x-kom hosting

Ciągłe reklamy - logi do sprawdzenia

benkowik
utworzono
utworzono

Hej.

Mam problem. Co któreś kliknięcie w FF wyskakuje mi okienko z reklamą tego typu:

http://www.google.com/ie'>http://www.google.com/ie'>http://www.google.com/ie'>http://www.google.com/ie'>http://www.google.com/ie

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Google"

FF - prefs.js..browser.search.selectedEngine: "GamingHarbor"

FF - prefs.js..browser.startup.homepage: "http://www.google.pl/ig?hl=pl&source=iglk"

FF - prefs.js..extensions.enabledItems: {872A1C39-DF0B-4c8b-AD84-12BA24A3B781}:4.2.4.0

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}:6.0.05

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..extensions.enabledItems: {0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}:1.6.0.940

FF - prefs.js..extensions.enabledItems: {2224E955-00E9-4613-A844-CE69FCCAAE91}:3.7.1.4630

FF - prefs.js..extensions.enabledItems: {7AB6D133-2A14-4C11-B3AD-35B1548D38F9}:1.0

FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.2

FF - prefs.js..keyword.URL: "http://www.gamingharbor.com/search.do?desktopsmiley&keyword="

FF - HKLM\software\mozilla\Firefox\extensions\\{872A1C39-DF0B-4c8b-AD84-12BA24A3B781}: D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\FFToolbar [2009-09-04 15:50:18 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Firefox\extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: D:\Programy\Internet Saving Optimizer\3.7.1.4630\FF [2009-09-04 15:50:27 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Firefox\extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}: D:\Programy\Media Access Startup\1.6.0.940\FF [2009-09-04 15:50:31 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: D:\Programy\Java\jre6\lib\deploy\jqs\ff [2009-07-04 11:18:36 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-08-28 12:52:40 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-08-28 12:52:40 | 00,000,000 | ---D | M]

[2009-07-03 22:08:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Extensions

[2009-07-03 22:08:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}

[2009-09-06 11:13:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Firefox\Profiles\2zjgeuyl.default\extensions

[2009-08-30 21:09:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Firefox\Profiles\2zjgeuyl.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}

O1 HOSTS File: (740 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O2 - BHO: (Media Access Startup) - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - D:\Programy\Media Access Startup\1.6.0.940\HPIEAddOn.dll ()

O2 - BHO: (NP Helper Class) - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - D:\Programy\Internet Saving Optimizer\3.7.1.4630\NPIEAddOn.dll ()

O2 - BHO: (MultiShop v2.0) - {39AA6D29-4236-4F25-A36A-3410EF5283D9} - D:\Programy\Pivim Multibar\multishop.dll (Media Labs Limited)

O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Programy\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)

O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - D:\Programy\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)

O2 - BHO: (System Search Dispatcher) - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - D:\Programy\System Search Dispatcher\1.4.1.1010\ssd.dll ()

O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Programy\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Programy\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)

O2 - BHO: (XBTBPos00 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - D:\Programy\Pivim Multibar\pivim.dll ()

O3 - HKLM\..\Toolbar: (Pivim Multibar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - D:\Programy\Pivim Multibar\pivim.dll ()

O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O3 - HKLM\..\Toolbar: (GamingHarbor Toolbar) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\stb0.dll ()

O3 - HKCU\..\Toolbar\WebBrowser: (Pivim Multibar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - D:\Programy\Pivim Multibar\pivim.dll ()

O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - D:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O3 - HKCU\..\Toolbar\WebBrowser: (GamingHarbor Toolbar) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\stb0.dll ()

O4 - HKLM..\Run: [avast!] D:\Programy\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)

O4 - HKLM..\Run: [HP Component Manager] C:\Program Files\HP\hpcoretech\hpcmpmgr.exe (Hewlett-Packard Company)

O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Company)

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)

O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()

O4 - HKLM..\Run: [Reminder] D:\@Informatyka @\Programowanie $\Delphi\PROGRAMY\Przypominacz\p1.exe (Reminder © Benkowik)

O4 - HKLM..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)

O4 - HKLM..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)

O4 - HKLM..\Run: [sunJavaUpdateSched] D:\Programy\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)

O4 - HKLM..\Run: [VX1000] C:\WINDOWS\vVX1000.exe (Microsoft Corporation)

O4 - HKCU..\Run: [Przypomnienia] C:\Documents and Settings\Benkowik\Pulpit\Nowy folder\Przypomnienia.exe File not found

O4 - HKCU..\Run: [smileyApp] D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\stbapp.exe ()

O4 - HKCU..\Run: [swg] D:\Programy\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Image Zone - szybkie uruchamianie.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe (Hewlett-Packard Co.)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O9 - Extra Button: MultiShop v2.0 - {39AA6D29-4236-4F25-A36A-3410EF5283D9} - D:\Programy\Pivim Multibar\multishop.dll (Media Labs Limited)

O9 - Extra 'Tools' menuitem : MultiShop v2.0 - {39AA6D29-4236-4F25-A36A-3410EF5283D9} - D:\Programy\Pivim Multibar\multishop.dll (Media Labs Limited)

O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Programy\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)

O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)

O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.)

O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ipp - No CLSID value found

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp - No CLSID value found

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O31 - SafeBoot: AlternateShell - cmd.exe

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009-07-03 17:45:08 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O32 - AutoRun File - [2009-08-27 20:44:57 | 00,000,000 | ---D | M] - C:\AutoSAT -- [ NTFS ]

O32 - AutoRun File - [2008-10-17 15:31:54 | 00,000,000 | ---D | M] - C:\AutoSAT_2.7 -- [ NTFS ]

O33 - MountPoints2\{9ecfb916-6ae9-11de-ae6e-001a92e12c1d}\Shell\AutoRun\command - "" = RECYCLER32\dmgr.exe

O33 - MountPoints2\{9ecfb916-6ae9-11de-ae6e-001a92e12c1d}\Shell\open\command - "" = RECYCLER32\dmgr.exe

O34 - HKLM BootExecute: (autocheck) - File not found

O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)

O34 - HKLM BootExecute: (*) - File not found

Mi się widzi, że to Sukoku ale nie jestem pewien.

