x-kom hosting

Strony same mi sie otwieraja.

bono2209
utworzono
utworzono

[log]OTL logfile created on: 2009-11-22 01:27:06 - Run 1
OTL by OldTimer - Version 3.1.6.2 Folder = G:\Moja muzyka
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,27 Gb Available Physical Memory | 63,75% Memory free
3,85 Gb Paging File | 3,09 Gb Available in Paging File | 80,23% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 32,77 Gb Free Space | 67,12% Space Free | Partition Type: NTFS
Drive D: | 123,95 Gb Total Space | 113,01 Gb Free Space | 91,17% Space Free | Partition Type: NTFS
Drive E: | 97,66 Gb Total Space | 94,89 Gb Free Space | 97,16% Space Free | Partition Type: NTFS
Drive F: | 97,65 Gb Total Space | 96,80 Gb Free Space | 99,12% Space Free | Partition Type: NTFS
Drive G: | 97,65 Gb Total Space | 96,91 Gb Free Space | 99,24% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: BECEB250CFE3412
Current User Name: Paulina
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2009-11-22 00:26:05 | 00,529,408 | ---- | M] (OldTimer Tools) -- G:\Moja muzyka\OTL.exe
PRC - [2009-11-08 16:23:33 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-10-30 19:47:42 | 00,211,568 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
PRC - [2009-10-30 19:47:42 | 00,211,568 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
PRC - [2009-07-25 04:23:12 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009-07-25 04:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009-05-01 21:51:45 | 00,107,832 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.exe
PRC - [2009-05-01 21:51:36 | 00,066,872 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
PRC - [2008-08-04 00:02:20 | 00,036,352 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
PRC - [2008-05-30 15:54:16 | 00,076,744 | R--- | M] (Skype Technologies) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe
PRC - [2008-05-30 15:54:14 | 21,718,312 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe
PRC - [2008-04-01 17:18:00 | 01,907,712 | ---- | M] () -- C:\Program Files\GIGABYTE\GIGABYTE Gamer HUD\HUD.exe
PRC - [2008-03-20 11:04:46 | 02,127,296 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe
PRC - [2008-02-26 04:00:02 | 00,520,192 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2008-02-26 04:00:02 | 00,520,192 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2008-02-13 07:31:34 | 16,857,600 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe
PRC - [2008-01-22 09:35:52 | 00,103,808 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe
PRC - [2007-12-18 13:20:00 | 00,401,408 | ---- | M] (Creative Technology Ltd.) -- C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe
PRC - [2007-07-17 11:13:56 | 00,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
PRC - [2007-07-17 11:13:34 | 00,049,152 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
PRC - [2007-05-16 08:27:38 | 01,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007-05-16 08:27:28 | 00,271,920 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
PRC - [2007-05-16 08:27:16 | 00,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007-04-02 13:15:40 | 00,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe
PRC - [2007-01-08 22:39:44 | 00,171,040 | ---- | M] () -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe
PRC - [2007-01-08 22:26:08 | 00,068,640 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
PRC - [2005-08-11 16:30:30 | 00,618,496 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe
PRC - [2005-08-11 16:30:30 | 00,249,856 | ---- | M] (Macrovision Corporation) -- c:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
PRC - [2005-08-11 16:30:30 | 00,081,920 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
PRC - [2005-01-28 13:44:28 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe
PRC - [2004-08-04 00:55:54 | 01,667,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe
PRC - [2004-08-04 00:44:30 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2004-08-04 00:44:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [1999-12-13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2009-11-22 00:26:05 | 00,529,408 | ---- | M] (OldTimer Tools) -- G:\Moja muzyka\OTL.exe
MOD - [2006-12-21 13:30:44 | 00,102,400 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\ggwhook.dll
MOD - [2004-08-04 00:43:58 | 00,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2004-08-04 00:42:34 | 01,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009-10-30 19:47:42 | 00,211,568 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe -- (AVP)
SRV - [2009-07-25 04:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009-05-10 16:46:35 | 00,072,704 | ---- | M] (Adobe Systems) -- C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
SRV - [2009-05-01 21:51:45 | 00,107,832 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.exe -- (PnkBstrB)
SRV - [2009-05-01 21:51:36 | 00,066,872 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe -- (PnkBstrA)
SRV - [2008-02-26 04:00:02 | 00,520,192 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller)
SRV - [2008-02-25 21:05:00 | 00,593,920 | ---- | M] () -- C:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart)
SRV - [2008-01-22 09:35:52 | 00,103,808 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2007-11-06 20:16:54 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08)
SRV - [2007-11-06 20:16:54 | 00,139,264 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc)
SRV - [2007-05-16 08:27:28 | 00,271,920 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2007-04-13 20:09:56 | 00,792,112 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService)
SRV - [2007-04-02 13:15:40 | 00,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv)
SRV - [2007-01-08 22:39:44 | 00,171,040 | ---- | M] () -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe -- (RichVideo) Cyberlink RichVideo Service(CRVS)
SRV - [2005-09-23 07:28:56 | 00,066,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2005-09-23 07:28:32 | 00,029,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state)
SRV - [2005-01-28 13:44:28 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe -- (UMWdf)
SRV - [2004-08-04 00:44:08 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll -- (helpsvc)
SRV - [2003-07-28 20:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [1999-12-13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE -- (Creative Service for CDROM Access)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found -- -- (sp_rsdrv2)
DRV - File not found -- -- (PCTCore)
DRV - [2009-10-30 19:47:42 | 00,187,168 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\klif.sys -- (klif)
DRV - [2009-10-30 19:47:42 | 00,112,144 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1)
DRV - [2008-11-20 20:19:06 | 00,043,872 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2008-02-26 06:51:42 | 02,863,616 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2008-02-14 10:04:06 | 04,676,096 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008-01-03 15:10:16 | 00,105,856 | R--- | M] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007-04-04 14:58:26 | 00,024,344 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2006-12-28 17:44:44 | 00,084,992 | R--- | M] (ATI Research Inc.) -- C:\WINDOWS\system32\drivers\AtiHdAud.sys -- (HdAudAddService)
DRV - [2005-01-07 17:07:18 | 00,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004-07-17 11:36:38 | 00,027,440 | ---- | M] () -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2001-08-17 22:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60346
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60346
IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)


IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.com/pl/
IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\URLSearchHook: {57BCA5FA-5DBB-45A2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\S-1-5-21-1960408961-1972579041-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultenginename: "Winamp Search"
FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.theprizeday.com/today.php|www.google.pl"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1
FF - prefs.js..extensions.enabledItems: {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}:2.0.0.54356
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20090920.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}:2.0.0.1050
FF - prefs.js..extensions.enabledItems: {2224E955-00E9-4613-A844-CE69FCCAAE91}:3.8.1.4690
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5

FF - HKLM\software\mozilla\Firefox\extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF [2009-09-10 21:55:09 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}: C:\Program Files\Media Access Startup\2.0.0.1050\FF [2009-09-10 21:55:18 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2008-12-21 21:19:17 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-11-21 13:32:17 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-11-08 16:23:38 | 00,000,000 | ---D | M]

[2008-12-21 21:14:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Extensions
[2008-12-21 21:14:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009-11-22 00:29:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Firefox\Profiles\lxr3mbts.default\extensions
[2009-07-22 11:16:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Firefox\Profiles\lxr3mbts.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2009-11-22 00:29:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Firefox\Profiles\lxr3mbts.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2009-09-22 10:55:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Firefox\Profiles\lxr3mbts.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009-10-30 23:02:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Firefox\Profiles\lxr3mbts.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2009-07-22 11:16:37 | 00,001,196 | ---- | M] () -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Firefox\Profiles\lxr3mbts.default\searchplugins\winamp-search.xml
[2009-11-22 00:29:42 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009-09-30 05:13:22 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}
[2009-11-08 16:23:33 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008-12-21 21:19:21 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
[2009-09-15 07:43:51 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2009-01-15 15:52:33 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}
[2009-11-08 16:23:33 | 00,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll
[2009-11-08 16:23:33 | 00,137,176 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll
[2009-07-25 04:23:01 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll
[2009-11-08 16:23:35 | 00,064,984 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
[2003-07-15 06:56:52 | 00,013,888 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
[2008-06-11 22:45:28 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
[2008-09-10 20:56:44 | 00,144,960 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
[2008-09-10 20:37:54 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
[2009-08-24 20:19:13 | 00,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2009-09-21 12:24:16 | 00,001,329 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml
[2009-08-24 20:19:13 | 00,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2009-08-24 20:19:13 | 00,002,371 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml
[2009-08-24 20:19:13 | 00,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2009-08-24 20:19:13 | 00,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2009-09-30 05:13:22 | 00,002,381 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\sukoku119.xml
[2009-08-24 20:19:13 | 00,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2009-08-24 20:19:13 | 00,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Yahoo! Companion BHO) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.)
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O2 - BHO: (UrlHelper Class) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\..\Toolbar: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O3 - HKLM\..\Toolbar: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.)
