x-kom hosting

problem z kasperskym online

moxia
utworzono
utworzono

chcialem sobie zwyczajnie przeskanowac komputer kasperskym online kiedy moim oczom ukazal sie taki komunikat (niestety nie moge zalaczyc zdjecia)"Aktualizacja nie powiodła się. Nie powiodło się uruchomienie programu. Zamknij okno Kaspersky Online Scanner 7.0, otwórz je ponownie i zainstaluj program.

Aby uaktualnić Kaspersky Online Scanner 7.0 komputer musi być połączony z internetem. Przy użyciu najnowszych uaktualnień baz danych można wykrywać nowe wirusy i zagrożenia. Aby korzystać z Kaspersky Online Scanner 7.0 musisz połączyć się z internetem. [ERROR: Błąd w działaniu modułu aktualizacji podczas pobierania]?"

internet jest podłączony, próbowałam kilka razy i dalej nic,czy to moze byc wirus?

dar55
komentarz
komentarz

i pisze że musisz z konta administratora ;) a nie konta o prawach administratora

moxia
komentarz
komentarz (edytowane)

nierozumiem :blink: zawsze skanowanie wykonywalem w ten sam sposob i zawsze skanowalo,a teraz takie cos,mozesz jasniej o co biega?

dar55
komentarz
komentarz

zawsze kiedyś nie znaczy teraz

wejdź na konto administratora i włacz kaspra , ale wyłącz w tym czasie swego antywira

jak się ie da daj logi pewnie z OTL (chłopaki ci powiedzą dokładnie jakie )

moxia
komentarz
komentarz

jak mam go wlaczyc przez administratora?o konkretne logi OTL to gdzie mam sie zglosic?

Mateusz J.
komentarz
komentarz

Instrukcja tworzenia loga: http://www.forumpc.pl/index.php?showtopic=104338 wrzucasz go tutaj, do swojego tematu zgodnie z Regulaminem: UWAGA: Każdy log umieszczamy tylko i wyłącznie pomiędzy tagami [log ] oraz [/log ] (bez spacji).

Czy nie posiadasz czasem Visty?

Jeśli tak klikasz prawym przyciskiem myszy na ikonkę Internet explorer i wybierasz uruchom jako administrator.

Następnie próbujesz wykonać skan online.

moxia
komentarz
komentarz

no i tak robie otwieram przegladarke przez admina i dalej to samo,zrobie te logi i sie odezwe

mam log ale tylko jeden OTL,a druga sprawa jak go poprawnie wkleic na forum,bo nie wiem jak to zrobic?

moxia
komentarz
komentarz (edytowane)
Log do sprawdzenia
OTL logfile created on: 2009-08-14 23:24:34 - Run 1
OTL by OldTimer - Version 3.0.10.7 Folder = C:\Users\mhj\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 100,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 142,65 Gb Total Space | 77,23 Gb Free Space | 54,14% Space Free | Partition Type: NTFS
Drive D: | 142,67 Gb Total Space | 135,18 Gb Free Space | 94,75% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MHJ-PC
Current User Name: mhj
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2008-12-08 18:42:00 | 00,203,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe
PRC - [2009-04-10 23:27:38 | 02,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXE
PRC - [2008-03-18 21:27:12 | 00,013,312 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe
PRC - [2008-09-11 17:46:06 | 00,522,792 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
PRC - [2008-03-03 13:11:14 | 00,016,384 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
PRC - [2007-03-06 11:35:02 | 00,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
PRC - [2008-03-04 23:38:34 | 00,500,784 | ---- | M] (Egis Incorporated) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
PRC - [2009-05-14 15:47:54 | 00,731,840 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2008-03-21 13:22:52 | 00,024,576 | ---- | M] () -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
PRC - [2008-10-16 17:26:20 | 00,860,160 | ---- | M] (Intel® Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
PRC - [2007-01-17 11:20:10 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2007-12-06 16:15:28 | 00,110,592 | ---- | M] () -- C:\Acer\Mobility Center\MobilityService.exe
PRC - [2007-12-03 15:21:24 | 00,869,672 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
PRC - [2008-04-06 22:42:24 | 00,050,424 | ---- | M] (NewTech InfoSystems, Inc.) -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
PRC - [2008-04-04 03:03:14 | 00,131,072 | ---- | M] () -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
PRC - [2008-12-25 03:37:21 | 00,066,872 | ---- | M] () -- C:\Windows\System32\PnkBstrA.exe
PRC - [2008-10-16 16:54:34 | 00,466,944 | ---- | M] (Intel® Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
PRC - [2008-01-10 17:03:00 | 00,233,472 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\RS_Service.exe
PRC - [2009-03-30 16:28:36 | 01,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
PRC - [2009-04-10 23:28:10 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
PRC - [2009-04-10 23:28:16 | 00,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiprvse.exe
PRC - [2007-10-23 10:56:18 | 00,200,704 | ---- | M] () -- C:\Windows\PLFSetI.exe
PRC - [2009-05-07 23:31:36 | 00,040,960 | ---- | M] () -- C:\Program Files\AutoInstall\ZD1211B_Auto_Install_CD_Only_Gen_0ACE20FF\AutoEJCD.EXE
PRC - [2009-05-14 15:47:08 | 02,029,640 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2009-02-27 17:10:28 | 00,035,696 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
PRC - [2008-01-21 04:25:11 | 00,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehtray.exe
PRC - [2008-01-21 04:25:11 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehmsas.exe
PRC - [2009-03-30 16:28:36 | 00,183,152 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
PRC - [2009-04-10 23:28:10 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
PRC - [2009-08-08 17:06:13 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-08-14 23:17:23 | 00,514,048 | ---- | M] (OldTimer Tools) -- C:\Users\mhj\Desktop\OTL.exe
PRC - [2009-04-10 23:28:16 | 00,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiprvse.exe

