bono2209 utworzono 22 listopada 2009 utworzono 22 listopada 2009 [log]OTL logfile created on: 2009-11-22 01:27:06 - Run 1 OTL by OldTimer - Version 3.1.6.2 Folder = G:\Moja muzyka Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,27 Gb Available Physical Memory | 63,75% Memory free 3,85 Gb Paging File | 3,09 Gb Available in Paging File | 80,23% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 48,83 Gb Total Space | 32,77 Gb Free Space | 67,12% Space Free | Partition Type: NTFS Drive D: | 123,95 Gb Total Space | 113,01 Gb Free Space | 91,17% Space Free | Partition Type: NTFS Drive E: | 97,66 Gb Total Space | 94,89 Gb Free Space | 97,16% Space Free | Partition Type: NTFS Drive F: | 97,65 Gb Total Space | 96,80 Gb Free Space | 99,12% Space Free | Partition Type: NTFS Drive G: | 97,65 Gb Total Space | 96,91 Gb Free Space | 99,24% Space Free | Partition Type: NTFS H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: BECEB250CFE3412 Current User Name: Paulina Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2009-11-22 00:26:05 | 00,529,408 | ---- | M] (OldTimer Tools) -- G:\Moja muzyka\OTL.exe PRC - [2009-11-08 16:23:33 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-10-30 19:47:42 | 00,211,568 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe PRC - [2009-10-30 19:47:42 | 00,211,568 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe PRC - [2009-07-25 04:23:12 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe PRC - [2009-07-25 04:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2009-05-01 21:51:45 | 00,107,832 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.exe PRC - [2009-05-01 21:51:36 | 00,066,872 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe PRC - [2008-08-04 00:02:20 | 00,036,352 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe PRC - [2008-05-30 15:54:16 | 00,076,744 | R--- | M] (Skype Technologies) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe PRC - [2008-05-30 15:54:14 | 21,718,312 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe PRC - [2008-04-01 17:18:00 | 01,907,712 | ---- | M] () -- C:\Program Files\GIGABYTE\GIGABYTE Gamer HUD\HUD.exe PRC - [2008-03-20 11:04:46 | 02,127,296 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe PRC - [2008-02-26 04:00:02 | 00,520,192 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe PRC - [2008-02-26 04:00:02 | 00,520,192 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe PRC - [2008-02-13 07:31:34 | 16,857,600 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe PRC - [2008-01-22 09:35:52 | 00,103,808 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe PRC - [2007-12-18 13:20:00 | 00,401,408 | ---- | M] (Creative Technology Ltd.) -- C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe PRC - [2007-07-17 11:13:56 | 00,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe PRC - [2007-07-17 11:13:34 | 00,049,152 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe PRC - [2007-05-16 08:27:38 | 01,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe PRC - [2007-05-16 08:27:28 | 00,271,920 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe PRC - [2007-05-16 08:27:16 | 00,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe PRC - [2007-04-02 13:15:40 | 00,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe PRC - [2007-01-08 22:39:44 | 00,171,040 | ---- | M] () -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe PRC - [2007-01-08 22:26:08 | 00,068,640 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe PRC - [2005-08-11 16:30:30 | 00,618,496 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe PRC - [2005-08-11 16:30:30 | 00,249,856 | ---- | M] (Macrovision Corporation) -- c:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe PRC - [2005-08-11 16:30:30 | 00,081,920 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe PRC - [2005-01-28 13:44:28 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe PRC - [2004-08-04 00:55:54 | 01,667,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe PRC - [2004-08-04 00:44:30 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe PRC - [2004-08-04 00:44:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [1999-12-13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2009-11-22 00:26:05 | 00,529,408 | ---- | M] (OldTimer Tools) -- G:\Moja muzyka\OTL.exe MOD - [2006-12-21 13:30:44 | 00,102,400 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\ggwhook.dll MOD - [2004-08-04 00:43:58 | 00,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2004-08-04 00:42:34 | 01,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2009-10-30 19:47:42 | 00,211,568 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe -- (AVP) SRV - [2009-07-25 04:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2009-05-10 16:46:35 | 00,072,704 | ---- | M] (Adobe Systems) -- C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service) SRV - [2009-05-01 21:51:45 | 00,107,832 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.exe -- (PnkBstrB) SRV - [2009-05-01 21:51:36 | 00,066,872 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe -- (PnkBstrA) SRV - [2008-02-26 04:00:02 | 00,520,192 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller) SRV - [2008-02-25 21:05:00 | 00,593,920 | ---- | M] () -- C:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart) SRV - [2008-01-22 09:35:52 | 00,103,808 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC) SRV - [2007-11-06 20:16:54 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08) SRV - [2007-11-06 20:16:54 | 00,139,264 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc) SRV - [2007-05-16 08:27:28 | 00,271,920 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService) SRV - [2007-04-13 20:09:56 | 00,792,112 