SenFiltService [On_Demand | Running])

DRV - [2009-03-26 15:23:46 | 00,036,864 | ---- | M] (Apple, Inc.) -- C:\WINDOWS\System32\Drivers\usbaapl.sys -- (USBAAPL [On_Demand | Stopped])

DRV - [2004-08-03 23:07:56 | 00,059,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Stopped])

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1645522239-630328440-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm

IE - HKU\S-1-5-21-1645522239-630328440-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

IE - HKU\S-1-5-21-1645522239-630328440-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

IE - HKU\S-1-5-21-1645522239-630328440-839522115-1003\S-1-5-21-1645522239-630328440-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1645522239-630328440-839522115-1003\S-1-5-21-1645522239-630328440-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.google.pl"

FF - prefs.js..extensions.enabledItems: en-GB@dictionaries.addons.mozilla.org:1.19

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.13

FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-05-19 00:13:31 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-08-07 21:26:49 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-08-04 22:07:54 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\THBExt [2009-05-18 23:46:03 | 00,000,000 | ---D | M]

[2009-05-18 22:30:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\madej\Dane aplikacji\mozilla\Extensions

[2009-05-18 22:30:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\madej\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}

[2009-08-13 21:22:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\madej\Dane aplikacji\mozilla\Firefox\Profiles\qmza30b6.default\extensions

[2009-05-25 19:19:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\madej\Dane aplikacji\mozilla\Firefox\Profiles\qmza30b6.default\extensions\en-GB@dictionaries.addons.mozilla.org

[2009-08-13 21:22:48 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions

[2009-08-04 22:07:54 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

[2009-05-18 22:45:29 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}

[2009-05-19 00:13:48 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

[2009-08-04 22:07:49 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll

[2009-08-04 22:07:49 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll

[2009-05-19 00:13:31 | 00,410,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll

[2009-08-04 22:07:51 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll

[2006-10-26 20:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL

[2004-12-14 12:19:18 | 00,057,344 | R--- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll

[2009-05-19 00:33:16 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll

[2009-05-19 00:33:16 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll

[2009-05-19 00:33:16 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll

[2009-05-19 00:33:16 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll

[2009-05-19 00:33:16 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll

[2009-05-19 00:33:16 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll

[2009-05-19 00:33:16 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll

[2009-07-23 20:39:28 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml

[2008-04-03 19:19:08 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml

[2008-04-16 06:08:20 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml

[2007-03-31 19:11:54 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml

[2006-06-03 18:43:22 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml

[2008-03-28 23:36:04 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml

[2007-01-05 13:40:56 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (742 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (FGCatchUrl) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll (www.flashget.com)

O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll (Kaspersky Lab)

O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

O2 - BHO: (CPrintEnhancer Object) - {AE84A6AA-A333-4B92-B276-C11E2212E4FE} - C:\Program Files\HP\Smart Web Printing\SmartWebPrinting.dll (Hewlett-Packard Co.)

O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)

O2 - BHO: (FlashGet GetFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll (www.flashget.com)

O4 - HKLM..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)

O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe (Kaspersky Lab)

O4 - HKLM..\Run: [AWMON] C:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Watch.exe File not found

O4 - HKLM..\Run: [braviax] File not found

O4 - HKLM..\Run: [Flashget] C:\Program Files\FlashGet\FlashGet.exe (FlashGet.com)

O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)

O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Co.)

O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)

O4 - HKLM..\Run: [msword98] C:\WINDOWS\System32\msword98.exe ()

O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\System32\NeroCheck.exe (Ahead Software Gmbh)

O4 - HKLM..\Run: [nmctxth] C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Cisco Systems, Inc.)

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)

O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)

O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()

O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)

O4 - HKLM..\Run: [Regedit32] C:\WINDOWS\System32\regedit.exe File not found

O4 - HKLM..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)

O4 - HKLM..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)

O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)

O4 - HKU\S-1-5-21-1645522239-630328440-839522115-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe ()

O4 - HKU\S-1-5-21-1645522239-630328440-839522115-1003..\Run: [braviax] File not found

O4 - HKU\S-1-5-21-1645522239-630328440-839522115-1003..\Run: [msword98] C:\Documents and Settings\madej\msword98.exe ()

O4 - HKU\S-1-5-21-1645522239-630328440-839522115-1003..\Run: [NBJ] C:\Program Files\Ahead\Nero BackItUp\NBJ.exe (Ahead Software AG)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