========== Win32 Services (SafeList) ==========

SRV - [2008-03-18 21:27:12 | 00,013,312 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio [Auto | Running])
SRV - [2009-03-29 21:42:12 | 00,031,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2008-09-11 17:46:06 | 00,522,792 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe -- (btwdins [Auto | Running])
SRV - [2008-03-03 13:11:14 | 00,016,384 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe -- (BUNAgentSvc [Auto | Running])
SRV - [2007-03-06 11:35:02 | 00,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service [Auto | Running])
SRV - [2009-03-29 21:42:16 | 00,066,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2008-03-04 23:38:34 | 00,500,784 | ---- | M] (Egis Incorporated) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe -- (eDataSecurity Service [Auto | Running])
SRV - [2008-01-21 04:25:09 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Stopped])
SRV - [2006-11-02 14:35:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
SRV - [2006-11-02 14:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehstart.dll -- (ehstart [Auto | Stopped])
SRV - [2009-05-14 15:54:22 | 00,020,680 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv [On_Demand | Stopped])
SRV - [2009-05-14 15:47:54 | 00,731,840 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn [Auto | Running])
SRV - [2008-03-21 13:22:52 | 00,024,576 | ---- | M] () -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe -- (ETService [Auto | Running])
SRV - [2009-04-10 23:28:26 | 01,017,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll -- (Eventlog [Auto | Running])
SRV - [2008-10-16 17:26:20 | 00,860,160 | ---- | M] (Intel® Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng [Auto | Running])
SRV - [2009-02-18 11:39:22 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2008-08-29 11:01:22 | 00,033,752 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\NOS\bin\getPlus_HelperSvc.exe -- (getPlus® Helper [On_Demand | Stopped])
SRV - [2008-11-10 14:19:40 | 00,138,168 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
SRV - [2005-04-04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
SRV - [2009-02-18 11:38:44 | 00,879,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [unknown | Stopped])
SRV - [2006-11-02 11:46:05 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\irmon.dll -- (Irmon [Auto | Running])
SRV - [2007-01-17 11:20:10 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService [Auto | Running])
SRV - [2007-12-06 16:15:28 | 00,110,592 | ---- | M] () -- C:\Acer\Mobility Center\MobilityService.exe -- (MobilityService [Auto | Running])
SRV - [2007-12-03 15:21:24 | 00,869,672 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe -- (Nero BackItUp Scheduler 3 [Auto | Running])
SRV - [2009-02-18 11:38:44 | 00,129,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2007-12-13 20:10:56 | 00,447,784 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe -- (NMIndexingService [Disabled | Stopped])
SRV - [2008-04-06 22:42:24 | 00,050,424 | ---- | M] (NewTech InfoSystems, Inc.) -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe -- (NTIBackupSvc [Auto | Running])
SRV - [2008-04-04 03:03:14 | 00,131,072 | ---- | M] () -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe -- (NTISchedulerSvc [Auto | Running])
SRV - [2008-12-08 18:42:00 | 00,203,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe -- (nvsvc [Auto | Running])
SRV - [2008-11-04 01:06:28 | 00,441,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [1999-01-12 22:49:04 | 00,323,641 | ---- | M] () -- C:\Program Files\Microsoft Office\Office\OWSTIMER.EXE -- (OWSTimer [On_Demand | Stopped])
SRV - [2008-12-25 03:37:21 | 00,066,872 | ---- | M] () -- C:\Windows\System32\PnkBstrA.exe -- (PnkBstrA [Auto | Running])
SRV - [2008-10-16 16:54:34 | 00,466,944 | ---- | M] (Intel® Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc [Auto | Running])
SRV - [2008-01-10 17:03:00 | 00,233,472 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\RS_Service.exe -- (RS_Service [Auto | Running])
SRV - File not found -- -- (ScsiAccess [Auto | Stopped])
SRV - [2009-01-07 13:40:56 | 00,348,752 | ---- | M] (PC Tools) -- C:\Program Files\Spyware Doctor\pctsAuxs.exe -- (sdAuxService [On_Demand | Stopped])
SRV - [2009-01-21 14:08:06 | 01,095,560 | ---- | M] (PC Tools) -- C:\Program Files\Spyware Doctor\pctsSvc.exe -- (sdCoreService [On_Demand | Stopped])
SRV - [2008-08-07 11:17:30 | 00,575,488 | ---- | M] (Nokia.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer [On_Demand | Stopped])
SRV - [2009-06-28 02:10:16 | 00,316,664 | ---- | M] (Valve Corporation) -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service [On_Demand | Stopped])
SRV - [2008-01-21 04:23:32 | 00,272,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Auto | Running])
SRV - [2009-03-30 16:28:36 | 01,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc [Auto | Running])
SRV - [2008-01-21 04:25:33 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])