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService) SRV - [2007-04-02 13:15:40 | 00,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv) SRV - [2007-01-08 22:39:44 | 00,171,040 | ---- | M] () -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe -- (RichVideo) Cyberlink RichVideo Service(CRVS) SRV - [2005-09-23 07:28:56 | 00,066,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2005-09-23 07:28:32 | 00,029,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state) SRV - [2005-01-28 13:44:28 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe -- (UMWdf) SRV - [2004-08-04 00:44:08 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll -- (helpsvc) SRV - [2003-07-28 20:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [1999-12-13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE -- (Creative Service for CDROM Access) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found -- -- (sp_rsdrv2) DRV - File not found -- -- (PCTCore) DRV - [2009-10-30 19:47:42 | 00,187,168 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\klif.sys -- (klif) DRV - [2009-10-30 19:47:42 | 00,112,144 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1) DRV - [2008-11-20 20:19:06 | 00,043,872 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20) DRV - [2008-02-26 06:51:42 | 02,863,616 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2008-02-14 10:04:06 | 04,676,096 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008-01-03 15:10:16 | 00,105,856 | R--- | M] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2007-04-04 14:58:26 | 00,024,344 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5) DRV - [2006-12-28 17:44:44 | 00,084,992 | R--- | M] (ATI Research Inc.) -- C:\WINDOWS\system32\drivers\AtiHdAud.sys -- (HdAudAddService) DRV - [2005-01-07 17:07:18 | 00,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus) DRV - [2004-07-17 11:36:38 | 00,027,440 | ---- | M] () -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv) DRV - [2001-08-17 22:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60346 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60346 IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes] IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.com/pl/ IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\URLSearchHook: {57BCA5FA-5DBB-45A2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) IE - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\S-1-5-21-1960408961-1972579041-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Winamp Search" FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.theprizeday.com/today.php|www.google.pl" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1 FF - prefs.js..extensions.enabledItems: {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}:2.0.0.54356 FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20090920.2 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}:2.0.0.1050 FF - prefs.js..extensions.enabledItems: {2224E955-00E9-4613-A844-CE69FCCAAE91}:3.8.1.4690 FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5 FF - HKLM\software\mozilla\Firefox\extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF [2009-09-10 21:55:09 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}: C:\Program Files\Media Access Startup\2.0.0.1050\FF [2009-09-10 21:55:18 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2008-12-21 21:19:17 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-11-21 13:32:17 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-11-08 16:23:38 | 00,000,000 | ---D | M] [2008-12-21 21:14:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Extensions [2008-12-21 21:14:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2009-11-22 00:29:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Firefox\Profiles\lxr3mbts.default\extensions [2009-07-22 11:16:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Firefox\Profiles\lxr3mbts.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2009-11-22 00:29:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Firefox\Profiles\lxr3mbts.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232} [2009-09-22 10:55:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Firefox\Profiles\lxr3mbts.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2009-10-30 23:02:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Firefox\Profiles\lxr3mbts.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2009-07-22 11:16:37 | 00,001,196 | ---- | M] () -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla\Firefox\Profiles\lxr3mbts.default\searchplugins\winamp-search.xml [2009-11-22 00:29:42 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2009-09-30 05:13:22 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9} [2009-11-08 16:23:33 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2008-12-21 21:19:21 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [2009-09-15 07:43:51 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} [2009-01-15 15:52:33 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} [2009-11-08 16:23:33 | 00,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll [2009-11-08 16:23:33 | 00,137,176 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll [2009-07-25 04:23:01 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll [2009-11-08 16:23:35 | 00,064,984 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll [2003-07-15 06:56:52 | 00,013,888 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL [2008-06-11 22:45:28 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll [2008-09-10 20:56:44 | 00,144,960 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll [2008-09-10 20:37:54 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll [2009-08-24 20:19:13 | 