O4 - Startup: C:\Documents and Settings\madej\Menu Start\Programy\Autostart\ikowin32.exe (Microsoft Corporation)

O4 - Startup: C:\Documents and Settings\madej\Menu Start\Programy\Autostart\MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe (MagicISO, Inc.)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-1645522239-630328440-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm ()

O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm ()

O8 - Extra context menu item: Dodaj do listy blokowanych banerów - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm ()

O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)

O9 - Extra Button: Statystyki ochrony WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll (Kaspersky Lab)

O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)

O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe (FlashGet.com)

O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe (FlashGet.com)

O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)

O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)

O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03)

O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)

O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (Reg Error: Value error.)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.204.159.1 217.98.63.164

O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ipp - No CLSID value found

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp - No CLSID value found

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)

O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\mzvkbd.dll (Kaspersky Lab)

O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\mzvkbd3.dll (Kaspersky Lab)

O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\adialhk.dll (Kaspersky Lab)

O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\kloehk.dll (Kaspersky Lab)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)

O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\System32\klogon.dll (Kaspersky Lab)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

O31 - SafeBoot: AlternateShell - cmd.exe

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009-05-18 22:10:50 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O33 - MountPoints2\{5131d6ea-7ad9-11de-b14f-001bfc1b0f5a}\Shell\AutoRun\command - "" = H:\e8kj.exe -- File not found

O33 - MountPoints2\{5131d6ea-7ad9-11de-b14f-001bfc1b0f5a}\Shell\explore\Command - "" = H:\e8kj.exe -- File not found

O33 - MountPoints2\{5131d6ea-7ad9-11de-b14f-001bfc1b0f5a}\Shell\open\Command - "" = H:\e8kj.exe -- File not found

O33 - MountPoints2\{80b1b71e-51e3-11de-b0fa-001bfc1b0f5a}\Shell\AutoRun\command - "" = e8kj.exe

O33 - MountPoints2\{80b1b71e-51e3-11de-b0fa-001bfc1b0f5a}\Shell\explore\Command - "" = e8kj.exe

O33 - MountPoints2\{80b1b71e-51e3-11de-b0fa-001bfc1b0f5a}\Shell\open\Command - "" = e8kj.exe

O34 - HKLM BootExecute: (autocheck) - File not found

O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)

O34 - HKLM BootExecute: (*) - File not found

O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()

========== Files/Folders - Created Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]

[2009-08-14 18:57:36 | 00,015,688 | ---- | C] () -- C:\WINDOWS\System32\lsdelete.exe

[2009-08-14 18:47:20 | 00,026,686 | ---- | C] () -- C:\WINDOWS\System32\msword98.exe

[2009-08-13 21:12:33 | 00,013,762 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\MixVibes_Producer_DVS_v7_0_4_3.torrent

[2009-08-13 20:43:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\madej\Dane aplikacji\Pioneer

[2009-08-13 20:38:14 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ipp20

[2009-08-13 20:38:03 | 00,000,000 | ---D | C] -- C:\Program Files\Pioneer

[2009-08-13 18:48:15 | 12,724,224 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Inna - Love (DJ Nejtrino & DJ Baur Remix).mp3

[2009-08-13 18:42:30 | 12,839,792 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Inna - Love (DJ ZAM Remix) www.club-nation.eu by GumOoL.mp3

[2009-08-13 18:15:48 | 14,491,942 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Paffendorf - Discover (Mowgli and Bagheera Remix).mp3

[2009-08-13 18:15:36 | 17,553,058 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\920462_How_Soon_Is_Now_feat__Julie_Mc_Knight_Extended_Version By Pit.mp3

[2009-08-13 16:21:33 | 13,691,298 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\PH Electro ft. Flo-Rida - Protect Your Right Round (SetMix Bootleg Electro Version).mp3

[2009-08-12 23:03:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\madej\Pulpit\pen3

[2009-08-12 20:41:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\madej\Dane aplikacji\Juce VST Host

[2009-08-12 00:41:04 | 05,838,487 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\02 - Inna - Amazing (DJ Rovys Club Version).mp3

[2009-08-12 00:34:00 | 07,955,584 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\The Killers - Human (Fredrik & Alex Remix).mp3

[2009-08-12 00:21:48 | 08,069,832 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\FLAVY Deejay feat. Danny - Breeze (Originala - Radio Edit).mp3