O3 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\Toolbar\ShellBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\Toolbar\WebBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O3 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\Toolbar\WebBrowser: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [ISUSPM Startup] c:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe (Macrovision Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (Macrovision Corporation)
O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [RemoteControl] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003..\Run: [CTZDetec.exe] C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe (Creative Technology Ltd.)
O4 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.)
O4 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003..\Run: [MSMSGS] C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003..\Run: [Uninstall_CToolbar] C:\Documents and Settings\Paulina\Ustawienia lokalne\Temp\CUninst.exe (Crawler.com)
O4 - Startup: C:\Documents and Settings\Paulina\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\Paulina\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.exe.lnk = C:\Documents and Settings\Paulina\Dane aplikacji\Microsoft\Installer\{B2BE514B-F1B3-43AB-84DD-3377ADBA1A7F}\HUD.exe1_CC5DF1A2468043D58FABB63B71468005.exe (Macrovision Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html ()
O8 - Extra context menu item: Dodaj do blokowanych banerów - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\ie_banner_deny.htm ()
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Statystyki ochrony WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\SCIEPlgn.dll (Kaspersky Lab)
O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Zaznaczanie HP Smart - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1.0FO\adialhk.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\adialhk.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008-12-21 20:23:09 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{3dc144d5-d4fc-11dd-b582-0021855a7ea9}\Shell\AutoRun\command - "" = SYSTEM\S-1-5-21-1482476501-1644491937-682003330-1013\system32.exe
O33 - MountPoints2\{3dc144d5-d4fc-11dd-b582-0021855a7ea9}\Shell\open\command - "" = SYSTEM\S-1-5-21-1482476501-1644491937-682003330-1013\system32.exe
O33 - MountPoints2\{c688ad66-3a5f-11de-b6c2-0021855a7ea9}\Shell\Open(&0)\command - "" = I:\Recycled\ctfmon.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2009-11-22 01:21:42 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009-11-22 01:14:07 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Paulina\Recent
[2009-11-22 00:44:10 | 00,000,000 | ---D | C] -- C:\Program Files\SkanerOnline
[2009-11-21 15:41:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Paulina\Ustawienia lokalne\Dane aplikacji\Threat Expert
[2009-11-21 14:45:43 | 00,000,000 | ---D | C] -- C:\Program Files\Crawler
[2009-11-21 14:21:34 | 00,000,000 | ---D | C] -- C:\Program Files\Spyware Doctor
[2009-11-21 14:21:34 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools
[2009-11-21 14:21:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2009-11-20 18:38:45 | 00,000,000 | ---D | C] -- C:\Program Files\ESET
[2009-11-17 19:43:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\1D30D
[2009-11-16 19:47:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\28213
[2009-11-15 10:57:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\D29F
[2009-11-14 22:41:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Paulina\Pulpit\wszystkie muzyki
[2009-11-14 16:05:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Paulina\Pulpit\piesni patriotyczne
[2009-11-14 15:48:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\313A9
[2009-11-14 15:32:23 | 83,874,808 | ---- | C] (AVG Technologies) -- C:\Documents and Settings\Paulina\Pulpit\avg_free_stf_eu_90_707a1765.exe
[2009-11-12 17:05:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\103A9
[2009-11-11 18:35:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\5290
[2009-11-10 20:07:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\36128
[2009-11-09 20:07:51 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\33EA
[2009-11-01 22:28:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Paulina\Dane aplikacji\Skype
[2009-11-01 22:28:20 | 00,000,000 | ---D | C] -- C:\Program Files\Skype
[2009-11-01 22:28:20 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2009-10-30 19:20:29 | 00,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab
[2009-10-30 19:20:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2009-11-22 01:26:26 | 00,093,728 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2009-11-22 01:24:00 | 13,124,640 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2009-11-22 01:21:43 | 00,001,741 | ---- | M] () -- C:\Documents and Settings\Paulina\Pulpit\HijackThis.lnk
[2009-11-22 01:13:08 | 00,001,555 | ---- | M] () -- C:\Documents and Settings\Paulina\Pulpit\CCleaner.lnk
[2009-11-22 00:33:43 | 04,718,592 | -H-- | M] () -- C:\Documents and Settings\Paulina\NTUSER.DAT