Psycholandia
komentarz
komentarz

Beniu log z OTL jest ucięty, daj cały :)

benkowik
komentarz
komentarz
Log do sprawdzenia
OTL logfile created on: 2009-09-06 22:38:56 - Run 8
OTL by OldTimer - Version 3.0.10.7 Folder = C:\Documents and Settings\Benkowik\Pulpit\inne
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,33 Gb Available Physical Memory | 66,64% Memory free
3,85 Gb Paging File | 3,17 Gb Available in Paging File | 82,32% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = D:\Programy
Drive C: | 34,18 Gb Total Space | 22,96 Gb Free Space | 67,17% Space Free | Partition Type: NTFS
Drive D: | 58,59 Gb Total Space | 36,28 Gb Free Space | 61,92% Space Free | Partition Type: NTFS
Drive E: | 56,27 Gb Total Space | 44,19 Gb Free Space | 78,54% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 186,19 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
I: Drive not present or media not loaded

Computer Name: KUBA
Current User Name: Benkowik
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009-08-17 17:58:55 | 00,018,752 | ---- | M] (ALWIL Software) -- D:\Programy\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009-08-17 18:07:17 | 00,138,680 | ---- | M] (ALWIL Software) -- D:\Programy\Alwil Software\Avast4\ashServ.exe
PRC - [2004-08-04 00:44:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
PRC - [2004-02-12 13:38:56 | 00,049,152 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
PRC - [2009-08-06 17:51:54 | 00,613,128 | ---- | M] (http://www.google.com/ie'>http://www.google.com/ie'>http://www.google.com/ie'>http://www.google.com/ie'>http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.selectedEngine: "GamingHarbor"
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/ig?hl=pl&source=iglk"
FF - prefs.js..extensions.enabledItems: {872A1C39-DF0B-4c8b-AD84-12BA24A3B781}:4.2.4.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}:6.0.05
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}:1.6.0.940
FF - prefs.js..extensions.enabledItems: {2224E955-00E9-4613-A844-CE69FCCAAE91}:3.7.1.4630
FF - prefs.js..extensions.enabledItems: {7AB6D133-2A14-4C11-B3AD-35B1548D38F9}:1.0
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.2
FF - prefs.js..keyword.URL: "http://www.gamingharbor.com/search.do?desktopsmiley&keyword="

FF - HKLM\software\mozilla\Firefox\extensions\\{872A1C39-DF0B-4c8b-AD84-12BA24A3B781}: D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\FFToolbar [2009-09-04 15:50:18 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: D:\Programy\Internet Saving Optimizer\3.7.1.4630\FF [2009-09-04 15:50:27 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}: D:\Programy\Media Access Startup\1.6.0.940\FF [2009-09-04 15:50:31 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: D:\Programy\Java\jre6\lib\deploy\jqs\ff [2009-07-04 11:18:36 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-08-28 12:52:40 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-08-28 12:52:40 | 00,000,000 | ---D | M]

[2009-07-03 22:08:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Extensions
[2009-07-03 22:08:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009-09-06 11:13:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Firefox\Profiles\2zjgeuyl.default\extensions
[2009-08-30 21:09:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Firefox\Profiles\2zjgeuyl.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}