========== Driver Services (SafeList) ==========

DRV - [2008-01-21 04:23:21 | 00,422,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])
DRV - [2008-01-21 04:23:25 | 00,300,600 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])
DRV - [2008-01-21 04:23:26 | 00,101,432 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])
DRV - [2008-01-21 04:23:27 | 00,149,560 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])
DRV - [2008-03-01 01:13:38 | 01,202,560 | ---- | M] (Agere Systems) -- C:\Windows\System32\DRIVERS\AGRSM.sys -- (AgereSoftModem [On_Demand | Running])
DRV - [2006-11-02 11:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])
DRV - [2008-01-21 04:23:00 | 00,017,464 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\drivers\aliide.sys -- (aliide [Disabled | Stopped])
DRV - [2008-01-21 04:23:23 | 00,079,416 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arc.sys -- (arc [Disabled | Stopped])
DRV - [2008-01-21 04:23:24 | 00,079,928 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])
DRV - [2007-08-17 15:14:44 | 00,891,392 | ---- | M] (Atheros Communications, Inc.) -- C:\Windows\System32\DRIVERS\athrusb.sys -- (athrusb [On_Demand | Stopped])
DRV - [2008-01-21 04:23:20 | 00,179,712 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\DRIVERS\b57nd60x.sys -- (b57nd60x [On_Demand | Stopped])
DRV - [2006-11-02 10:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo [On_Demand | Stopped])
DRV - [2006-11-02 10:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp [On_Demand | Stopped])
DRV - [2006-11-02 10:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserid.sys -- (Brserid [Disabled | Stopped])
DRV - [2006-11-02 10:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm [Disabled | Stopped])
DRV - [2006-11-02 10:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm [Disabled | Stopped])
DRV - [2006-11-02 10:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer [On_Demand | Stopped])
DRV - [2008-11-14 22:09:07 | 00,081,960 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwaudio.sys -- (btwaudio [On_Demand | Stopped])
DRV - [2008-11-14 22:09:07 | 00,100,392 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwavdt.sys -- (btwavdt [On_Demand | Stopped])
DRV - [2008-11-14 22:09:07 | 00,029,736 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\DRIVERS\btwl2cap.sys -- (btwl2cap [On_Demand | Stopped])
DRV - [2008-11-14 22:09:07 | 00,017,320 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\DRIVERS\btwrchid.sys -- (btwrchid [On_Demand | Stopped])
DRV - [2008-01-21 04:23:00 | 00,019,000 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])
DRV - [2006-11-03 07:29:38 | 00,021,264 | ---- | M] (Dritek System Inc.) -- C:\Windows\System32\DRIVERS\DKbFltr.sys -- (DKbFltr [On_Demand | Running])
DRV - [2008-01-21 04:23:24 | 00,118,784 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])
DRV - [2009-05-14 15:41:10 | 00,114,472 | ---- | M] (ESET) -- C:\Windows\System32\DRIVERS\eamon.sys -- (eamon [Auto | Running])
DRV - [2009-05-14 15:47:14 | 00,107,256 | ---- | M] (ESET) -- C:\Windows\System32\DRIVERS\ehdrv.sys -- (ehdrv [system | Running])
DRV - [2008-01-21 04:23:22 | 00,342,584 | ---- | M] (Emulex) -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])
DRV - [2009-05-14 15:49:34 | 00,093,312 | ---- | M] (ESET) -- C:\Windows\System32\DRIVERS\epfwwfpr.sys -- (epfwwfpr [Auto | Running])
DRV - [1996-04-03 21:33:26 | 00,005,248 | ---- | M] () -- C:\Windows\system32\giveio.sys -- (giveio [boot | Running])
DRV - [2009-02-01 19:45:40 | 00,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\Windows\System32\DRIVERS\hamachi.sys -- (hamachi [On_Demand | Stopped])
DRV - [2008-01-21 04:23:26 | 00,040,504 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs [Disabled | Stopped])
DRV - [2008-01-21 04:23:22 | 00,200,704 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\VSTAZL3.SYS -- (HSFHWAZL [On_Demand | Stopped])
DRV - [2008-01-21 04:23:22 | 00,987,648 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\VSTDPV3.SYS -- (HSF_DPV [On_Demand | Stopped])
DRV - [2008-01-21 04:23:23 | 00,235,064 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV [Disabled | Stopped])
DRV - [2006-11-02 11:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])
DRV - [2008-03-21 10:48:24 | 00,015,392 | ---- | M] (Acer, Inc.) -- C:\Windows\System32\drivers\int15.sys -- (int15 [Auto | Running])
DRV - [2008-04-25 04:20:44 | 02,126,688 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2006-11-02 11:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])
DRV - [2006-11-02 11:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])
DRV - [2008-01-21 04:23:23 | 00,096,312 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])
DRV - [2008-01-21 04:23:25 | 00,089,656 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])
DRV - [2008-01-21 04:23:23 | 00,096,312 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])
DRV - [2008-01-21 04:23:27 | 00,031,288 | ---- | M] (LSI Corporation) -- C:\Windows\system32\drivers\megasas.sys -- (megasas [Disabled | Stopped])
DRV - [2008-01-21 04:23:27 | 00,386,616 | ---- | M] (LSI Corporation, Inc.) -- C:\Windows\system32\drivers\megasr.sys -- (MegaSR [Disabled | Stopped])
DRV - [2006-11-02 11:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x [Disabled | Stopped])
DRV - [2008-11-17 07:40:22 | 03,668,480 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\NETw5v32.sys -- (NETw5v32 [On_Demand | Running])
DRV - [2006-11-02 11:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])
DRV - [2008-05-07 07:38:20 | 00,017,536 | ---- | M] (Nokia) -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd [On_Demand | Stopped])
DRV - [2008-05-07 07:38:20 | 00,020,864 | ---- | M] (Nokia) -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc [On_Demand | Stopped])
DRV - [2008-01-21 04:23:23 | 00,030,720 | ---- | M] (National Semiconductor Corporation) -- C:\Windows\System32\DRIVERS\nscirda.sys -- (NSCIRDA [On_Demand | Stopped])
DRV - [2008-01-31 03:52:06 | 00,014,848 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Windows\System32\DRIVERS\NTIDrvr.sys -- (NTIDrvr [On_Demand | Running])
DRV - [2006-11-02 09:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])
DRV - [2008-09-24 17:09:48 | 00,045,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA [On_Demand | Running])
DRV - [2008-12-08 18:42:00 | 07,451,712 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvlddmkm.sys -- (nvlddmkm [On_Demand | Running])
DRV - [2008-01-21 04:23:21 | 00,102,968 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])
DRV - [2008-01-21 04:23:21 | 00,045,112 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor [Disabled | Stopped])
DRV - [2007-09-17 15:53:26 | 00,021,632 | ---- | M] (Nokia) -- C:\Windows\System32\DRIVERS\pccsmcfd.sys -- (pccsmcfd [On_Demand | Stopped])
DRV - [2008-11-22 21:11:10 | 00,047,360 | ---- | M] (VSO Software) -- C:\Windows\System32\Drivers\pcouffin.sys -- (pcouffin [On_Demand | Stopped])
DRV - [2009-03-06 16:45:06 | 00,130,424 | ---- | M] (PC Tools) -- C:\Windows\system32\drivers\PCTCore.sys -- (PCTCore [boot | Running])
DRV - [2008-03-04 23:38:42 | 00,018,992 | ---- | M] (Egis Incorporated) -- C:\Windows\system32\DRIVERS\psdfilter.sys -- (PSDFilter [boot | Running])
DRV - [2008-03-04 23:38:44 | 00,016,944 | ---- | M] (Egis Incorporated) -- C:\Windows\System32\DRIVERS\PSDNServ.sys -- (PSDNServ [Auto | Running])
DRV - [2008-03-04 23:38:44 | 00,060,464 | ---- | M] (Egis Incorporated) -- C:\Windows\System32\DRIVERS\PSDVdisk.sys -- (psdvdisk [Auto | Running])
DRV - [2008-11-20 21:19:06 | 00,043,872 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\Drivers\PxHelp20.sys -- (PxHelp20 [boot | Running])
DRV - [2008-01-21 04:23:24 | 01,122,360 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])
DRV - [2006-11-02 11:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])
DRV - [2006-11-02 08:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])
DRV - [2008-01-21 04:23:26 | 00,074,808 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])
DRV - [2006-09-24 15:28:46 | 00,005,248 | ---- | M] (Windows ® 2000 DDK provider) -- C:\Windows\system32\speedfan.sys -- (speedfan [boot | Running])
DRV - [2008-12-02 18:32:26 | 00,717,296 | ---- | M] () -- C:\Windows\System32\Drivers\sptd.sys -- (sptd [boot | Running])
DRV - [2006-11-02 11:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])
DRV - [2006-11-02 11:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])
DRV - [2006-11-02 11:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])
DRV - [2008-02-22 21:50:48 | 00,198,064 | ---- | M] (Synaptics, Inc.) -- C:\Windows\System32\DRIVERS\SynTP.sys -- (SynTP [On_Demand | Running])
DRV - [2008-01-31 03:51:50 | 00,013,824 | ---- | M] (NewTech Infosystems Corporation) -- C:\Windows\System32\drivers\UBHelper.sys -- (UBHelper [boot | Running])
DRV - [2008-01-21 04:23:20 | 00,238,648 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])
DRV - [2006-11-02 11:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])
DRV - [2008-01-21 04:23:23 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])
DRV - [2008-06-06 09:24:44 | 00,008,064 | ---- | M] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\System32\DRIVERS\usbser_lowerflt.sys -- (upperdev [On_Demand | Stopped])
DRV - [2009-04-10 21:42:56 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbser.sys -- (usbser [On_Demand | Stopped])
DRV - [2008-05-07 07:38:36 | 00,008,064 | ---- | M] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys -- (UsbserFilt [On_Demand | Stopped])
DRV - [2008-01-21 04:23:00 | 00,020,024 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\drivers\viaide.sys -- (viaide [Disabled | Stopped])
DRV - [2008-01-21 04:23:23 | 00,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])
DRV - [2008-01-21 04:23:23 | 00,654,336 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\VSTCNXT3.SYS -- (winachsf [On_Demand | Stopped])
DRV - [2007-12-16 17:57:20 | 00,075,776 | ---- | M] (Wasay) -- C:\Windows\System32\drivers\WSVD.sys -- (WSVD [On_Demand | Stopped])
DRV - [2008-02-21 11:55:00 | 00,299,008 | ---- | M] (Marvell) -- C:\Windows\System32\DRIVERS\yk60x86.sys -- (yukonwlh [On_Demand | Running])