[2009-11-21 15:09:04 | 00,002,517 | ---- | M] () -- C:\Documents and Settings\Paulina\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.exe.lnk
[2009-11-21 15:09:01 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009-11-21 15:08:59 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009-11-21 08:19:09 | 00,176,552 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2009-11-21 08:19:09 | 00,010,112 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.idx
[2009-11-21 08:19:04 | 00,000,292 | -HS- | M] () -- C:\Documents and Settings\Paulina\ntuser.ini
[2009-11-19 17:07:23 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009-11-18 19:39:51 | 00,979,456 | ---- | M] () -- C:\Documents and Settings\Paulina\Pulpit\Prezentacja1.ppt
[2009-11-17 20:23:25 | 00,076,800 | ---- | M] () -- C:\Documents and Settings\Paulina\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-11-14 15:44:41 | 00,096,256 | ---- | M] () -- C:\Documents and Settings\Paulina\Pulpit\piesni.doc
[2009-11-14 15:44:32 | 83,874,808 | ---- | M] (AVG Technologies) -- C:\Documents and Settings\Paulina\Pulpit\avg_free_stf_eu_90_707a1765.exe
[2009-11-12 21:39:40 | 02,545,860 | ---- | M] () -- C:\Documents and Settings\Paulina\Pulpit\d2d1b72b78e06f0935026de8177d1e7f.jpg
[2009-11-08 21:10:53 | 00,001,471 | ---- | M] () -- C:\Documents and Settings\Paulina\Pulpit\hehe.rtf
[2009-11-02 10:09:37 | 00,002,259 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2009-11-01 22:44:03 | 00,000,042 | ---- | M] () -- C:\Documents and Settings\Paulina\default.pls
[2009-10-30 19:52:40 | 00,000,652 | ---- | M] () -- C:\WINDOWS\win.ini
[2009-10-30 19:52:40 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2009-10-30 19:52:40 | 00,000,211 | RHS- | M] () -- C:\boot.ini
[2009-10-30 19:47:42 | 00,187,168 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2009-10-30 19:47:42 | 00,112,144 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\kl1.sys
[2009-10-30 19:47:42 | 00,108,059 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat
[2009-10-30 19:47:42 | 00,095,259 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat
[2009-10-30 19:14:11 | 00,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009-10-25 08:32:34 | 00,993,394 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009-10-25 08:32:34 | 00,451,220 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2009-10-25 08:32:34 | 00,395,200 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009-10-25 08:32:34 | 00,075,486 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2009-10-25 08:32:34 | 00,059,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2009-11-22 01:21:43 | 00,001,741 | ---- | C] () -- C:\Documents and Settings\Paulina\Pulpit\HijackThis.lnk
[2009-11-17 21:01:56 | 00,979,456 | ---- | C] () -- C:\Documents and Settings\Paulina\Pulpit\Prezentacja1.ppt
[2009-11-14 15:44:41 | 00,096,256 | ---- | C] () -- C:\Documents and Settings\Paulina\Pulpit\piesni.doc
[2009-11-12 21:39:40 | 02,545,860 | ---- | C] () -- C:\Documents and Settings\Paulina\Pulpit\d2d1b72b78e06f0935026de8177d1e7f.jpg
[2009-11-08 21:10:53 | 00,001,471 | ---- | C] () -- C:\Documents and Settings\Paulina\Pulpit\hehe.rtf
[2009-11-01 22:44:03 | 00,000,042 | ---- | C] () -- C:\Documents and Settings\Paulina\default.pls
[2009-11-01 22:28:21 | 00,002,259 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2009-10-30 19:20:46 | 00,108,059 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat
[2009-10-30 19:20:46 | 00,095,259 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat
[2009-10-30 19:20:27 | 13,124,640 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2009-10-30 19:20:27 | 00,176,552 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2009-10-30 19:20:27 | 00,093,728 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2009-10-30 19:20:27 | 00,010,112 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.idx
[2009-09-13 21:36:42 | 00,815,104 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009-09-13 21:36:42 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009-06-06 11:33:52 | 00,000,735 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
[2009-05-09 16:02:47 | 00,000,049 | ---- | C] () -- C:\WINDOWS\iltwain.ini
[2009-05-01 21:51:56 | 00,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009-05-01 21:51:56 | 00,022,328 | ---- | C] () -- C:\Documents and Settings\Paulina\Dane aplikacji\PnkBstrK.sys
[2009-03-08 20:35:51 | 00,007,393 | ---- | C] () -- C:\Program Files\Uninst.isu
[2009-03-08 20:35:51 | 00,002,238 | ---- | C] () -- C:\Program Files\wpl.ico