O1 HOSTS File: (740 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Media Access Startup) - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - D:\Programy\Media Access Startup\1.6.0.940\HPIEAddOn.dll ()
O2 - BHO: (NP Helper Class) - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - D:\Programy\Internet Saving Optimizer\3.7.1.4630\NPIEAddOn.dll ()
O2 - BHO: (MultiShop v2.0) - {39AA6D29-4236-4F25-A36A-3410EF5283D9} - D:\Programy\Pivim Multibar\multishop.dll (Media Labs Limited)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Programy\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - D:\Programy\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
O2 - BHO: (System Search Dispatcher) - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - D:\Programy\System Search Dispatcher\1.4.1.1010\ssd.dll ()
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Programy\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Programy\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (XBTBPos00 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - D:\Programy\Pivim Multibar\pivim.dll ()
O3 - HKLM\..\Toolbar: (Pivim Multibar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - D:\Programy\Pivim Multibar\pivim.dll ()
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (GamingHarbor Toolbar) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\stb0.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Pivim Multibar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - D:\Programy\Pivim Multibar\pivim.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - D:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (GamingHarbor Toolbar) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\stb0.dll ()
O4 - HKLM..\Run: [avast!] D:\Programy\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [HP Component Manager] C:\Program Files\HP\hpcoretech\hpcmpmgr.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [Reminder] D:\@Informatyka @\Programowanie $\Delphi\PROGRAMY\Przypominacz\p1.exe (Reminder © Benkowik)
O4 - HKLM..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [sunJavaUpdateSched] D:\Programy\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [VX1000] C:\WINDOWS\vVX1000.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Przypomnienia] C:\Documents and Settings\Benkowik\Pulpit\Nowy folder\Przypomnienia.exe File not found
O4 - HKCU..\Run: [smileyApp] D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\stbapp.exe ()
O4 - HKCU..\Run: [swg] D:\Programy\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Image Zone - szybkie uruchamianie.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe (Hewlett-Packard Co.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: MultiShop v2.0 - {39AA6D29-4236-4F25-A36A-3410EF5283D9} - D:\Programy\Pivim Multibar\multishop.dll (Media Labs Limited)
O9 - Extra 'Tools' menuitem : MultiShop v2.0 - {39AA6D29-4236-4F25-A36A-3410EF5283D9} - D:\Programy\Pivim Multibar\multishop.dll (Media Labs Limited)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Programy\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-07-03 17:45:08 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009-08-27 20:44:57 | 00,000,000 | ---D | M] - C:\AutoSAT -- [ NTFS ]
O32 - AutoRun File - [2008-10-17 15:31:54 | 00,000,000 | ---D | M] - C:\AutoSAT_2.7 -- [ NTFS ]
O33 - MountPoints2\{9ecfb916-6ae9-11de-ae6e-001a92e12c1d}\Shell\AutoRun\command - "" = RECYCLER32\dmgr.exe
O33 - MountPoints2\{9ecfb916-6ae9-11de-ae6e-001a92e12c1d}\Shell\open\command - "" = RECYCLER32\dmgr.exe
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]
[2009-09-06 20:32:43 | 00,027,920 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\przykład 1.jpg
[2009-09-06 20:02:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\Fono
[2009-09-06 14:43:01 | 00,026,680 | ---- | C] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\s;a [fsdf.odt
[2009-09-06 13:27:35 | 00,122,991 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\internetTextures.zip
[2009-09-06 13:25:48 | 00,780,326 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\ODESulaco.zip
[2009-09-06 11:27:08 | 00,000,000 | ---D | C] -- C:\Python26
[2009-09-06 11:02:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2009-09-06 11:01:21 | 00,000,573 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\AC3D.lnk
[2009-09-06 11:01:17 | 00,000,000 | ---D | C] -- D:\Programy\AC3D 6.5.28
[2009-09-06 08:39:22 | 00,009,356 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\blender_i3d_export_4.1.2.zip
[2009-09-05 22:05:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\multishop
[2009-09-05 22:05:44 | 00,000,000 | ---D | C] -- D:\Programy\Pivim Multibar
[2009-09-05 21:51:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\GIANTS Editor 4.1.2
[2009-09-05 21:49:50 | 00,000,651 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\GIANTS Editor.lnk
[2009-09-05 21:49:47 | 00,000,000 | ---D | C] -- D:\Programy\GIANTS Software
[2009-09-05 21:39:29 | 04,653,909 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\tutorial_GE4.1.2_en.pdf
[2009-09-05 20:35:10 | 00,012,343 | ---- | C] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\niemiecki.odt
[2009-09-05 13:40:08 | 06,206,853 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\USDownloader.rar
[2009-09-05 11:03:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Pulpit\inne
[2009-09-04 20:40:15 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009-09-04 20:40:15 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009-09-04 20:40:15 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009-09-04 15:51:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\Internet Saving Optimizer
[2009-09-04 15:50:36 | 00,000,000 | ---D | C] -- D:\Programy\Sukoku
[2009-09-04 15:50:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sukoku
[2009-09-04 15:50:31 | 00,000,000 | ---D | C] -- D:\Programy\Media Access Startup
[2009-09-04 15:50:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\Media Access Startup
[2009-09-04 15:50:27 | 00,000,000 | ---D | C] -- D:\Programy\Internet Saving Optimizer
[2009-09-04 15:50:24 | 00,000,000 | ---D | C] -- D:\Programy\System Search Dispatcher
[2009-09-04 15:50:16 | 00,000,000 | ---D | C] -- D:\Programy\DoubleD
[2009-09-04 15:50:09 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{C1DF1BDA-E7BE-4DC5-A5D9-C3D93F09FA65}
[2009-09-04 15:49:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\DoubleD
[2009-09-01 19:07:54 | 00,001,409 | ---- | C] () -- C:\WINDOWS\System32\settings.dll
[2009-09-01 19:07:23 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Panel sterowania.{21EC2020-3AEA-1069-A2DD-08002B30309D}
[2009-08-31 09:36:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Dane aplikacji\Google
[2009-08-31 09:35:57 | 00,000,000 | ---D | C] -- D:\Programy\Google
[2009-08-30 22:08:29 | 00,000,000 | ---D | C] -- D:\Programy\MySQL
[2009-08-30 22:08:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MySQL
[2009-08-30 21:09:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\Google
[2009-08-30 21:09:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google
[2009-08-29 20:40:36 | 00,001,769 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\savegames.xml
[2009-08-29 10:46:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Moje dokumenty\My Games
[2009-08-29 10:46:21 | 00,000,731 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\Landwirtschafts-Simulator 2009.lnk
[2009-08-28 18:16:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Dane aplikacji\MySQL
[2009-08-28 13:05:49 | 00,000,465 | -H-- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\dmd-united93.rmvb.ini
[2009-08-28 12:55:17 | 00,000,000 | ---D | C] -- D:\Programy\SubEdit-Player
[2009-08-28 12:52:38 | 00,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2009-08-28 12:52:38 | 00,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2009-08-28 12:52:37 | 00,000,000 | ---D | C] -- D:\Programy\Real Alternative
[2009-08-28 12:52:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\Real
[2009-08-28 12:52:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Dane aplikacji\Real
[2009-08-28 12:52:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real
[2009-08-20 23:36:36 | 00,000,000 | ---D | C] -- D:\Programy\Trend Micro
[2009-08-19 23:18:42 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Benkowik\Pulpit\music
[2009-08-19 10:59:38 | 00,000,348 | ---- | C] () -- C:\WINDOWS\tasks\music.job
[2009-08-18 15:15:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\Borland
[2009-08-18 14:53:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Moje dokumenty\Borland Studio Projects
[2009-08-18 13:37:54 | 00,000,000 | ---D | C] -- D:\Programy\Borland
[2009-08-18 13:19:16 | 00,000,000 | ---D | C] -- D:\Programy\Microsoft.NET
[2009-08-18 13:19:16 | 00,000,000 | ---D | C] -- D:\Programy\Microsoft Visual Studio .NET 2003
[2009-08-18 13:19:16 | 00,000,000 | ---D | C] -- D:\Programy\Microsoft Office
[2009-08-18 13:02:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Dane aplikacji\TortoiseSVN
[2009-08-18 12:59:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\TSVNCache
[2009-08-18 12:18:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Dane aplikacji\Subversion
[2009-08-18 12:17:16 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\TortoiseOverlays
[2009-08-18 12:17:15 | 00,000,000 | ---D | C] -- D:\Programy\TortoiseSVN
[2009-08-18 11:40:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\GHISLER
[2009-08-17 11:39:54 | 00,000,919 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\Chilli ZET.asx
[2009-08-17 11:26:48 | 00,803,840 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\CWK v2.0 © Benkowik.exe
[2009-08-17 10:29:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Moje dokumenty\NetBeansProjects
[2009-08-16 09:18:20 | 00,000,000 | ---D | C] -- D:\Programy\kED
[2009-08-16 08:43:17 | 00,008,814 | ---- | C] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\testy.odt
[2009-08-16 08:39:57 | 00,000,019 | ---- | C] () -- C:\WINDOWS\cie12.ini
[2009-08-16 08:39:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Moje dokumenty\CEProjects
[2009-08-15 22:42:01 | 00,013,046 | ---- | C] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\2.odt
[2009-08-14 14:19:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Moje dokumenty\ATROM
[2009-08-14 08:24:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Pulpit\Niemiecki
[2009-07-24 14:56:41 | 00,000,223 | ---- | C] () -- C:\WINDOWS\AutoSAT.ini
[2009-07-22 23:18:05 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-07-18 18:43:45 | 00,015,498 | ---- | C] () -- C:\WINDOWS\VX1000.ini
[2009-07-17 11:58:37 | 00,000,088 | RHS- | C] () -- C:\WINDOWS\System32\8E2E0639E9.sys
[2009-07-17 11:54:30 | 00,002,516 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2009-07-05 09:07:09 | 00,223,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\dtscsi.sys
[2009-07-05 09:03:39 | 00,642,560 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009-07-05 09:03:39 | 00,096,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd9693.sys
[2009-07-04 13:48:39 | 00,000,501 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2009-07-03 22:45:20 | 00,003,241 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009-07-03 22:44:31 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009-07-03 22:44:29 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2009-07-03 22:44:29 | 01,559,040 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009-07-03 22:44:29 | 00,282,624 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009-07-03 22:44:28 | 00,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009-07-03 22:44:28 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009-07-03 18:20:00 | 00,014,682 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2009-07-03 18:19:59 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2009-07-03 18:19:48 | 00,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2007-05-11 00:03:00 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2007-05-11 00:03:00 | 01,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2007-05-11 00:03:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2007-05-11 00:03:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2007-05-11 00:03:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2004-08-04 00:44:00 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2002-03-17 02:00:00 | 00,007,420 | ---- | C] () -- C:\WINDOWS\UA000080.DLL
[2001-07-22 02:16:20 | 00,000,606 | ---- | C] () -- C:\WINDOWS\win.ini
[2001-07-22 02:15:52 | 00,000,231 | ---- | C] () -- C:\WINDOWS\system.ini