[2009-08-11 20:56:47 | 00,245,847 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\wydruk.rar

[2009-08-11 20:56:41 | 00,361,482 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\skrypty (2).rar

[2009-08-10 20:53:30 | 00,028,816 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\193b2e591a.jpeg

[2009-08-07 21:30:15 | 07,591,208 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\DJ Drilla ft. Seventy7 - The Way (MK Schulz Remix).mp3

[2009-08-07 21:27:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\madej\Pulpit\pen2

[2009-08-07 19:05:42 | 03,046,382 | ---- | C] () -- C:\Documents and Settings\madej\Moje dokumenty\b7kqbt.gif

[2009-08-07 19:05:28 | 18,782,984 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Ozgur Can - Kimiya (Paul Thomas and_Sonny_Whartons Pilgrimage To Brixton Remix).mp3

[2009-08-07 19:05:28 | 08,374,611 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\David Guetta Feat. Will.I.Am - I Wanna Go Crazy (Radio Edit).mp3

[2009-08-07 18:54:27 | 18,002,616 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Generous - I Do With Love (DJ Elay 2009 Remix)4clubbers.com.pl.mp3

[2009-08-05 22:20:49 | 11,536,888 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Feeldii - Valentino Mon Amour ( Fendbrothers Remake ).mp3

[2009-08-05 22:08:05 | 09,452,872 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\DJ Drilla ft. Seventy7 - The Way (Mozzymann Remix) www.club-nation.eu.mp3

[2009-08-05 20:51:05 | 15,293,827 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Christopher S- I should feel better (Slin ProjectRemix).mp3

[2009-08-04 22:31:01 | 04,284,917 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Franek Kimono - Na Progu Raju..mp3

[2009-08-04 21:40:57 | 12,921,318 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Emes - Wonderfull life (Club mix).mp3

[2009-08-04 21:33:46 | 13,987,019 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Inna - love ( Mike Trayo remix ).mp3

[2009-08-03 21:20:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\madej\Pulpit\pen

[2009-08-02 20:41:31 | 04,347,820 | ---- | C] () -- C:\Documents and Settings\madej\Moje dokumenty\live.mp3

[2009-08-01 22:45:26 | 09,849,269 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Madonna - Celebration (Benny Benassi Edit) [by GumOoL].mp3

[2009-08-01 22:03:16 | 16,879,616 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\aaren san-narcotic flash (original mix).mp3

[2009-08-01 22:03:06 | 14,598,789 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Joachim Garraud Vs. Deadmau5 - The Reward is Ready (Pierre Hubert Bootleg) electroaddicted.blogspot.com.mp3

[2009-08-01 21:15:56 | 13,957,207 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Scarmix - Close Your Eyes (Original Mix)www.livingelectro.com.mp3

[2009-08-01 21:07:29 | 15,262,824 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Patrick Hagenaar feat Jon Junior - We Feel The Same (Original Club Mix).mp3

[2009-08-01 20:52:47 | 00,359,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tcpip.sys.flg

[2009-08-01 20:52:43 | 00,000,000 | ---D | C] -- C:\Program Files\FlashGet

[2009-07-31 23:39:01 | 15,414,452 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\De_Bos_-_On_The_Run_%28Ralvero_Get_Down_Remix%29.mp3

[2009-07-31 21:29:05 | 11,669,348 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Just Fine (Moto Blanco Club Vox).mp3

[2009-07-31 20:53:42 | 12,929,861 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\The_Ian_Carey_Project_-_Get_Shaky_%28Deeside_Deejays_Mix%29.mp3

[2009-07-31 20:49:38 | 17,731,789 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Michael_Canitrot_-_Desire_%28Syke%27N%27Sugarstarr_Club_Mix%29.mp3

[2009-07-31 03:11:31 | 00,892,928 | ---- | C] (Free Software Foundation) -- C:\WINDOWS\System32\iconv.dll

[2009-07-31 03:11:31 | 00,795,648 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll

[2009-07-31 03:11:31 | 00,675,840 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax

[2009-07-28 21:31:26 | 11,974,972 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Kernkraft 400 - Zombie Nation (Laidback Luke Bootleg) [houselegend.com].mp3

[2009-07-28 20:43:58 | 63,043,688 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\01-tomorrowland_2009_-_laidback_luke_live-proper-sat-07-25-2009-talion.mp3