[2009-03-08 17:19:03 | 00,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2009-01-06 17:32:48 | 00,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008-12-22 10:50:47 | 00,076,800 | ---- | C] () -- C:\Documents and Settings\Paulina\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-12-21 21:16:52 | 00,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008-12-21 21:16:52 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2008-12-21 21:16:09 | 00,993,394 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2008-12-21 21:16:09 | 00,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008-12-21 21:15:45 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
[2008-12-21 20:37:20 | 00,043,408 | ---- | C] () -- C:\Documents and Settings\Paulina\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2008-12-21 20:36:24 | 04,815,546 | -H-- | C] () -- C:\Documents and Settings\Paulina\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2008-12-21 20:25:54 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Paulina\Dane aplikacji\desktop.ini
[2008-12-21 20:23:09 | 00,000,000 | ---- | C] () -- C:\WINDOWS\control.ini
[2008-12-21 20:21:02 | 00,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini
[2008-12-21 20:21:02 | 00,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini
[2008-12-21 20:20:34 | 00,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini
[2008-12-21 20:20:33 | 00,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini
[2004-08-04 00:44:10 | 00,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll
[2004-08-04 00:44:04 | 00,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll
[2004-08-04 00:44:00 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004-08-04 00:43:58 | 00,186,368 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll
[2004-08-04 00:43:56 | 00,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll
[2004-08-04 00:43:54 | 00,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll
[2004-08-04 00:43:16 | 00,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll
[2004-08-03 22:46:56 | 00,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys
[2004-08-03 22:45:34 | 00,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys
[2004-08-03 22:45:16 | 00,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys
[2004-08-03 22:45:16 | 00,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys
[2004-08-03 22:45:14 | 00,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys
[2004-08-03 22:45:12 | 00,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys
[2004-07-17 11:46:14 | 00,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini
[2004-07-17 11:36:38 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2003-04-08 11:40:22 | 00,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001-10-26 18:29:42 | 00,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll
[2001-10-26 18:29:40 | 00,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll
[2001-10-26 18:29:32 | 00,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll
[2001-10-26 18:28:34 | 00,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll
[2001-10-26 18:27:02 | 00,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll
[2001-10-26 17:15:04 | 00,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys
[2001-10-26 17:14:52 | 00,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys
[2001-10-26 17:14:32 | 00,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys
[2001-10-26 17:12:52 | 00,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini
[2001-10-26 16:45:26 | 00,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini
[2001-10-26 16:45:26 | 00,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini
[2001-10-26 16:45:24 | 00,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini
[2001-10-26 16:42:08 | 00,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini
[2001-10-26 16:42:08 | 00,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini
[2001-10-26 16:42:08 | 00,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini
[2001-10-26 16:42:08 | 00,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini
[2001-08-17 22:31:56 | 00,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys
[2001-08-17 22:31:56 | 00,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys
[2001-08-17 22:31:50 | 00,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys
[2001-08-17 22:31:46 | 00,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys
[2001-08-17 22:31:46 | 00,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys
[2001-08-17 22:31:44 | 00,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys
[2001-08-17 22:13:24 | 00,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv
[2001-08-17 20:55:06 | 01,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini
[2001-07-22 03:25:18 | 00,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini
[2001-07-21 23:16:20 | 00,000,652 | ---- | C] () -- C:\WINDOWS\win.ini
[2001-07-21 23:15:52 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
[2001-07-21 23:15:50 | 00,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll

[color=#E56717]========== LOP Check ==========[/color]

[2009-06-07 11:17:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\024C
[2009-04-09 14:13:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\101B5
[2009-11-12 17:05:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\103A9
[2009-07-05 17:53:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\11138
[2009-03-22 15:12:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\12186
[2009-07-20 10:17:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\13C1
[2009-05-28 19:12:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\14128
[2009-03-02 17:26:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\148C
[2009-07-20 15:01:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\17290
[2009-02-23 16:58:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\18EA
[2009-01-25 16:17:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\19DA
[2009-05-09 11:48:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1A1A5
[2009-02-08 13:01:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1BF
[2009-06-25 10:54:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1C1E4
[2009-06-24 15:28:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1D1D4
[2009-11-17 19:43:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1D30D
[2009-02-10 19:33:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1E1F4
[2009-05-12 18:09:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1E290
[2009-01-17 10:03:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\201E4
[2009-01-16 18:32:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2119
[2009-01-17 16:15:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2138
[2009-06-16 18:20:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2196
[2009-07-14 20:59:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\22157
[2009-03-05 17:53:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\22AB
[2009-04-05 19:01:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\231F4
[2009-03-05 17:20:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\232EE
[2009-09-06 18:56:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\24157
[2009-07-04 13:54:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\242AF
[2009-09-06 19:02:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\24EA
[2009-01-15 15:52:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\261C5
[2009-05-10 14:53:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\26232
[2009-11-16 19:47:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\28213
[2009-06-15 00:11:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\287B
[2009-06-07 16:24:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2A109
[2009-01-16 15:03:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2A34B
[2009-03-26 16:33:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2C1E4
[2009-01-18 19:50:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2C2FD
[2009-07-21 07:52:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\30157
[2009-06-25 16:34:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\30FA
[2009-01-22 19:21:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\31280
[2009-07-06 18:52:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\31290
[2009-11-14 15:48:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\313A9
[2009-02-23 16:23:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\3232
[2009-05-01 16:58:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\33261
[2009-05-19 22:52:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\333B9
[2009-11-09 20:07:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\33EA
[2009-07-21 10:16:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\35177
[2009-06-24 21:25:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\35EA
[2009-11-10 20:07:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\36128
[2009-05-16 16:24:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\3733C
[2009-02-20 15:58:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\393D8
[2009-08-29 13:58:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\39EA
[2009-08-03 09:00:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\3DA
[2009-11-11 18:35:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\5290
[2009-07-06 10:33:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\537A
[2009-04-09 22:35:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\8290
[2009-05-06 22:51:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\831C
[2009-03-30 17:43:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\932C
[2009-05-10 16:46:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe
[2009-09-02 20:22:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ahead
[2008-12-21 20:37:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ATI
[2009-03-14 08:50:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\C5D
[2008-12-23 21:19:13 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ
[2009-06-29 20:21:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJ
[2008-12-23 21:30:16 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJEPPEX
[2008-12-23 21:22:36 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJMyPrinter
[2009-08-22 18:58:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJPLM
[2008-12-23 21:23:57 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJScan
[2008-12-23 21:35:14 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJSolutionMenu
[2009-10-07 15:42:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Creative
[2009-01-24 18:53:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CyberLink
[2009-11-15 10:57:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\D29F
[2009-06-08 21:33:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\D2EE
[2009-04-05 07:47:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\E251
[2009-02-07 18:12:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\E5D
[2009-06-17 21:46:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\E6D
[2009-02-28 20:49:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\E7D
[2009-06-06 11:39:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Hewlett-Packard
[2009-06-06 11:38:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\HP
[2009-06-06 11:37:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\HP Product Assistant
[2009-05-01 21:51:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\id Software
[2008-12-21 20:38:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallShield
[2009-11-21 15:10:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab
[2009-01-06 17:31:37 | 00,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
[2009-09-02 20:21:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nero
[2009-09-13 21:38:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton
[2009-08-30 17:04:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NortonInstaller
[2009-05-01 21:36:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Real
[2009-11-01 22:28:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype
[2009-11-20 18:47:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sukoku
[2009-08-30 17:04:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Symantec
[2009-11-22 00:36:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2009-06-06 11:40:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\WEBREG
[2008-12-21 21:20:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Winamp Toolbar
[2008-12-21 20:23:08 | 00,000,000 | --SD | M] -- C:\Documents and Settings\Default User\Dane aplikacji\Microsoft
[2008-12-21 20:23:08 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2008-12-21 20:23:08 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2009-01-04 13:58:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Adobe
[2009-09-02 20:25:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Ahead
[2008-12-21 20:37:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\ATI
[2008-12-23 21:23:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Canon
[2009-01-24 18:53:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\CyberLink
[2008-12-21 21:20:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Gadu-Gadu
[2009-04-26 19:32:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Help
[2009-06-06 11:40:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\HP
[2009-11-22 00:48:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\HPAppData
[2009-05-01 21:52:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\id Software
[2008-12-21 20:26:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Identities
[2008-12-21 21:39:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Macromedia
[2009-05-01 21:37:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Media Player Classic
[2009-06-04 23:40:26 | 00,000,000 | --SD | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Microsoft
[2008-12-21 21:14:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla
[2009-05-01 21:36:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Real
[2009-11-22 01:09:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Skype
[2009-11-22 00:02:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\skypePM
[2008-12-21 21:16:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Sun
[2008-12-21 21:20:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Winamp
[2001-07-21 23:17:50 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini
[2009-11-21 15:09:01 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 191 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:DFC5A2B2
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:A8ADE5D8
< End of report >
[/log]