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://pl.intl.acer.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-841358846-551305231-668691147-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-841358846-551305231-668691147-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKU\S-1-5-21-841358846-551305231-668691147-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-841358846-551305231-668691147-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=15003&l=dis
IE - HKU\S-1-5-21-841358846-551305231-668691147-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-841358846-551305231-668691147-1000\S-1-5-21-841358846-551305231-668691147-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}:6.0.12
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.2
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009-07-03 21:08:47 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-08-08 17:06:14 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-08-08 17:06:14 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2009-07-29 20:10:34 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\mozilla\Extensions
[2009-07-29 20:10:34 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009-08-14 17:47:47 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\mozilla\Firefox\Profiles\kr3d7yhj.default\extensions
[2009-07-29 20:12:31 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\mozilla\Firefox\Profiles\kr3d7yhj.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009-08-12 22:38:48 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\mozilla\Firefox\Profiles\kr3d7yhj.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009-08-08 17:06:24 | 00,002,234 | ---- | M] () -- C:\Users\mhj\AppData\Roaming\Mozilla\FireFox\Profiles\kr3d7yhj.default\searchplugins\askcom.xml
[2009-08-01 21:17:03 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009-08-08 17:06:14 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009-02-27 20:57:32 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}
[2009-08-08 17:06:11 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009-08-08 17:06:11 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2007-04-10 18:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2008-01-23 08:20:30 | 00,491,520 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2009-02-27 20:57:19 | 00,410,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2008-11-06 18:33:48 | 01,332,224 | ---- | M] (DivX,Inc.) -- C:\Program Files\mozilla firefox\plugins\npdivx32.dll
[2009-08-08 17:06:13 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2009-02-27 12:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2008-09-10 21:56:44 | 00,144,960 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll
[2008-09-10 21:37:54 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll
[2009-07-16 18:23:12 | 00,669,176 | ---- | M] (Ganymede Technologies) -- C:\Program Files\mozilla firefox\plugins\NPWORDS.dll
[2008-08-29 11:01:22 | 00,106,348 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\mozilla firefox\plugins\np_gp.dll
[2009-07-15 21:00:25 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2009-07-15 21:00:25 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2009-07-15 21:00:25 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009-07-15 21:00:25 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2009-07-15 21:00:25 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2009-07-15 21:00:25 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2009-07-15 21:00:25 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