========== Files - Modified Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]
[3 C:\WINDOWS\*.tmp files]
[2009-09-06 20:32:43 | 00,027,920 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\przykład 1.jpg
[2009-09-06 17:04:55 | 00,000,606 | ---- | M] () -- C:\WINDOWS\win.ini
[2009-09-06 17:04:12 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009-09-06 17:04:06 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009-09-06 14:43:02 | 00,026,680 | ---- | M] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\s;a [fsdf.odt
[2009-09-06 13:27:35 | 00,122,991 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\internetTextures.zip
[2009-09-06 13:25:50 | 00,780,326 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\ODESulaco.zip
[2009-09-06 13:10:17 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009-09-06 11:01:21 | 00,000,573 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\AC3D.lnk
[2009-09-06 08:39:22 | 00,009,356 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\blender_i3d_export_4.1.2.zip
[2009-09-05 21:49:50 | 00,000,651 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\GIANTS Editor.lnk
[2009-09-05 21:40:12 | 04,653,909 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\tutorial_GE4.1.2_en.pdf
[2009-09-05 20:51:26 | 00,012,343 | ---- | M] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\niemiecki.odt
[2009-09-05 16:51:00 | 00,003,241 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2009-09-05 16:26:58 | 00,000,501 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini
[2009-09-05 13:41:03 | 06,206,853 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\USDownloader.rar
[2009-09-04 20:40:00 | 00,500,826 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2009-09-04 20:40:00 | 00,441,760 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009-09-04 20:40:00 | 00,089,166 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2009-09-04 20:40:00 | 00,071,444 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009-09-04 20:39:59 | 01,117,158 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009-09-01 19:12:51 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009-09-01 19:07:54 | 00,001,409 | ---- | M] () -- C:\WINDOWS\System32\settings.dll
[2009-08-31 08:47:34 | 01,442,208 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009-08-30 22:16:16 | 00,034,496 | ---- | M] () -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2009-08-29 12:47:04 | 00,001,769 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\savegames.xml
[2009-08-29 10:46:21 | 00,000,731 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\Landwirtschafts-Simulator 2009.lnk
[2009-08-28 15:11:25 | 00,000,465 | -H-- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\dmd-united93.rmvb.ini
[2009-08-22 00:29:00 | 07,416,334 | -H-- | M] () -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2009-08-20 23:17:35 | 00,709,992 | -H-- | M] (Microsoft Corporation) -- C:\WINDOWS\vVX1000.exe
[2009-08-20 20:26:20 | 00,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009-08-19 10:59:38 | 00,000,348 | ---- | M] () -- C:\WINDOWS\tasks\music.job
[2009-08-17 18:10:20 | 01,279,456 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2009-08-17 18:06:54 | 00,093,392 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2009-08-17 18:06:43 | 00,094,160 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2009-08-17 18:05:52 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2009-08-17 18:05:37 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2009-08-17 18:04:40 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2009-08-17 18:04:29 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2009-08-17 18:03:21 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2009-08-17 18:02:50 | 00,097,480 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2009-08-17 11:39:55 | 00,000,919 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\Chilli ZET.asx
[2009-08-17 11:26:26 | 00,803,840 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\CWK v2.0 © Benkowik.exe
[2009-08-16 09:35:39 | 00,008,814 | ---- | M] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\testy.odt
[2009-08-16 08:42:40 | 00,000,019 | ---- | M] () -- C:\WINDOWS\cie12.ini
[2009-08-15 22:47:24 | 00,013,046 | ---- | M] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\2.odt
[2009-08-09 11:25:24 | 00,010,240 | ---- | M] () -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\WINDOWS\vVX1000.exe:SummaryInformation
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:64217CD0
< End of report >
MarekM25
komentarz
komentarz

Czy znasz to: GamingHarbor Toolbar, SRV - [2009-09-02 21:20:36 | 00,054,760 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\Sukoku\sukoku117.exe -- (Sukoku Service [Auto | Stopped])

SRV - [2008-11-27 09:26:20 | 01,883,648 | R--- | M] () -- C:\AutoSAT\AReplicator3.exe -- (_AReplicator3 [Auto | Stopped])

  • Dobra wypowiedź 1
benkowik
komentarz
komentarz

AReplicator3.exe to zaufany program.