Psycholandia
komentarz
komentarz

W okienko OTL wklej poniższy skrypt i klik na Run Fix:

[code]:Processes
explorer.exe

:OTL
O3 - HKLM\..\Toolbar: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\Toolbar\ShellBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\Toolbar\WebBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O4 - Startup: C:\Documents and Settings\Paulina\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.exe.lnk = C:\Documents and Settings\Paulina\Dane aplikacji\Microsoft\Installer\{B2BE514B-F1B3-43AB-84DD-3377ADBA1A7F}\HUD.exe1_CC5DF1A2468043D58FABB63B71468005. exe (Macrovision Corporation)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...r/ultrashim.cab (Reg Error: Key error.)
O33 - MountPoints2\{3dc144d5-d4fc-11dd-b582-0021855a7ea9}\Shell\AutoRun\command - "" = SYSTEM\S-1-5-21-1482476501-1644491937-682003330-1013\system32.exe
O33 - MountPoints2\{3dc144d5-d4fc-11dd-b582-0021855a7ea9}\Shell\open\command - "" = SYSTEM\S-1-5-21-1482476501-1644491937-682003330-1013\system32.exe
O33 - MountPoints2\{c688ad66-3a5f-11de-b6c2-0021855a7ea9}\Shell\Open(&0)\command - "" = I:\Recycled\ctfmon.exe -- File not found

:Files
C:\Program Files\BearShare Applications\BearShare MediaBar
C:\Program Files\Mozilla Firefox\searchplugins\sukoku119.xml
C:\Documents and Settings\All Users\Dane aplikacji\Sukoku

:Commands
[emptytemp]
[start explorer]
[Reboot][/code]

Otwórz notatnik tekstowy i wklej do niego poniższy tekst: [code]Windows Registry Editor Version 5.00

[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2]
[/code]
Zapisz jako->Wybierz [b]Wszystkie pliki[/b]->wpisz [b]Fix.reg[/b]->Następnie kliknij na zapisany plik i uruchom komputer ponownie.

Przeskanuj komputer tym: [url="http://www.programosy.pl/program,malwarebytes-anti-malware.html"]Malware[/url] usuń wszystko co znajdzie i daj loga po kasowaniu (loga z Malware)

+ wykonaj to: http://www.forumpc.pl/index.php?showtopic=99152

bono2209
komentarz
komentarz

[log]Malwarebytes' Anti-Malware 1.41
Wersja bazy definicji: 3213
Windows 5.1.2600 Dodatek Service Pack 2

2009-11-22 12:24:02
mbam-log-2009-11-22 (12-24-02).txt

Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|F:\|G:\|)
Przeskanowane obiekty: 172291
Upłynęło: 15 minute(s), 30 second(s)

Zainfekowane procesy w pamięci: 0
Zainfekowane moduły pamięci: 4
Zainfekowane klucze rejestru: 26
Zainfekowane wartości rejestru: 3
Zainfekowane pliki rejestru: 0
Zainfekowane foldery: 19
Zainfekowane pliki: 32

Zainfekowane procesy w pamięci:
(Nie wykryto groźnych plików)

Zainfekowane moduły pamięci:
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\NPCommon.dll (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\components\NPFFAddOn.dll (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Media Access Startup\2.0.0.1050\HPCommon.dll (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Media Access Startup\2.0.0.1050\FF\components\HPFFAddOn.dll (Adware.DoubleD) -> Delete on reboot.