00,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2009-09-21 12:24:16 | 00,001,329 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml [2009-08-24 20:19:13 | 00,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2009-08-24 20:19:13 | 00,002,371 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml [2009-08-24 20:19:13 | 00,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2009-08-24 20:19:13 | 00,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2009-09-30 05:13:22 | 00,002,381 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\sukoku119.xml [2009-08-24 20:19:13 | 00,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2009-08-24 20:19:13 | 00,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Yahoo! Companion BHO) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.) O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O2 - BHO: (UrlHelper Class) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll () O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) O3 - HKLM\..\Toolbar: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare) O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O3 - HKLM\..\Toolbar: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.) O3 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\Toolbar\ShellBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare) O3 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\Toolbar\WebBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare) O3 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O3 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\Toolbar\WebBrowser: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe (Kaspersky Lab) O4 - HKLM..\Run: [ISUSPM Startup] c:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe (Macrovision Corporation) O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (Macrovision Corporation) O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe () O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [RemoteControl] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe (Cyberlink Corp.) O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe () O4 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) O4 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003..\Run: [CTZDetec.exe] C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe (Creative Technology Ltd.) O4 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O4 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003..\Run: [MSMSGS] C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003..\Run: [Uninstall_CToolbar] C:\Documents and Settings\Paulina\Ustawienia lokalne\Temp\CUninst.exe (Crawler.com) O4 - Startup: C:\Documents and Settings\Paulina\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) O4 - Startup: C:\Documents and Settings\Paulina\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.exe.lnk = C:\Documents and Settings\Paulina\Dane aplikacji\Microsoft\Installer\{B2BE514B-F1B3-43AB-84DD-3377ADBA1A7F}\HUD.exe1_CC5DF1A2468043D58FABB63B71468005.exe (Macrovision Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html () O8 - Extra context menu item: Dodaj do blokowanych banerów - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\ie_banner_deny.htm () O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Statystyki ochrony WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\SCIEPlgn.dll (Kaspersky Lab) O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation) O9 - Extra Button: Zaznaczanie HP Smart - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp - No CLSID value found O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp - No CLSID value found O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation) O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1.0FO\adialhk.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\adialhk.dll (Kaspersky Lab) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-12-21 20:23:09 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{3dc144d5-d4fc-11dd-b582-0021855a7ea9}\Shell\AutoRun\command - "" = SYSTEM\S-1-5-21-1482476501-1644491937-682003330-1013\system32.exe O33 - MountPoints2\{3dc144d5-d4fc-11dd-b582-0021855a7ea9}\Shell\open\command - "" = SYSTEM\S-1-5-21-1482476501-1644491937-682003330-1013\system32.exe O33 - MountPoints2\{c688ad66-3a5f-11de-b6c2-0021855a7ea9}\Shell\Open(&0)\command - "" = I:\Recycled\ctfmon.exe -- File not found O34 - HKLM BootExecute: (autocheck) - File not found O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation) O34 - HKLM BootExecute: (*) - File not found O35 - comfile [open] -- "%1" %* File not found O35 - exefile [open] -- "%1" %* File not found [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2009-11-22 01:21:42 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro [2009-11-22 01:14:07 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Paulina\Recent [2009-11-22 00:44:10 | 00,000,000 | ---D | C] -- C:\Program Files\SkanerOnline [2009-11-21 15:41:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Paulina\Ustawienia lokalne\Dane aplikacji\Threat Expert [2009-11-21 14:45:43 | 00,000,000 | ---D | C] -- C:\Program Files\Crawler [2009-11-21 14:21:34 | 00,000,000 | ---D | C] -- C:\Program Files\Spyware Doctor [2009-11-21 14:21:34 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools [2009-11-21 14:21:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2009-11-20 18:38:45 | 00,000,000 | ---D | C] -- C:\Program Files\ESET [2009-11-17 19:43:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\1D30D [2009-11-16 19:47:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\28213 [2009-11-15 10:57:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\D29F [2009-11-14 22:41:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Paulina\Pulpit\wszystkie muzyki [2009-11-14 16:05:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Paulina\Pulpit\piesni patriotyczne [2009-11-14 15:48:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\313A9 [2009-11-14 15:32:23 | 83,874,808 | ---- | C] (AVG Technologies) -- C:\Documents and Settings\Paulina\Pulpit\avg_free_stf_eu_90_707a1765.exe [2009-11-12 17:05:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\103A9 [2009-11-11 18:35:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\5290 [2009-11-10 20:07:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\36128 [2009-11-09 20:07:51 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\33EA [2009-11-01 22:28:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Paulina\Dane aplikacji\Skype [2009-11-01 22:28:20 | 00,000,000 | ---D | C] -- C:\Program Files\Skype [2009-11-01 22:28:20 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2009-10-30 19:20:29 | 00,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab [2009-10-30 19:20:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2009-11-22 01:26:26 | 00,093,728 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.dat [2009-11-22 01:24:00 | 13,124,640 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat [2009-11-22 01:21:43 | 00,001,741 | ---- | M] () -- C:\Documents and Settings\Paulina\Pulpit\HijackThis.lnk [2009-11-22 01:13:08 | 00,001,555 | ---- | M] () -- C:\Documents and Settings\Paulina\Pulpit\CCleaner.lnk [2009-11-22 00:33:43 | 04,718,592 | -H-- | M] () -- C:\Documents and Settings\Paulina\NTUSER.DAT [2009-11-21 15:09:04 | 00,002,517 | ---- | M] () -- C:\Documents and Settings\Paulina\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.exe.lnk [2009-11-21 15:09:01 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2009-11-21 15:08:59 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2009-11-21 08:19:09 | 00,176,552 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx [2009-11-21 08:19:09 | 00,010,112 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.idx [2009-11-21 08:19:04 | 00,000,292 | -HS- | M] () -- C:\Documents and Settings\Paulina\ntuser.ini [2009-11-19 17:07:23 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2009-11-18 19:39:51 | 00,979,456 | ---- | M] () -- C:\Documents and Settings\Paulina\Pulpit\Prezentacja1.ppt [2009-11-17 20:23:25 | 00,076,800 | ---- | M] () -- C:\Documents and Settings\Paulina\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-11-14 15:44:41 | 00,096,256 | ---- | M] () -- C:\Documents and Settings\Paulina\Pulpit\piesni.doc [2009-11-14 15:44:32 | 83,874,808 | ---- | M] (AVG Technologies) -- C:\Documents and Settings\Paulina\Pulpit\avg_free_stf_eu_90_707a1765.exe [2009-11-12 21:39:40 | 02,545,860 | ---- | M] () -- C:\Documents and Settings\Paulina\Pulpit\d2d1b72b78e06f0935026de8177d1e7f.jpg [2009-11-08 21:10:53 | 00,001,471 | ---- | M] () -- C:\Documents and Settings\Paulina\Pulpit\hehe.rtf [2009-11-02 10:09:37 | 00,002,259 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2009-11-01 22:44:03 | 00,000,042 | ---- | M] () -- C:\Documents and Settings\Paulina\default.pls [2009-10-30 19:52:40 | 00,000,652 | ---- | M] () -- C:\WINDOWS\win.ini [2009-10-30 19:52:40 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2009-10-30 19:52:40 | 00,000,211 | RHS- | M] () -- C:\boot.ini [2009-10-30 19:47:42 | 00,187,168 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys [2009-10-30 19:47:42 | 00,112,144 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\kl1.sys [2009-10-30 19:47:42 | 00,108,059 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat [2009-10-30 19:47:42 | 00,095,259 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat [2009-10-30 19:14:11 | 00,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2009-10-25 08:32:34 | 00,993,394 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2009-10-25 08:32:34 | 00,451,220 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2009-10-25 08:32:34 | 00,395,200 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2009-10-25 08:32:34 | 00,075,486 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2009-10-25 08:32:34 | 00,059,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2009-11-22 01:21:43 | 00,001,741 | ---- | C] () -- C:\Documents and Settings\Paulina\Pulpit\HijackThis.lnk [2009-11-17 21:01:56 | 00,979,456 | ---- | C] () -- C:\Documents and Settings\Paulina\Pulpit\Prezentacja1.ppt [2009-11-14 15:44:41 | 00,096,256 | ---- | C] () -- C:\Documents and Settings\Paulina\Pulpit\piesni.doc [2009-11-12 21:39:40 | 02,545,860 | ---- | C] () -- C:\Documents and Settings\Paulina\Pulpit\d2d1b72b78e06f0935026de8177d1e7f.jpg [2009-11-08 21:10:53 | 00,001,471 | ---- | C] () -- C:\Documents and Settings\Paulina\Pulpit\hehe.rtf [2009-11-01 22:44:03 | 00,000,042 | ---- | C] () -- C:\Documents and Settings\Paulina\default.pls [2009-11-01 22:28:21 | 00,002,259 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2009-10-30 19:20:46 | 00,108,059 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat [2009-10-30 19:20:46 | 00,095,259 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat [2009-10-30 19:20:27 | 13,124,640 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.dat [2009-10-30 19:20:27 | 00,176,552 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.idx [2009-10-30 19:20:27 | 00,093,728 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.dat [2009-10-30 19:20:27 | 00,010,112 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.idx [2009-09-13 21:36:42 | 00,815,104 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2009-09-13 21:36:42 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2009-06-06 11:33:52 | 00,000,735 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2009-05-09 16:02:47 | 00,000,049 | ---- | C] () -- C:\WINDOWS\iltwain.ini [2009-05-01 21:51:56 | 00,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2009-05-01 21:51:56 | 00,022,328 | ---- | C] () -- C:\Documents and Settings\Paulina\Dane aplikacji\PnkBstrK.sys [2009-03-08 20:35:51 | 00,007,393 | ---- | C] () -- C:\Program Files\Uninst.isu [2009-03-08 20:35:51 | 00,002,238 | ---- | C] () -- C:\Program Files\wpl.ico [2009-03-08 17:19:03 | 00,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll [2009-01-06 17:32:48 | 00,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008-12-22 10:50:47 | 00,076,800 | ---- | C] () -- C:\Documents and Settings\Paulina\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-12-21 21:16:52 | 00,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2008-12-21 21:16:52 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2008-12-21 21:16:09 | 00,993,394 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2008-12-21 21:16:09 | 00,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2008-12-21 21:15:45 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini [2008-12-21 20:37:20 | 00,043,408 | ---- | C] () -- C:\Documents and Settings\Paulina\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2008-12-21 20:36:24 | 04,815,546 | -H-- | C] () -- C:\Documents and Settings\Paulina\Ustawienia lokalne\Dane aplikacji\IconCache.db [2008-12-21 20:25:54 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Paulina\Dane aplikacji\desktop.ini [2008-12-21 20:23:09 | 00,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2008-12-21 20:21:02 | 00,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2008-12-21 20:21:02 | 00,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2008-12-21 20:20:34 | 00,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2008-12-21 20:20:33 | 00,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2004-08-04 00:44:10 | 00,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2004-08-04 00:44:04 | 00,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2004-08-04 00:44:00 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2004-08-04 00:43:58 | 00,186,368 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2004-08-04 00:43:56 | 00,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll [2004-08-04 00:43:54 | 00,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2004-08-04 00:43:16 | 00,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2004-08-03 22:46:56 | 00,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2004-08-03 22:45:34 | 00,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2004-08-03 22:45:16 | 00,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2004-08-03 22:45:16 | 00,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2004-08-03 22:45:14 | 00,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2004-08-03 22:45:12 | 00,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2004-07-17 11:46:14 | 00,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2004-07-17 11:36:38 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2003-04-08 11:40:22 | 00,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI [2001-10-26 18:29:42 | 00,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll [2001-10-26 18:29:40 | 00,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll [2001-10-26 18:29:32 | 00,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2001-10-26 18:28:34 | 00,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2001-10-26 18:27:02 | 00,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2001-10-26 17:15:04 | 00,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2001-10-26 17:14:52 | 00,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2001-10-26 17:14:32 | 00,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2001-10-26 17:12:52 | 00,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2001-10-26 16:45:26 | 00,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2001-10-26 16:45:26 | 00,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2001-10-26 16:45:24 | 00,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2001-10-26 16:42:08 | 00,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini [2001-10-26 16:42:08 | 00,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2001-10-26 16:42:08 | 00,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2001-10-26 16:42:08 | 00,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2001-08-17 22:31:56 | 00,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2001-08-17 22:31:56 | 00,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2001-08-17 22:31:50 | 00,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2001-08-17 22:31:46 | 00,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2001-08-17 22:31:46 | 00,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2001-08-17 22:31:44 | 00,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2001-08-17 22:13:24 | 00,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv [2001-08-17 20:55:06 | 01,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2001-07-22 03:25:18 | 00,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2001-07-21 23:16:20 | 00,000,652 | ---- | C] () -- C:\WINDOWS\win.ini [2001-07-21 23:15:52 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini [2001-07-21 23:15:50 | 00,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [color=#E56717]========== LOP Check ==========[/color] [2009-06-07 11:17:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\024C [2009-04-09 14:13:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\101B5 [2009-11-12 17:05:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\103A9 [2009-07-05 17:53:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\11138 [2009-03-22 15:12:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\12186 [2009-07-20 