[2009-07-28 17:46:50 | 32,801,366 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Dada_-_Life___Tomorrowland_Festival_25-07-2009.mp3

[2009-07-28 17:34:42 | 96,006,922 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\tear_out_nation_09_sesion_napt.mp3

[2009-07-28 00:11:36 | 67,524,754 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\laidback_luke_-_radio_fg__club_fg_-sat-07-26-2009.mp3

[2009-07-27 00:02:18 | 73,937,237 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\01-dj_icey-automatic_static_(siriusxm)-repack-sat-17-07-2009-1king.mp3

[2009-07-26 23:09:56 | 00,015,251 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\odwolanie dziekan.docx

[2009-07-26 21:44:13 | 00,022,528 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\odwołanie.doc

[2009-07-24 20:41:52 | 15,371,515 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Break Down The House (Doc Brown vs. Mark Moreno Bootleg).mp3

[2009-07-24 20:06:28 | 10,409,9478 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\David_Vendetta_%26_Micah_-_Locca_Club_-_23.07.2009.mp3

[2009-07-21 21:40:33 | 00,024,064 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\wzor_odwolania.doc

[2009-07-20 18:55:56 | 61,944,241 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\Home Records - July 2009 mix 3 ( LDK in the mix ).mp3

[2009-07-19 22:03:49 | 62,325,176 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\DTP058-napt-datatransmission.mp3

[2009-07-17 19:57:59 | 04,648,210 | ---- | C] () -- C:\Documents and Settings\madej\Pulpit\LOVE SYSTEM - Noc z renata.mp3

[2009-05-19 00:53:41 | 00,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll

[2009-05-19 00:53:41 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest

[2009-05-18 22:47:10 | 00,008,815 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini

[2009-05-18 22:47:08 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys

[2009-05-18 22:46:54 | 00,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS

[2009-05-02 07:58:54 | 00,000,122 | ---- | C] () -- C:\WINDOWS\msmmdx9.ini

[2007-12-05 01:41:00 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll

[2007-12-05 01:41:00 | 01,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll

[2007-12-05 01:41:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll

[2007-12-05 01:41:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll

[2007-12-05 01:41:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll

[2004-11-30 12:10:00 | 00,161,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\SDPIOSYS.SYS

[2004-08-04 01:44:00 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll

[2004-07-17 12:36:38 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys

[2001-07-22 00:16:20 | 00,000,636 | ---- | C] () -- C:\WINDOWS\win.ini

[2001-07-22 00:15:52 | 00,000,257 | ---- | C] () -- C:\WINDOWS\system.ini

========== Files - Modified Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]

[3 C:\WINDOWS\*.tmp files]

[2009-08-14 19:20:34 | 02,920,992 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat

[2009-08-14 19:20:11 | 00,025,996 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx

[2009-08-14 19:11:59 | 00,574,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ntfs.sys

[2009-08-14 19:11:48 | 00,574,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntfs.sys

[2009-08-14 19:10:56 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2009-08-14 19:10:54 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2009-08-14 19:09:58 | 00,548,896 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.dat

[2009-08-14 19:09:58 | 00,005,052 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.idx

[2009-08-14 18:47:20 | 00,026,686 | ---- | M] () -- C:\WINDOWS\System32\msword98.exe

[2009-08-13 22:21:36 | 00,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job

[2009-08-13 21:12:33 | 00,013,762 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\MixVibes_Producer_DVS_v7_0_4_3.torrent

[2009-08-13 20:39:43 | 00,275,760 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2009-08-13 18:50:54 | 12,724,224 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Inna - Love (DJ Nejtrino & DJ Baur Remix).mp3

[2009-08-13 18:44:24 | 12,839,792 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Inna - Love (DJ ZAM Remix) www.club-nation.eu by GumOoL.mp3

[2009-08-13 18:22:39 | 17,553,058 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\920462_How_Soon_Is_Now_feat__Julie_Mc_Knight_Extended_Version By Pit.mp3

[2009-08-13 18:20:27 | 14,491,942 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Paffendorf - Discover (Mowgli and Bagheera Remix).mp3

[2009-08-13 16:23:54 | 13,691,298 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\PH Electro ft. Flo-Rida - Protect Your Right Round (SetMix Bootleg Electro Version).mp3

[2009-08-12 00:41:52 | 05,838,487 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\02 - Inna - Amazing (DJ Rovys Club Version).mp3