Hosts file not found
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (Egis)
O2 - BHO: (Pomocnik rejestrowania za pomocą identyfikatora Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\S-1-5-21-841358846-551305231-668691147-1000\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AutoEJCD_0ACE20FF] C:\Program Files\AutoInstall\ZD1211B_Auto_Install_CD_Only_Gen_0ACE20FF\AutoEJCD.EXE ()
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [OWS Setup CmdLine] C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\40\bin\cfgwiz.exe (Microsoft Corporation)
O4 - HKLM..\Run: [PLFSetI] C:\Windows\PLFSetI.exe ()
O4 - HKU\S-1-5-21-841358846-551305231-668691147-1000..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-841358846-551305231-668691147-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-841358846-551305231-668691147-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-841358846-551305231-668691147-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-841358846-551305231-668691147-1000_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\wshbth.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (Reg Error: Key error.)
O16 - DPF: {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} https://www.bph.pl/pi/components/SignActivX.cab (SignActivX Control)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.63 62.179.1.62
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\Explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 23:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[2009-08-14 23:16:57 | 00,514,048 | ---- | C] (OldTimer Tools) -- C:\Users\mhj\Desktop\OTL.exe
[2009-08-12 20:10:40 | 00,000,000 | ---D | C] -- C:\Users\mhj\Documents\DriverGenius
[2009-08-11 22:45:54 | 00,499,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kerberos.dll
[2009-08-11 22:45:54 | 00,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msv1_0.dll
[2009-08-11 22:45:54 | 00,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdigest.dll
[2009-08-11 22:45:53 | 00,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schannel.dll
[2009-08-11 22:45:52 | 01,259,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2009-08-11 22:45:52 | 00,439,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ksecdd.sys
[2009-08-11 22:45:52 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
[2009-08-11 22:45:52 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsass.exe
[2009-08-11 22:45:49 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2009-08-11 22:45:44 | 02,066,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstscax.dll
[2009-08-11 22:45:42 | 00,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wkssvc.dll
[2009-08-11 22:45:40 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\atl.dll
[2009-08-11 22:45:22 | 10,628,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmp.dll
[2009-08-11 22:45:19 | 00,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpdxm.dll
[2009-08-11 22:45:19 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2009-08-11 22:45:19 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2009-08-11 22:45:18 | 08,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2009-08-11 22:45:18 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2009-08-11 22:45:17 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2009-08-11 22:45:17 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2009-08-09 16:59:00 | 00,000,000 | ---D | C] -- C:\Users\mhj\Desktop\aplikacje
[2009-08-05 23:48:36 | 00,081,920 | ---- | C] () -- C:\Users\mhj\AppData\Roaming\ezpinst.exe
[2009-08-05 21:39:19 | 00,011,114 | ---- | C] () -- C:\ProgramData\MainApp.dll
[2009-08-05 21:37:22 | 00,000,014 | ---- | C] () -- C:\Windows\System32\systeminfo3.dll
[2009-08-05 21:37:11 | 00,000,000 | ---D | C] -- C:\Users\mhj\Documents\PcSetup
[2009-08-05 21:32:27 | 00,000,000 | ---D | C] -- C:\ProgramData\DVD Shrink
[2009-08-02 22:14:23 | 00,000,000 | ---D | C] -- C:\Users\mhj\AppData\Local\TVU Networks
[2009-08-02 22:14:23 | 00,000,000 | ---D | C] -- C:\ProgramData\TVU Networks
[2009-07-29 20:10:26 | 00,001,688 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2009-07-29 18:46:57 | 03,599,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
[2009-07-29 18:46:51 | 06,079,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
[2009-07-29 18:46:49 | 01,167,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
[2009-07-29 18:46:48 | 00,828,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
[2009-07-29 18:46:48 | 00,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2009-07-29 18:46:46 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2009-07-26 20:16:46 | 00,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2009-07-26 19:07:53 | 00,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2009-07-26 09:48:44 | 00,000,000 | ---D | C] -- C:\Users\mhj\AppData\Roaming\GanymedeNet
[2009-07-25 02:27:19 | 00,000,000 | ---D | C] -- C:\Users\mhj\Documents\Moje rozszerzenia Google Gadgets
[2009-07-25 01:27:47 | 00,000,000 | ---D | C] -- C:\Program Files\ESET
[2009-07-24 22:13:41 | 03,449,826 | -H-- | C] () -- C:\Users\mhj\AppData\Local\IconCache.db
[2009-07-24 20:20:16 | 00,000,000 | ---D | C] -- C:\Users\mhj\AppData\Local\temp