10:17:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\13C1 [2009-05-28 19:12:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\14128 [2009-03-02 17:26:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\148C [2009-07-20 15:01:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\17290 [2009-02-23 16:58:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\18EA [2009-01-25 16:17:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\19DA [2009-05-09 11:48:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1A1A5 [2009-02-08 13:01:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1BF [2009-06-25 10:54:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1C1E4 [2009-06-24 15:28:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1D1D4 [2009-11-17 19:43:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1D30D [2009-02-10 19:33:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1E1F4 [2009-05-12 18:09:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1E290 [2009-01-17 10:03:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\201E4 [2009-01-16 18:32:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2119 [2009-01-17 16:15:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2138 [2009-06-16 18:20:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2196 [2009-07-14 20:59:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\22157 [2009-03-05 17:53:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\22AB [2009-04-05 19:01:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\231F4 [2009-03-05 17:20:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\232EE [2009-09-06 18:56:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\24157 [2009-07-04 13:54:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\242AF [2009-09-06 19:02:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\24EA [2009-01-15 15:52:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\261C5 [2009-05-10 14:53:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\26232 [2009-11-16 19:47:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\28213 [2009-06-15 00:11:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\287B [2009-06-07 16:24:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2A109 [2009-01-16 15:03:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2A34B [2009-03-26 16:33:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2C1E4 [2009-01-18 19:50:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2C2FD [2009-07-21 07:52:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\30157 [2009-06-25 16:34:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\30FA [2009-01-22 19:21:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\31280 [2009-07-06 18:52:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\31290 [2009-11-14 15:48:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\313A9 [2009-02-23 16:23:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\3232 [2009-05-01 16:58:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\33261 [2009-05-19 22:52:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\333B9 [2009-11-09 20:07:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\33EA [2009-07-21 10:16:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\35177 [2009-06-24 21:25:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\35EA [2009-11-10 20:07:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\36128 [2009-05-16 16:24:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\3733C [2009-02-20 15:58:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\393D8 [2009-08-29 13:58:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\39EA [2009-08-03 09:00:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\3DA [2009-11-11 18:35:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\5290 [2009-07-06 10:33:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\537A [2009-04-09 22:35:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\8290 [2009-05-06 22:51:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\831C [2009-03-30 17:43:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\932C [2009-05-10 16:46:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2009-09-02 20:22:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ahead [2008-12-21 20:37:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ATI [2009-03-14 08:50:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\C5D [2008-12-23 21:19:13 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ [2009-06-29 20:21:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJ [2008-12-23 21:30:16 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJEPPEX [2008-12-23 21:22:36 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJMyPrinter [2009-08-22 18:58:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJPLM [2008-12-23 21:23:57 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJScan [2008-12-23 21:35:14 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJSolutionMenu [2009-10-07 15:42:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Creative [2009-01-24 18:53:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CyberLink [2009-11-15 10:57:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\D29F [2009-06-08 21:33:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\D2EE [2009-04-05 07:47:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\E251 [2009-02-07 18:12:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\E5D [2009-06-17 21:46:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\E6D [2009-02-28 20:49:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\E7D [2009-06-06 11:39:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Hewlett-Packard [2009-06-06 11:38:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\HP [2009-06-06 11:37:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\HP