[2009-08-12 00:36:37 | 07,955,584 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\The Killers - Human (Fredrik & Alex Remix).mp3

[2009-08-12 00:23:40 | 08,069,832 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\FLAVY Deejay feat. Danny - Breeze (Originala - Radio Edit).mp3

[2009-08-11 20:56:48 | 00,245,847 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\wydruk.rar

[2009-08-11 20:56:41 | 00,361,482 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\skrypty (2).rar

[2009-08-10 20:53:31 | 00,028,816 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\193b2e591a.jpeg

[2009-08-07 21:32:45 | 07,591,208 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\DJ Drilla ft. Seventy7 - The Way (MK Schulz Remix).mp3

[2009-08-07 19:10:20 | 18,782,984 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Ozgur Can - Kimiya (Paul Thomas and_Sonny_Whartons Pilgrimage To Brixton Remix).mp3

[2009-08-07 19:09:08 | 08,374,611 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\David Guetta Feat. Will.I.Am - I Wanna Go Crazy (Radio Edit).mp3

[2009-08-07 19:06:49 | 03,046,382 | ---- | M] () -- C:\Documents and Settings\madej\Moje dokumenty\b7kqbt.gif

[2009-08-07 18:59:33 | 18,002,616 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Generous - I Do With Love (DJ Elay 2009 Remix)4clubbers.com.pl.mp3

[2009-08-05 22:25:12 | 11,536,888 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Feeldii - Valentino Mon Amour ( Fendbrothers Remake ).mp3

[2009-08-05 22:14:47 | 09,452,872 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\DJ Drilla ft. Seventy7 - The Way (Mozzymann Remix) www.club-nation.eu.mp3

[2009-08-05 20:53:17 | 15,293,827 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Christopher S- I should feel better (Slin ProjectRemix).mp3

[2009-08-05 19:38:45 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2009-08-04 22:33:29 | 04,284,917 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Franek Kimono - Na Progu Raju..mp3

[2009-08-04 21:44:06 | 13,987,019 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Inna - love ( Mike Trayo remix ).mp3

[2009-08-04 21:41:24 | 12,921,318 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Emes - Wonderfull life (Club mix).mp3

[2009-08-02 20:45:21 | 04,347,820 | ---- | M] () -- C:\Documents and Settings\madej\Moje dokumenty\live.mp3

[2009-08-01 22:48:41 | 09,849,269 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Madonna - Celebration (Benny Benassi Edit) [by GumOoL].mp3

[2009-08-01 22:14:18 | 14,598,789 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Joachim Garraud Vs. Deadmau5 - The Reward is Ready (Pierre Hubert Bootleg) electroaddicted.blogspot.com.mp3

[2009-08-01 22:12:13 | 16,879,616 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\aaren san-narcotic flash (original mix).mp3

[2009-08-01 21:17:54 | 13,957,207 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Scarmix - Close Your Eyes (Original Mix)www.livingelectro.com.mp3

[2009-08-01 21:09:46 | 15,262,824 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Patrick Hagenaar feat Jon Junior - We Feel The Same (Original Club Mix).mp3

[2009-07-31 23:48:00 | 15,414,452 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\De_Bos_-_On_The_Run_%28Ralvero_Get_Down_Remix%29.mp3

[2009-07-31 21:32:55 | 11,669,348 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Just Fine (Moto Blanco Club Vox).mp3

[2009-07-31 21:01:53 | 12,929,861 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\The_Ian_Carey_Project_-_Get_Shaky_%28Deeside_Deejays_Mix%29.mp3

[2009-07-31 20:57:06 | 17,731,789 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Michael_Canitrot_-_Desire_%28Syke%27N%27Sugarstarr_Club_Mix%29.mp3

[2009-07-28 18:03:40 | 96,006,922 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\tear_out_nation_09_sesion_napt.mp3

[2009-07-28 18:03:08 | 32,801,366 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Dada_-_Life___Tomorrowland_Festival_25-07-2009.mp3

[2009-07-28 00:26:49 | 67,524,754 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\laidback_luke_-_radio_fg__club_fg_-sat-07-26-2009.mp3

[2009-07-27 20:27:16 | 00,000,636 | ---- | M] () -- C:\WINDOWS\win.ini

[2009-07-27 20:27:16 | 00,000,257 | ---- | M] () -- C:\WINDOWS\system.ini

[2009-07-26 23:10:32 | 00,015,251 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\odwolanie dziekan.docx