[2009-07-24 20:20:15 | 00,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2009-07-24 20:08:50 | 00,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2009-07-24 20:08:50 | 00,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2009-07-24 20:08:50 | 00,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2009-07-24 20:08:50 | 00,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2009-07-24 20:08:50 | 00,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2009-07-24 20:08:50 | 00,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2009-07-24 20:08:50 | 00,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2009-07-24 19:45:18 | 00,103,424 | ---- | C] (Ashampoo) -- C:\Windows\System32\PowerUp3_nat.dll
[2009-07-24 19:39:23 | 00,000,000 | ---D | C] -- C:\Users\mhj\AppData\Roaming\Ashampoo
[2009-07-24 19:39:21 | 00,000,000 | ---D | C] -- C:\Users\mhj\AppData\Local\ashampoo
[2009-07-24 19:39:21 | 00,000,000 | ---D | C] -- C:\ProgramData\ashampoo
[2009-07-19 14:07:59 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2009-07-19 14:07:59 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2009-07-19 14:07:59 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lpk.dll
[2009-07-19 14:07:58 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2009-07-01 22:19:39 | 00,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009-06-28 12:08:11 | 00,000,016 | ---- | C] () -- C:\Windows\compedia.ini
[2009-06-27 17:52:01 | 00,000,109 | ---- | C] () -- C:\Windows\disney.ini
[2009-04-15 23:22:28 | 00,162,304 | ---- | C] () -- C:\Windows\System32\ztvunrar36.dll
[2009-04-15 23:22:28 | 00,153,088 | ---- | C] () -- C:\Windows\System32\unrar3.dll
[2009-04-15 23:22:28 | 00,077,312 | ---- | C] () -- C:\Windows\System32\ztvunace26.dll
[2009-04-15 23:22:28 | 00,075,264 | ---- | C] () -- C:\Windows\System32\unacev2.dll
[2009-02-02 23:59:20 | 00,000,241 | ---- | C] () -- C:\Windows\SIERRA.INI
[2008-12-25 02:40:58 | 00,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2008-12-02 18:32:26 | 00,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2008-11-22 17:32:56 | 00,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008-11-16 00:03:08 | 00,000,025 | ---- | C] () -- C:\Windows\cdplayer.ini
[2008-11-06 18:37:32 | 03,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008-11-06 18:34:00 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dtu100.dll.manifest
[2008-11-06 18:34:00 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dpl100.dll.manifest
[2008-11-06 18:33:02 | 00,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll
[2008-11-05 11:21:55 | 00,000,139 | ---- | C] () -- C:\Windows\7THLEVEL.INI
[2008-11-02 15:47:27 | 00,000,000 | ---- | C] () -- C:\Windows\galaxy.ini
[2008-10-22 17:31:55 | 00,000,625 | ---- | C] () -- C:\Windows\ODBC.INI
[2008-10-22 06:29:06 | 00,173,550 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2008-10-20 17:44:46 | 00,204,800 | ---- | C] () -- C:\Windows\System32\SysHook.dll
[2008-10-20 17:41:05 | 00,626,688 | ---- | C] () -- C:\Windows\Image.dll
[2008-10-20 17:41:05 | 00,000,036 | ---- | C] () -- C:\Windows\PidList.ini
[2008-10-20 17:35:22 | 00,001,694 | ---- | C] () -- C:\Windows\RtDefLvl.ini
[2008-10-07 09:13:30 | 00,197,912 | ---- | C] () -- C:\Windows\System32\physxcudart_20.dll
[2008-10-07 09:13:22 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2008-09-11 17:45:02 | 00,057,344 | ---- | C] () -- C:\Windows\System32\BtwNamespaceExt2.dll
[2008-05-13 00:32:57 | 00,487,424 | ---- | C] () -- C:\Windows\System32\INT15.dll
[2008-05-13 00:30:09 | 00,001,024 | RH-- | C] () -- C:\Windows\System32\NTIOFM4.dll
[2008-05-13 00:30:09 | 00,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN5.dll
[2008-04-30 10:09:06 | 01,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2008-04-30 10:09:01 | 00,872,448 | ---- | C] () -- C:\Windows\iconv.dll
[2008-04-30 10:09:01 | 00,743,424 | ---- | C] () -- C:\Windows\libxml2.dll
[2008-04-30 10:09:01 | 00,000,041 | ---- | C] () -- C:\Windows\Prelaunch.ini
[2007-03-29 23:00:40 | 00,203,264 | R--- | C] () -- C:\Windows\System32\CddbCdda.dll
[2006-11-02 14:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006-11-02 12:25:26 | 00,557,568 | ---- | C] () -- C:\Windows\System32\hpotscl1.dll
[2006-11-02 12:23:31 | 00,000,215 | ---- | C] () -- C:\Windows\system.ini
[2006-11-02 12:23:31 | 00,000,144 | ---- | C] () -- C:\Windows\win.ini
[2006-11-02 09:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2003-04-24 23:15:32 | 00,772,608 | ---- | C] () -- C:\Windows\System32\libavcodec.dll
[2003-04-24 23:15:32 | 00,287,232 | ---- | C] () -- C:\Windows\System32\libmplayer.dll
[2003-04-24 23:15:32 | 00,079,872 | ---- | C] () -- C:\Windows\System32\libmpeg2_ff.dll
[2003-04-24 22:29:24 | 00,147,456 | ---- | C] () -- C:\Windows\System32\TomsMoComp_ff.dll
[2002-10-06 20:42:57 | 00,237,568 | ---- | C] () -- C:\Windows\System32\OggDS.dll
[2002-10-05 01:04:25 | 00,921,600 | ---- | C] () -- C:\Windows\System32\vorbisenc.dll
[2002-10-05 01:04:24 | 00,188,416 | ---- | C] () -- C:\Windows\System32\vorbis.dll
[2002-10-05 01:04:17 | 00,045,056 | ---- | C] () -- C:\Windows\System32\ogg.dll
[2002-03-17 02:00:00 | 00,007,420 | ---- | C] () -- C:\Windows\UA000088.DLL
[2001-12-26 16:12:30 | 00,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001-11-14 14:56:00 | 01,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll
[2001-09-03 23:46:38 | 00,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001-07-30 16:33:56 | 00,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001-07-23 22:04:36 | 00,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll
[1996-04-03 21:33:26 | 00,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys

========== Files - Modified Within 30 Days ==========

[2009-08-14 23:21:03 | 00,072,249 | ---- | M] () -- C:\ProgramData\nvModes.001
[2009-08-14 23:20:46 | 00,000,000 | ---- | M] () -- C:\Windows\System32\LogConfigTemp.xml
[2009-08-14 23:20:35 | 00,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009-08-14 23:20:35 | 00,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009-08-14 23:20:34 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009-08-14 23:20:28 | 00,067,584 | ---- | M] () -- C:\Windows\bootstat.dat
[2009-08-14 23:19:26 | 00,005,332 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2009-08-14 23:19:13 | 03,449,826 | -H-- | M] () -- C:\Users\mhj\AppData\Local\IconCache.db
[2009-08-14 23:17:23 | 00,514,048 | ---- | M] (OldTimer Tools) -- C:\Users\mhj\Desktop\OTL.exe
[2009-08-14 22:11:58 | 01,573,000 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009-08-14 22:11:58 | 00,698,056 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2009-08-14 22:11:58 | 00,619,298 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009-08-14 22:11:58 | 00,146,632 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2009-08-14 22:11:58 | 00,114,916 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009-08-14 17:34:01 | 00,072,249 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2009-08-09 20:47:33 | 00,065,024 | ---- | M] () -- C:\Users\mhj\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-08-05 23:48:36 | 00,081,920 | ---- | M] () -- C:\Users\mhj\AppData\Roaming\ezpinst.exe
[2009-08-05 23:48:36 | 00,047,360 | ---- | M] (VSO Software) -- C:\Users\mhj\AppData\Roaming\pcouffin.sys
[2009-08-05 23:48:36 | 00,007,176 | ---- | M] () -- C:\Users\mhj\AppData\Roaming\pcouffin.cat
[2009-08-05 23:48:36 | 00,001,144 | ---- | M] () -- C:\Users\mhj\AppData\Roaming\pcouffin.inf
[2009-08-05 22:37:55 | 00,011,114 | ---- | M] () -- C:\ProgramData\MainApp.dll
[2009-08-05 21:37:22 | 00,000,014 | ---- | M] () -- C:\Windows\System32\systeminfo3.dll
[2009-07-30 21:12:58 | 00,000,016 | ---- | M] () -- C:\Windows\compedia.ini
[2009-07-30 02:49:14 | 24,281,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mrt.exe
[2009-07-29 20:10:26 | 00,001,688 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2009-07-24 20:17:34 | 00,000,215 | ---- | M] () -- C:\Windows\system.ini
[2009-07-24 19:45:18 | 00,103,424 | ---- | M] (Ashampoo) -- C:\Windows\System32\PowerUp3_nat.dll
[2009-07-19 17:31:44 | 00,322,112 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009-07-18 18:01:48 | 00,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2009-07-18 13:35:05 | 00,828,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
[2009-07-18 13:34:58 | 01,167,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
[2009-07-18 13:33:22 | 03,599,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
[2009-07-18 13:32:53 | 06,079,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
[2009-07-18 11:20:11 | 00,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2009-07-17 15:54:43 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl.dll

========== LOP Check ==========

[2008-10-20 17:58:57 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming
[2008-05-13 00:27:42 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Acer GameZone Console
[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Media Center Programs
[2008-10-20 17:58:57 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming
[2008-05-13 00:27:42 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Acer GameZone Console
[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Media Center Programs
[2009-02-08 21:34:02 | 00,000,000 | ---D | M] -- C:\Users\hubert\AppData\Roaming
[2008-05-13 00:27:42 | 00,000,000 | ---D | M] -- C:\Users\hubert\AppData\Roaming\Acer GameZone Console
[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\hubert\AppData\Roaming\Media Center Programs
[2009-08-05 23:48:37 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming
[2009-03-07 20:15:58 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\2K Sports
[2009-02-08 22:11:24 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Acer
[2009-05-07 19:56:05 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Any Video Converter
[2009-07-24 19:45:36 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Ashampoo
[2009-02-08 22:11:24 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Big Fish Games
[2009-05-07 20:33:23 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009-03-24 23:11:18 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\CyberLink
[2009-02-23 18:52:17 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\DAEMON Tools
[2009-02-28 02:00:38 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Desktopicon
[2009-06-27 18:02:43 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Disney Interactive Studios
[2009-02-23 00:41:50 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\DMCache
[2009-03-05 22:41:29 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Flood Light Games
[2009-02-08 22:11:24 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\GameHouse
[2009-07-26 09:48:44 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\GanymedeNet
[2009-05-30 00:09:18 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\GetRightToGo
[2009-02-08 22:11:24 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\GHISLER
[2009-02-28 11:25:28 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Gold Casual Games
[2009-02-08 22:11:24 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\GRETECH
[2009-04-28 20:08:57 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\gtk-2.0
[2009-04-24 23:47:04 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\GuiltyGearIsukaNA
[2009-02-08 22:11:24 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Hamachi
[2009-02-22 23:40:45 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\IDM
[2009-07-03 21:17:25 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Intel
[2009-06-27 21:04:31 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Leadertech
[2009-02-08 22:11:26 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Netscape
[2009-04-05 16:28:20 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Nokia
[2009-05-07 21:41:13 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Nowe Gadu-Gadu
[2009-03-01 13:31:02 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Oberonv1001
[2009-02-08 22:11:26 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Orbit
[2009-04-05 16:28:35 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\PC Suite
[2009-04-28 20:13:33 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Photodex
[2009-02-19 01:18:38 | 00,000,000 | RH-D | M] -- C:\Users\mhj\AppData\Roaming\SecuROM
[2009-04-17 23:21:31 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Simply Super Software
[2009-06-28 02:42:50 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Sports Interactive
[2009-03-03 01:25:39 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Systweak
[2009-02-08 22:11:26 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\teamspeak2
[2009-02-13 13:47:30 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Template
[2009-02-22 01:36:42 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Thinking Minds Budiling Bytes
[2009-02-08 22:11:26 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Ulead Systems
[2009-06-20 01:40:20 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Uniblue
[2009-08-05 23:48:37 | 00,000,000 | ---D | M] -- C:\Users\mhj\AppData\Roaming\Vso
[2009-08-14 23:20:34 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009-08-14 23:19:26 | 00,032,530 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 99 bytes -> C:\ProgramData\TEMP:EC2246A6
@Alternate Data Stream - 99 bytes -> C:\ProgramData\TEMP:861A898F
@Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:EA9F45B5
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:5BC73C48
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:E36F5B57
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:4F636E25
@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:2FAFBD6A
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:131C0EE9
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:6425A235
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:D31BE97C
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:8AB6C1D7
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:322D2CD3
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:260575F1
@Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:0295CBF7
@Alternate Data Stream - 113 bytes -> C:\ProgramData\TEMP:4CF61E54
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:B623B5B8
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:4673E9EA
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:9F683177
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:580E04D8
@Alternate Data Stream - 106 bytes -> C:\ProgramData\TEMP:793F316E
@Alternate Data Stream - 106 bytes -> C:\ProgramData\TEMP:78E0DF72
@Alternate Data Stream - 106 bytes -> C:\ProgramData\TEMP:3B3A35EC
< End of report >