GamingHarbor się pozbędę.

Nadal to samo, pobyłem się usunąłem z FF i nadal strony:

Log do sprawdzenia
OTL logfile created on: 2009-09-07 14:57:23 - Run 9

OTL by OldTimer - Version 3.0.10.7 Folder = C:\Documents and Settings\Benkowik\Pulpit\inne

Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.2180)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,48 Gb Available Physical Memory | 73,85% Memory free

3,85 Gb Paging File | 3,30 Gb Available in Paging File | 85,69% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = D:\Programy

Drive C: | 34,18 Gb Total Space | 22,92 Gb Free Space | 67,06% Space Free | Partition Type: NTFS

Drive D: | 58,59 Gb Total Space | 36,27 Gb Free Space | 61,90% Space Free | Partition Type: NTFS

Drive E: | 56,27 Gb Total Space | 44,19 Gb Free Space | 78,54% Space Free | Partition Type: NTFS

F: Drive not present or media not loaded

G: Drive not present or media not loaded

Drive H: | 186,19 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

I: Drive not present or media not loaded

Computer Name: KUBA

Current User Name: Benkowik

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Company Name Whitelist: Off

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Processes (SafeList) ==========

PRC - [2009-08-17 17:58:55 | 00,018,752 | ---- | M] (ALWIL Software) -- D:\Programy\Alwil Software\Avast4\aswUpdSv.exe

PRC - [2009-08-17 18:07:17 | 00,138,680 | ---- | M] (ALWIL Software) -- D:\Programy\Alwil Software\Avast4\ashServ.exe

PRC - [2006-02-28 12:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- D:\Programy\Bonjour\mDNSResponder.exe

PRC - [2007-03-06 10:35:02 | 00,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe

PRC - [2007-05-15 15:55:46 | 01,550,896 | ---- | M] (Nero AG) -- D:\Programy\Nero\Nero 7\InCD\InCDsrv.exe

PRC - [2009-07-25 05:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- D:\Programy\Java\jre6\bin\jqs.exe

PRC - [2003-03-19 01:55:56 | 00,335,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe

PRC - [2007-05-17 23:45:33 | 00,271,720 | ---- | M] (Microsoft Corporation) -- D:\Programy\Microsoft LifeCam\MSCamS32.exe

PRC - [2009-06-24 18:13:04 | 06,558,336 | ---- | M] () -- D:\Programy\MySQL\MySQL Server 5.4\bin\mysqld.exe

PRC - [2007-05-11 00:03:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe

PRC - [2006-11-02 20:40:12 | 00,174,656 | ---- | M] () -- C:\Program Files\Common Files\Protexis\License Service\PSIService.exe

PRC - [2008-11-27 09:26:20 | 01,883,648 | R--- | M] () -- C:\AutoSAT\AReplicator3.exe

PRC - [2009-08-17 18:07:01 | 00,254,040 | ---- | M] (ALWIL Software) -- D:\Programy\Alwil Software\Avast4\ashMaiSv.exe

PRC - [2009-08-17 18:04:21 | 00,352,920 | ---- | M] (ALWIL Software) -- D:\Programy\Alwil Software\Avast4\ashWebSv.exe

PRC - [2004-08-04 00:44:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE

PRC - [2004-02-12 13:38:56 | 00,049,152 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

PRC - [2009-08-06 17:51:54 | 00,613,128 | ---- | M] (http://www.google.com/ie'>http://www.google.com/ie'>http://www.google.com/ie'>http://www.google.com/ie'>http://www.google.com/ie

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Google"

FF - prefs.js..browser.search.selectedEngine: "GamingHarbor"

FF - prefs.js..browser.startup.homepage: "http://www.google.pl/ig?hl=pl&source=iglk"

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}:6.0.05

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..extensions.enabledItems: {0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}:1.6.0.940

FF - prefs.js..extensions.enabledItems: {2224E955-00E9-4613-A844-CE69FCCAAE91}:3.7.1.4630

FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.2

FF - prefs.js..extensions.enabledItems: devious_green@firefox.theme:0.07

FF - prefs.js..extensions.enabledItems: {03c5aa89-a413-40df-8896-562697687bbc}:0.4.9

FF - prefs.js..keyword.URL: "http://www.gamingharbor.com/search.do?desktopsmiley&keyword="

FF - HKLM\software\mozilla\Firefox\extensions\\{872A1C39-DF0B-4c8b-AD84-12BA24A3B781}: D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\FFToolbar [2009-09-04 15:50:18 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Firefox\extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: D:\Programy\Internet Saving Optimizer\3.7.1.4630\FF [2009-09-04 15:50:27 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Firefox\extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}: D:\Programy\Media Access Startup\1.6.0.940\FF [2009-09-04 15:50:31 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: D:\Programy\Java\jre6\lib\deploy\jqs\ff [2009-07-04 11:18:36 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-08-28 12:52:40 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-08-28 12:52:40 | 00,000,000 | ---D | M]

[2009-07-03 22:08:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Extensions

[2009-07-03 22:08:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}

[2009-09-07 14:55:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Firefox\Profiles\2zjgeuyl.default\extensions

[2009-09-07 14:55:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Firefox\Profiles\2zjgeuyl.default\extensions\{03c5aa89-a413-40df-8896-562697687bbc}

[2009-09-07 14:54:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Benkowik\Dane aplikacji\mozilla\Firefox\Profiles\2zjgeuyl.default\extensions\devious_green@firefox.theme

O1 HOSTS File: (740 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O2 - BHO: (Media Access Startup) - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - D:\Programy\Media Access Startup\1.6.0.940\HPIEAddOn.dll ()