Product Assistant [2009-05-01 21:51:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\id Software [2008-12-21 20:38:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallShield [2009-11-21 15:10:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab [2009-01-06 17:31:37 | 00,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2009-09-02 20:21:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nero [2009-09-13 21:38:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton [2009-08-30 17:04:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NortonInstaller [2009-05-01 21:36:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Real [2009-11-01 22:28:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2009-11-20 18:47:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sukoku [2009-08-30 17:04:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Symantec [2009-11-22 00:36:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2009-06-06 11:40:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\WEBREG [2008-12-21 21:20:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Winamp Toolbar [2008-12-21 20:23:08 | 00,000,000 | --SD | M] -- C:\Documents and Settings\Default User\Dane aplikacji\Microsoft [2008-12-21 20:23:08 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2008-12-21 20:23:08 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2009-01-04 13:58:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Adobe [2009-09-02 20:25:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Ahead [2008-12-21 20:37:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\ATI [2008-12-23 21:23:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Canon [2009-01-24 18:53:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\CyberLink [2008-12-21 21:20:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Gadu-Gadu [2009-04-26 19:32:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Help [2009-06-06 11:40:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\HP [2009-11-22 00:48:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\HPAppData [2009-05-01 21:52:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\id Software [2008-12-21 20:26:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Identities [2008-12-21 21:39:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Macromedia [2009-05-01 21:37:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Media Player Classic [2009-06-04 23:40:26 | 00,000,000 | --SD | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Microsoft [2008-12-21 21:14:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Mozilla [2009-05-01 21:36:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Real [2009-11-22 01:09:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Skype [2009-11-22 00:02:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\skypePM [2008-12-21 21:16:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Sun [2008-12-21 21:20:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Winamp [2001-07-21 23:17:50 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini [2009-11-21 15:09:01 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 191 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:DFC5A2B2 @Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:A8ADE5D8 < End of report > [/log]
Psycholandia komentarz 22 listopada 2009 komentarz 22 listopada 2009 W okienko OTL wklej poniższy skrypt i klik na Run Fix: [code]:Processes explorer.exe :OTL O3 - HKLM\..\Toolbar: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare) O3 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\Toolbar\ShellBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare) O3 - HKU\S-1-5-21-1960408961-1972579041-839522115-1003\..\Toolbar\WebBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare) O4 - Startup: C:\Documents and Settings\Paulina\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.exe.lnk = C:\Documents and Settings\Paulina\Dane aplikacji\Microsoft\Installer\{B2BE514B-F1B3-43AB-84DD-3377ADBA1A7F}\HUD.exe1_CC5DF1A2468043D58FABB63B71468005. exe (Macrovision Corporation) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...r/ultrashim.cab (Reg Error: Key error.) O33 - MountPoints2\{3dc144d5-d4fc-11dd-b582-0021855a7ea9}\Shell\AutoRun\command - "" = SYSTEM\S-1-5-21-1482476501-1644491937-682003330-1013\system32.exe O33 - MountPoints2\{3dc144d5-d4fc-11dd-b582-0021855a7ea9}\Shell\open\command - "" = SYSTEM\S-1-5-21-1482476501-1644491937-682003330-1013\system32.exe O33 - MountPoints2\{c688ad66-3a5f-11de-b6c2-0021855a7ea9}\Shell\Open(&0)\command - "" = I:\Recycled\ctfmon.exe -- File not found :Files C:\Program Files\BearShare Applications\BearShare MediaBar C:\Program Files\Mozilla Firefox\searchplugins\sukoku119.xml C:\Documents and Settings\All Users\Dane aplikacji\Sukoku :Commands [emptytemp] [start explorer] [Reboot][/code] Otwórz notatnik tekstowy i wklej do niego poniższy tekst: [code]Windows Registry Editor Version 5.00 [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2] [/code] Zapisz jako->Wybierz [b]Wszystkie pliki[/b]->wpisz [b]Fix.reg[/b]->Następnie kliknij na zapisany plik i uruchom komputer ponownie. Przeskanuj komputer tym: [url="http://www.programosy.pl/program,malwarebytes-anti-malware.html"]Malware[/url] usuń wszystko co znajdzie i daj loga po kasowaniu (loga z Malware) + wykonaj to: http://www.forumpc.pl/index.php?showtopic=99152