dodalem przez przypadek dwa razy to samo wiec te dwa logi to logi z OTL
Mateusz J.
komentarz
komentarz

Wklej loga ponownie, tak aby wyglądał on estetycznie, tak jak np. w tym temacie: http://www.forumpc.pl/index.php?showtopic=121133

Jeśli się nie uda proszę wstawić loga jako załącznik.

moxia
komentarz
komentarz (edytowane)

jak zrobic tego loga by bylo"estetycznie"?

w formie zalacznika tez nie moge dodac bo pisze ze przekroczono tam jakis limit,chodz plik ma zaledwie 128 kb wiec jest to dla mnie smieszne

Mateusz J.
komentarz
komentarz

To wyślij załącznik tutaj: http://www.sendspace.pl/

I podaj link do downloadu.

Mateusz J.
komentarz
komentarz

Uruchom OTL i w oknie Custom Scans/Fixes wklej następujący skrypt:

:OTLPRC - [2009-04-10 23:27:38 | 02,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXEO2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.:Commands[emptytemp][start explorer][Reboot]

Kliknij w Run Fix i zacznie się usuwanie.

Komputer uruchomi się ponownie.

Ogólnie to tylko śmieci, infekcji nie widać.

Jeśli nie działa dalej Kaspersky online to pokombinuj:

Wymagania i ograniczenia:

* W systemie Microsoft Windows Vista musisz uruchomić przeglądarkę przy użyciu polecenia Uruchom jako administrator.

* W celu rozpoczęcia pracy z programem musisz pobrać i zainstalować jego pliki oraz bazę danych zawierającą definicje szkodliwych programów. (Rozmiar plików programu zależy od systemu operacyjnego.) Podczas kolejnych uruchomień program Kaspersky Online Scanner 7.0 szuka uaktualnień swoich plików i antywirusowych baz danych i, jeżeli są dostępne, pobiera je i instaluje automatycznie.

* W systemie Linux Kaspersky Online Scanner 7.0 nie skanuje pamięci RAM, sektorów startowych oraz MBR, zatem nie może wykrywać szkodliwych programów rezydujących w tych obszarach.

* W systemie Microsoft Windows Vista jeżeli korzystasz z języka posiadającego znaki i czcionki inne niż angielskie, musisz zezwolić programowi Kaspersky Online Scanner 7.0 na działanie na Twoim komputerze z wykorzystaniem tych znaków i czcionek - upewnij się, że język wybrany dla systemu, język wybrany do wyświetlania dat, czasu, waluty i jednostek miary (bieżący format) jest taki sam, jak ten, którego używasz.

* Kaspersky Online Scanner 7.0 wykrywa wyłącznie szkodliwe programy, które znajdują się już w Twoim komputerze, dzięki czemu możesz je samodzielnie usunąć. Program nie chroni komputera przed wtargnięciem szkodliwego kodu, ani nie zapobiega przyszłym infekcjom. Aby Twój komputer był całkowicie chroniony, zainstaluj w pełni funkcjonalne rozwiązanie antywirusowe.

źródło www.kaspersky.pl

Lub wykonaj skan innym programem takim jak http://www.malwarebytes.org/

moxia
komentarz
komentarz (edytowane)

ok dziekuje ci bardzo,mam jeszcze kilka pytan,pierwsze to czy przed usuwaniem tych smieci musze tez skonfigurowac ten program tak jak przed skanowaniem?a drugie moje pytanie to po uruchomieniu ponownie komputera na pulpicie pojawily mi sie dwa pliki o nazwie desktop.ini,czy moge je bezpiecznie usunac?

kurcze dalej to samo ten sam blad wyskakuje gdy pobiera aktualizacje,bylo prawie 40% i nagle pojawil sie ten komunikat

jesiona powiedz mi czy moge usunac te pliki o ktorych wspomnialem?

Mateusz J.
komentarz
komentarz

nie usuwaj ich, wyłącz pokazywanie ukrytych plików i folderów - na pewno znajdziesz w google

moxia
komentarz
komentarz

ok dzieki juz wszystko gra naprawilo sie jakby samo chyba :D bo pewnego dnia wlaczylem skanowanie online i zaskoczylo,dzieki pozdrawiam mozna zamknac temat

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.