Zainfekowane klucze rejestru:
HKEY_CLASSES_ROOT\explorerbar.funexplorer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funexplorer.1 (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funredirector (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funredirector.1 (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{480098c6-f6ad-4c61-9b5c-2bae228a34d1} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6160f76a-1992-4b17-a32d-0c706d159105} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{877f3eab-4462-44df-8475-6064eafd7fbf} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{25b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{35b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cdbfb47b-58a8-4111-bf95-06178dce326d} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{883dfc00-8a21-411d-956c-73a4e4b7d16f} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{ac5ab953-ed25-4f9c-87f0-b086b0178ffa} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{c28a0312-c403-417b-a425-a915bc0519cd} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{cdbfb47b-58a8-4111-bf95-06178dce326d} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{35b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cdbfb47b-58a8-4111-bf95-06178dce326d} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\{5617ECA9-488D-4BA2-8562-9710B9AB78D2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Internet Saving Optimizer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Media Access Startup (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\DoubleD (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Internet Saving Optimizer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Media Access Startup (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{16b6279b-9ff5-41fb-8bf9-404324f5dd1f}}_is1 (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{c5096216-7703-409e-b85a-8a6ee7395128}}_is1 (Adware.DoubleD) -> Quarantined and deleted successfully.

Zainfekowane wartości rejestru:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{0ba0192d-94a5-45e3-b2b8-3ec5a1a0b5ec} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{2224e955-00e9-4613-a844-ce69fccaae91} (Adware.DoubleD) -> Quarantined and deleted successfully.

Zainfekowane pliki rejestru:
(Nie wykryto groźnych plików)

Zainfekowane foldery:
C:\Program Files\DoubleD (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\DoubleD\GamingHarbor Toolbar (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Internet Saving Optimizer (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690 (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\chrome (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\chrome\content (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\components (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Media Access Startup (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Media Access Startup\2.0.0.1050 (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Media Access Startup\2.0.0.1050\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Media Access Startup\2.0.0.1050\FF (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Media Access Startup\2.0.0.1050\FF\chrome (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Media Access Startup\2.0.0.1050\FF\chrome\content (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Media Access Startup\2.0.0.1050\FF\components (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\System Search Dispatcher (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\System Search Dispatcher\1.4.3.1040 (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\System Search Dispatcher\1.4.3.1040\Data (Adware.DoubleD) -> Quarantined and deleted successfully.

Zainfekowane pliki:
C:\System Volume Information\_restore{66BE1BD0-AC33-4139-B3F3-AB35121098E1}\RP124\A0075762.exe (Adware.Ziniky) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{66BE1BD0-AC33-4139-B3F3-AB35121098E1}\RP161\A0099487.exe (Adware.Ziniky) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{66BE1BD0-AC33-4139-B3F3-AB35121098E1}\RP161\A0099492.exe (Adware.Ziniky) -> Quarantined and deleted successfully.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\NPCommon.dll (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\unins000.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\unins000.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\Data\config.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\chrome.manifest (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\install.rdf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\chrome\NPAddOn.jar (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\chrome\content\NPAddOn.js (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\chrome\content\NPAddOn.xul (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\components\NPFFAddOn.dll (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\components\NPFFAddOn.xpt (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\components\NPFFHelperComponent.js (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Media Access Startup\2.0.0.1050\HPCommon.dll (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Media Access Startup\2.0.0.1050\unins000.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Media Access Startup\2.0.0.1050\unins000.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Media Access Startup\2.0.0.1050\Data\config.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Media Access Startup\2.0.0.1050\FF\chrome.manifest (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Media Access Startup\2.0.0.1050\FF\install.rdf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Media Access Startup\2.0.0.1050\FF\chrome\HPAddOn.jar (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Media Access Startup\2.0.0.1050\FF\chrome\content\HPAddOn.js (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Media Access Startup\2.0.0.1050\FF\chrome\content\HPAddOn.xul (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Media Access Startup\2.0.0.1050\FF\components\HPFFAddOn.dll (Adware.DoubleD) -> Delete on reboot.
C:\Program Files\Media Access Startup\2.0.0.1050\FF\components\HPFFAddOn.xpt (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Media Access Startup\2.0.0.1050\FF\components\HPFFHelperComponent.js (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\System Search Dispatcher\1.4.3.1040\unins000.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\System Search Dispatcher\1.4.3.1040\unins000.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\System Search Dispatcher\1.4.3.1040\Data\eacore.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\System Search Dispatcher\1.4.3.1040\Data\URLDynamic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\System Search Dispatcher\1.4.3.1040\Data\URLStatic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
[/log]

Psycholandia
komentarz
komentarz

Uruchom OTL i klik na CleanUP.
Problem nadal występuje?

bono2209
komentarz
komentarz

Póki co nie wystepuje dziekuje za pomoc,w razie problemów odezwe sie

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.