O2 - BHO: (NP Helper Class) - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - D:\Programy\Internet Saving Optimizer\3.7.1.4630\NPIEAddOn.dll ()

O2 - BHO: (MultiShop v2.0) - {39AA6D29-4236-4F25-A36A-3410EF5283D9} - D:\Programy\Pivim Multibar\multishop.dll (Media Labs Limited)

O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Programy\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)

O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - D:\Programy\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)

O2 - BHO: (System Search Dispatcher) - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - D:\Programy\System Search Dispatcher\1.4.1.1010\ssd.dll ()

O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Programy\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Programy\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)

O2 - BHO: (XBTBPos00 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - D:\Programy\Pivim Multibar\pivim.dll ()

O3 - HKLM\..\Toolbar: (Pivim Multibar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - D:\Programy\Pivim Multibar\pivim.dll ()

O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O3 - HKLM\..\Toolbar: (GamingHarbor Toolbar) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\stb0.dll ()

O3 - HKCU\..\Toolbar\WebBrowser: (Pivim Multibar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - D:\Programy\Pivim Multibar\pivim.dll ()

O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - D:\Programy\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O3 - HKCU\..\Toolbar\WebBrowser: (GamingHarbor Toolbar) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\stb0.dll ()

O4 - HKLM..\Run: [avast!] D:\Programy\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)

O4 - HKLM..\Run: [HP Component Manager] C:\Program Files\HP\hpcoretech\hpcmpmgr.exe (Hewlett-Packard Company)

O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Company)

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)

O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()

O4 - HKLM..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)

O4 - HKLM..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)

O4 - HKLM..\Run: [sunJavaUpdateSched] D:\Programy\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)

O4 - HKLM..\Run: [VX1000] C:\WINDOWS\vVX1000.exe (Microsoft Corporation)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Image Zone - szybkie uruchamianie.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe (Hewlett-Packard Co.)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O9 - Extra Button: MultiShop v2.0 - {39AA6D29-4236-4F25-A36A-3410EF5283D9} - D:\Programy\Pivim Multibar\multishop.dll (Media Labs Limited)

O9 - Extra 'Tools' menuitem : MultiShop v2.0 - {39AA6D29-4236-4F25-A36A-3410EF5283D9} - D:\Programy\Pivim Multibar\multishop.dll (Media Labs Limited)

O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Programy\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)

O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)

O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.)

O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ipp - No CLSID value found

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp - No CLSID value found

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O31 - SafeBoot: AlternateShell - cmd.exe

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009-07-03 17:45:08 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O32 - AutoRun File - [2009-08-27 20:44:57 | 00,000,000 | ---D | M] - C:\AutoSAT -- [ NTFS ]

O32 - AutoRun File - [2008-10-17 15:31:54 | 00,000,000 | ---D | M] - C:\AutoSAT_2.7 -- [ NTFS ]

O33 - MountPoints2\{9ecfb916-6ae9-11de-ae6e-001a92e12c1d}\Shell\AutoRun\command - "" = RECYCLER32\dmgr.exe

O33 - MountPoints2\{9ecfb916-6ae9-11de-ae6e-001a92e12c1d}\Shell\open\command - "" = RECYCLER32\dmgr.exe

O34 - HKLM BootExecute: (autocheck) - File not found

O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)

O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]

[2009-09-06 20:32:43 | 00,027,920 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\przykład 1.jpg

[2009-09-06 20:02:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\Fono

[2009-09-06 14:43:01 | 00,026,680 | ---- | C] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\s;a [fsdf.odt

[2009-09-06 13:27:35 | 00,122,991 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\internetTextures.zip

[2009-09-06 13:25:48 | 00,780,326 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\ODESulaco.zip

[2009-09-06 11:27:08 | 00,000,000 | ---D | C] -- C:\Python26

[2009-09-06 11:02:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP

[2009-09-06 11:01:21 | 00,000,573 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\AC3D.lnk

[2009-09-06 11:01:17 | 00,000,000 | ---D | C] -- D:\Programy\AC3D 6.5.28

[2009-09-06 08:39:22 | 00,009,356 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\blender_i3d_export_4.1.2.zip

[2009-09-05 22:05:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\multishop

[2009-09-05 22:05:44 | 00,000,000 | ---D | C] -- D:\Programy\Pivim Multibar

[2009-09-05 21:51:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\GIANTS Editor 4.1.2

[2009-09-05 21:49:50 | 00,000,651 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\GIANTS Editor.lnk

[2009-09-05 21:49:47 | 00,000,000 | ---D | C] -- D:\Programy\GIANTS Software

[2009-09-05 21:39:29 | 04,653,909 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\tutorial_GE4.1.2_en.pdf

[2009-09-05 20:35:10 | 00,012,343 | ---- | C] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\niemiecki.odt

[2009-09-05 13:40:08 | 06,206,853 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\USDownloader.rar

[2009-09-05 11:03:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Pulpit\inne

[2009-09-04 20:40:15 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe

[2009-09-04 20:40:15 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe

[2009-09-04 20:40:15 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe

[2009-09-04 15:51:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\Internet Saving Optimizer

[2009-09-04 15:50:36 | 00,000,000 | ---D | C] -- D:\Programy\Sukoku

[2009-09-04 15:50:31 | 00,000,000 | ---D | C] -- D:\Programy\Media Access Startup

[2009-09-04 15:50:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\Media Access Startup

[2009-09-04 15:50:27 | 00,000,000 | ---D | C] -- D:\Programy\Internet Saving Optimizer

[2009-09-04 15:50:24 | 00,000,000 | ---D | C] -- D:\Programy\System Search Dispatcher

[2009-09-04 15:50:16 | 00,000,000 | ---D | C] -- D:\Programy\DoubleD

[2009-09-04 15:50:09 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{C1DF1BDA-E7BE-4DC5-A5D9-C3D93F09FA65}

[2009-09-04 15:49:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\DoubleD

[2009-09-01 19:07:54 | 00,001,409 | ---- | C] () -- C:\WINDOWS\System32\settings.dll