[2009-07-26 21:44:13 | 00,022,528 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\odwołanie.doc

[2009-07-25 22:07:42 | 63,043,688 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\01-tomorrowland_2009_-_laidback_luke_live-proper-sat-07-25-2009-talion.mp3

[2009-07-24 21:00:24 | 10,409,9478 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\David_Vendetta_%26_Micah_-_Locca_Club_-_23.07.2009.mp3

[2009-07-24 20:45:09 | 15,371,515 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Break Down The House (Doc Brown vs. Mark Moreno Bootleg).mp3

[2009-07-21 21:40:34 | 00,024,064 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\wzor_odwolania.doc

[2009-07-20 22:06:00 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job

[2009-07-20 19:20:21 | 61,944,241 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\Home Records - July 2009 mix 3 ( LDK in the mix ).mp3

[2009-07-19 22:24:55 | 62,325,176 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\DTP058-napt-datatransmission.mp3

[2009-07-17 20:50:34 | 73,937,237 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\01-dj_icey-automatic_static_(siriusxm)-repack-sat-17-07-2009-1king.mp3

[2009-07-17 20:05:01 | 04,648,210 | ---- | M] () -- C:\Documents and Settings\madej\Pulpit\LOVE SYSTEM - Noc z renata.mp3

========== LOP Check ==========

[2009-05-31 16:37:33 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji

[2009-05-28 22:15:16 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{83C91755-2546-441D-AC40-9A6B4B860800}

[2009-05-19 00:33:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}

[2009-05-18 22:53:51 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{D0D0BE61-F9F3-4330-BF43-3FC63530C4E6}

[2009-05-18 22:45:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Pure Networks

[2009-05-19 00:14:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tlen.pl

[2009-05-18 02:58:42 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Default User\Dane aplikacji

[2009-05-18 22:13:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji

[2009-08-14 18:47:14 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\madej\Dane aplikacji

[2009-05-19 00:41:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\madej\Dane aplikacji\Ableton

[2009-07-07 23:14:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\madej\Dane aplikacji\Ahead

[2009-05-29 22:57:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\madej\Dane aplikacji\Blue Cat Audio

[2009-08-12 20:41:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\madej\Dane aplikacji\Juce VST Host

[2009-08-13 20:43:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\madej\Dane aplikacji\Pioneer

[2009-08-05 19:46:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\madej\Dane aplikacji\Tlen.pl

[2009-08-13 22:34:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\madej\Dane aplikacji\uTorrent

[2009-05-18 22:13:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji

[2009-08-13 22:21:36 | 00,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job

[2009-07-20 22:06:00 | 00,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\AppleSoftwareUpdate.job

[2001-07-22 00:17:50 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini

[2009-08-14 19:10:56 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT

========== Purity Check ==========

< End of report >

Mateusz J.
komentarz
komentarz

Uruchom OTL i w oknie Custom Scans/Fixes wklej następujący skrypt:

:OTLPRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)O4 - HKLM..\Run: [braviax] File not foundO4 - HKLM..\Run: [msword98] C:\WINDOWS\System32\msword98.exe ()O4 - HKLM..\Run: [Regedit32] C:\WINDOWS\System32\regedit.exe File not foundO4 - HKU\S-1-5-21-1645522239-630328440-839522115-1003..\Run: [braviax] File not foundO4 - HKU\S-1-5-21-1645522239-630328440-839522115-1003..\Run: [msword98] C:\Documents and Settings\madej\msword98.exe ()O4 - Startup: C:\Documents and Settings\madej\Menu Start\Programy\Autostart\ikowin32.exe (Microsoft Corporation):FilesC:\WINDOWS\System32\msword98.exeC:\Documents and Settings\madej\Menu Start\Programy\Autostart\ikowin32.exe:Commands[emptytemp][start explorer][Reboot]

Kliknij w Run Fix i zacznie się usuwanie.

Po ponownym uruchomieniu się komputera pokaż log z usuwania.

Z0nK
komentarz
komentarz

a dokładnie gdzie mogę ten log znaleźć ?

Gość
komentarz
komentarz

a dokładnie gdzie mogę ten log znaleźć ?

Właśnie, że nigdzie. Dzisiaj też używałem OTL'a z opcji Run Fix - po restarcie nie pokazał się żaden raport.

Pokaż najnowszy log z OTL.

.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.