[2009-09-01 19:07:23 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Panel sterowania.{21EC2020-3AEA-1069-A2DD-08002B30309D}

[2009-08-31 09:36:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Dane aplikacji\Google

[2009-08-31 09:35:57 | 00,000,000 | ---D | C] -- D:\Programy\Google

[2009-08-30 22:08:29 | 00,000,000 | ---D | C] -- D:\Programy\MySQL

[2009-08-30 22:08:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MySQL

[2009-08-30 21:09:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\Google

[2009-08-30 21:09:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google

[2009-08-29 20:40:36 | 00,001,769 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\savegames.xml

[2009-08-29 10:46:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Moje dokumenty\My Games

[2009-08-29 10:46:21 | 00,000,731 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\Landwirtschafts-Simulator 2009.lnk

[2009-08-28 18:16:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Dane aplikacji\MySQL

[2009-08-28 13:05:49 | 00,000,465 | -H-- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\dmd-united93.rmvb.ini

[2009-08-28 12:55:17 | 00,000,000 | ---D | C] -- D:\Programy\SubEdit-Player

[2009-08-28 12:52:38 | 00,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll

[2009-08-28 12:52:38 | 00,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll

[2009-08-28 12:52:37 | 00,000,000 | ---D | C] -- D:\Programy\Real Alternative

[2009-08-28 12:52:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\Real

[2009-08-28 12:52:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Dane aplikacji\Real

[2009-08-28 12:52:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real

[2009-08-20 23:36:36 | 00,000,000 | ---D | C] -- D:\Programy\Trend Micro

[2009-08-19 23:18:42 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Benkowik\Pulpit\music

[2009-08-19 10:59:38 | 00,000,348 | ---- | C] () -- C:\WINDOWS\tasks\music.job

[2009-08-18 15:15:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\Borland

[2009-08-18 14:53:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Moje dokumenty\Borland Studio Projects

[2009-08-18 13:37:54 | 00,000,000 | ---D | C] -- D:\Programy\Borland

[2009-08-18 13:19:16 | 00,000,000 | ---D | C] -- D:\Programy\Microsoft.NET

[2009-08-18 13:19:16 | 00,000,000 | ---D | C] -- D:\Programy\Microsoft Visual Studio .NET 2003

[2009-08-18 13:19:16 | 00,000,000 | ---D | C] -- D:\Programy\Microsoft Office

[2009-08-18 13:02:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Dane aplikacji\TortoiseSVN

[2009-08-18 12:59:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\TSVNCache

[2009-08-18 12:18:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Dane aplikacji\Subversion

[2009-08-18 12:17:16 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\TortoiseOverlays

[2009-08-18 12:17:15 | 00,000,000 | ---D | C] -- D:\Programy\TortoiseSVN

[2009-08-18 11:40:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\GHISLER

[2009-08-17 11:39:54 | 00,000,919 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\Chilli ZET.asx

[2009-08-17 11:26:48 | 00,803,840 | ---- | C] () -- C:\Documents and Settings\Benkowik\Pulpit\CWK v2.0 © Benkowik.exe

[2009-08-17 10:29:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Moje dokumenty\NetBeansProjects

[2009-08-16 09:18:20 | 00,000,000 | ---D | C] -- D:\Programy\kED

[2009-08-16 08:43:17 | 00,008,814 | ---- | C] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\testy.odt

[2009-08-16 08:39:57 | 00,000,019 | ---- | C] () -- C:\WINDOWS\cie12.ini

[2009-08-16 08:39:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Moje dokumenty\CEProjects

[2009-08-15 22:42:01 | 00,013,046 | ---- | C] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\2.odt

[2009-08-14 14:19:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Moje dokumenty\ATROM

[2009-08-14 08:24:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Benkowik\Pulpit\Niemiecki

[2009-07-24 14:56:41 | 00,000,223 | ---- | C] () -- C:\WINDOWS\AutoSAT.ini

[2009-07-22 23:18:05 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini

[2009-07-18 18:43:45 | 00,015,498 | ---- | C] () -- C:\WINDOWS\VX1000.ini

[2009-07-17 11:58:37 | 00,000,088 | RHS- | C] () -- C:\WINDOWS\System32\8E2E0639E9.sys

[2009-07-17 11:54:30 | 00,002,516 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys

[2009-07-05 09:07:09 | 00,223,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\dtscsi.sys

[2009-07-05 09:03:39 | 00,642,560 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys

[2009-07-05 09:03:39 | 00,096,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd9693.sys

[2009-07-04 13:48:39 | 00,000,501 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini

[2009-07-03 22:45:20 | 00,003,241 | ---- | C] () -- C:\WINDOWS\wincmd.ini

[2009-07-03 22:44:31 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll

[2009-07-03 22:44:29 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll

[2009-07-03 22:44:29 | 01,559,040 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll

[2009-07-03 22:44:29 | 00,282,624 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll

[2009-07-03 22:44:28 | 00,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll

[2009-07-03 22:44:28 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest

[2009-07-03 18:20:00 | 00,014,682 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini

[2009-07-03 18:19:59 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys

[2009-07-03 18:19:48 | 00,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS

[2007-05-11 00:03:00 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll

[2007-05-11 00:03:00 | 01,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll

[2007-05-11 00:03:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll

[2007-05-11 00:03:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll

[2007-05-11 00:03:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll

[2004-08-04 00:44:00 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll

[2002-03-17 02:00:00 | 00,007,420 | ---- | C] () -- C:\WINDOWS\UA000080.DLL

[2001-07-22 02:16:20 | 00,000,606 | ---- | C] () -- C:\WINDOWS\win.ini

[2001-07-22 02:15:52 | 00,000,231 | ---- | C] () -- C:\WINDOWS\system.ini

========== Files - Modified Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]

[3 C:\WINDOWS\*.tmp files]

[2009-09-07 14:41:17 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2009-09-07 14:41:12 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2009-09-07 06:50:46 | 00,000,606 | ---- | M] () -- C:\WINDOWS\win.ini

[2009-09-06 20:32:43 | 00,027,920 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\przykład 1.jpg

[2009-09-06 14:43:02 | 00,026,680 | ---- | M] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\s;a [fsdf.odt

[2009-09-06 13:27:35 | 00,122,991 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\internetTextures.zip

[2009-09-06 13:25:50 | 00,780,326 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\ODESulaco.zip

[2009-09-06 13:10:17 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2009-09-06 11:01:21 | 00,000,573 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\AC3D.lnk

[2009-09-06 08:39:22 | 00,009,356 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\blender_i3d_export_4.1.2.zip

[2009-09-05 21:49:50 | 00,000,651 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\GIANTS Editor.lnk

[2009-09-05 21:40:12 | 04,653,909 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\tutorial_GE4.1.2_en.pdf

[2009-09-05 20:51:26 | 00,012,343 | ---- | M] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\niemiecki.odt

[2009-09-05 16:51:00 | 00,003,241 | ---- | M] () -- C:\WINDOWS\wincmd.ini

[2009-09-05 16:26:58 | 00,000,501 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini

[2009-09-05 13:41:03 | 06,206,853 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\USDownloader.rar

[2009-09-04 20:40:00 | 00,500,826 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat

[2009-09-04 20:40:00 | 00,441,760 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2009-09-04 20:40:00 | 00,089,166 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat

[2009-09-04 20:40:00 | 00,071,444 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2009-09-04 20:39:59 | 01,117,158 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2009-09-01 19:12:51 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini

[2009-09-01 19:07:54 | 00,001,409 | ---- | M] () -- C:\WINDOWS\System32\settings.dll

[2009-08-31 08:47:34 | 01,442,208 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2009-08-30 22:16:16 | 00,034,496 | ---- | M] () -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT

[2009-08-29 12:47:04 | 00,001,769 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\savegames.xml

[2009-08-29 10:46:21 | 00,000,731 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\Landwirtschafts-Simulator 2009.lnk

[2009-08-28 15:11:25 | 00,000,465 | -H-- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\dmd-united93.rmvb.ini

[2009-08-22 00:29:00 | 07,416,334 | -H-- | M] () -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\IconCache.db

[2009-08-20 23:17:35 | 00,709,992 | -H-- | M] (Microsoft Corporation) -- C:\WINDOWS\vVX1000.exe

[2009-08-20 20:26:20 | 00,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

[2009-08-19 10:59:38 | 00,000,348 | ---- | M] () -- C:\WINDOWS\tasks\music.job

[2009-08-17 18:10:20 | 01,279,456 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe

[2009-08-17 18:06:54 | 00,093,392 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys

[2009-08-17 18:06:43 | 00,094,160 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys

[2009-08-17 18:05:52 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys

[2009-08-17 18:05:37 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys

[2009-08-17 18:04:40 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys

[2009-08-17 18:04:29 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys

[2009-08-17 18:03:21 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys

[2009-08-17 18:02:50 | 00,097,480 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr

[2009-08-17 11:39:55 | 00,000,919 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\Chilli ZET.asx

[2009-08-17 11:26:26 | 00,803,840 | ---- | M] () -- C:\Documents and Settings\Benkowik\Pulpit\CWK v2.0 © Benkowik.exe

[2009-08-16 09:35:39 | 00,008,814 | ---- | M] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\testy.odt

[2009-08-16 08:42:40 | 00,000,019 | ---- | M] () -- C:\WINDOWS\cie12.ini

[2009-08-15 22:47:24 | 00,013,046 | ---- | M] () -- C:\Documents and Settings\Benkowik\Moje dokumenty\2.odt

[2009-08-09 11:25:24 | 00,010,240 | ---- | M] () -- C:\Documents and Settings\Benkowik\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\WINDOWS\vVX1000.exe:SummaryInformation

@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:64217CD0

< End of report >

MarekM25
komentarz
komentarz

Sory, że tak długo nie odpowiadam. W każdym razie spróbujemy takiego skrypta:

Uruchom OTL i w oknie Custom Scans/Fixes wklej następujący skrypt:

:OTLPRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)FF - prefs.js..browser.search.selectedEngine: "GamingHarbor"O2 - BHO: (Media Access Startup) - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - D:\Programy\Media Access Startup\1.6.0.940\HPIEAddOn.dll ()O2 - BHO: (MultiShop v2.0) - {39AA6D29-4236-4F25-A36A-3410EF5283D9} - D:\Programy\Pivim Multibar\multishop.dll (Media Labs Limited)O2 - BHO: (System Search Dispatcher) - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - D:\Programy\System Search Dispatcher\1.4.1.1010\ssd.dll ()O2 - BHO: (XBTBPos00 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - D:\Programy\Pivim Multibar\pivim.dll ()O3 - HKLM\..\Toolbar: (Pivim Multibar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - D:\Programy\Pivim Multibar\pivim.dll ()O3 - HKLM\..\Toolbar: (GamingHarbor Toolbar) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\stb0.dll ()O3 - HKCU\..\Toolbar\WebBrowser: (Pivim Multibar) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - D:\Programy\Pivim Multibar\pivim.dll ()O3 - HKCU\..\Toolbar\WebBrowser: (GamingHarbor Toolbar) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - D:\Programy\DoubleD\GamingHarbor Toolbar\4.2.4.23050\stb0.dll ():FilesD:\Programy\Pivim MultibarD:\Programy\Media Access StartupD:\Programy\System Search DispatcherD:\Programy\DoubleD\GamingHarbor Toolbar:Reg[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2][HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]"SuperHidden"=dword:00000001[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]"Hidden"=dword:00000001[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]"ShowSuperHidden"=dword:00000001[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL]"CheckedValue"=dword:00000001[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden]@="":Commands[emptytemp][start explorer][Reboot]

Kliknij w Run Fix. Zatwierdź restart komputera.

Następnie uruchamiasz OTL ponownie, tym razem wywołujesz opcję Run Scan. Pokazujesz nowy log OTL.txt (z czyszczenia + skan)

I powiedz czy pomogło.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.