bono2209 komentarz 22 listopada 2009 Autor komentarz 22 listopada 2009 [log]Malwarebytes' Anti-Malware 1.41 Wersja bazy definicji: 3213 Windows 5.1.2600 Dodatek Service Pack 2 2009-11-22 12:24:02 mbam-log-2009-11-22 (12-24-02).txt Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|F:\|G:\|) Przeskanowane obiekty: 172291 Upłynęło: 15 minute(s), 30 second(s) Zainfekowane procesy w pamięci: 0 Zainfekowane moduły pamięci: 4 Zainfekowane klucze rejestru: 26 Zainfekowane wartości rejestru: 3 Zainfekowane pliki rejestru: 0 Zainfekowane foldery: 19 Zainfekowane pliki: 32 Zainfekowane procesy w pamięci: (Nie wykryto groźnych plików) Zainfekowane moduły pamięci: C:\Program Files\Internet Saving Optimizer\3.8.1.4690\NPCommon.dll (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\components\NPFFAddOn.dll (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Media Access Startup\2.0.0.1050\HPCommon.dll (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Media Access Startup\2.0.0.1050\FF\components\HPFFAddOn.dll (Adware.DoubleD) -> Delete on reboot. Zainfekowane klucze rejestru: HKEY_CLASSES_ROOT\explorerbar.funexplorer (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\explorerbar.funexplorer.1 (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\explorerbar.funredirector (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\explorerbar.funredirector.1 (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{480098c6-f6ad-4c61-9b5c-2bae228a34d1} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{6160f76a-1992-4b17-a32d-0c706d159105} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{877f3eab-4462-44df-8475-6064eafd7fbf} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{25b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{35b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{cdbfb47b-58a8-4111-bf95-06178dce326d} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{883dfc00-8a21-411d-956c-73a4e4b7d16f} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{ac5ab953-ed25-4f9c-87f0-b086b0178ffa} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{c28a0312-c403-417b-a425-a915bc0519cd} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{cdbfb47b-58a8-4111-bf95-06178dce326d} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{35b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cdbfb47b-58a8-4111-bf95-06178dce326d} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\{5617ECA9-488D-4BA2-8562-9710B9AB78D2} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Internet Saving Optimizer (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Media Access Startup (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\DoubleD (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Internet Saving Optimizer (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Media Access Startup (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{16b6279b-9ff5-41fb-8bf9-404324f5dd1f}}_is1 (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{c5096216-7703-409e-b85a-8a6ee7395128}}_is1 (Adware.DoubleD) -> Quarantined and deleted successfully. Zainfekowane wartości rejestru: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{0ba0192d-94a5-45e3-b2b8-3ec5a1a0b5ec} (Adware.DoubleD) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{2224e955-00e9-4613-a844-ce69fccaae91} (Adware.DoubleD) -> Quarantined and deleted successfully. Zainfekowane pliki rejestru: (Nie wykryto groźnych plików) Zainfekowane foldery: C:\Program Files\DoubleD (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\DoubleD\GamingHarbor Toolbar (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Internet Saving Optimizer (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Internet Saving Optimizer\3.8.1.4690 (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\Data (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\chrome (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\chrome\content (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\components (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Media Access Startup (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Media Access Startup\2.0.0.1050 (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Media Access Startup\2.0.0.1050\Data (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Media Access Startup\2.0.0.1050\FF (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Media Access Startup\2.0.0.1050\FF\chrome (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Media Access Startup\2.0.0.1050\FF\chrome\content (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Media Access Startup\2.0.0.1050\FF\components (Adware.DoubleD) -> Delete on reboot. C:\Program Files\System Search Dispatcher (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\System Search Dispatcher\1.4.3.1040 (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\System Search Dispatcher\1.4.3.1040\Data (Adware.DoubleD) -> Quarantined and deleted successfully. Zainfekowane pliki: C:\System Volume Information\_restore{66BE1BD0-AC33-4139-B3F3-AB35121098E1}\RP124\A0075762.exe (Adware.Ziniky) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{66BE1BD0-AC33-4139-B3F3-AB35121098E1}\RP161\A0099487.exe (Adware.Ziniky) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{66BE1BD0-AC33-4139-B3F3-AB35121098E1}\RP161\A0099492.exe (Adware.Ziniky) -> Quarantined and deleted successfully. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\NPCommon.dll (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\unins000.dat (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\unins000.exe (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\Data\config.md (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\chrome.manifest (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\install.rdf (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\chrome\NPAddOn.jar (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\chrome\content\NPAddOn.js (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\chrome\content\NPAddOn.xul (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\components\NPFFAddOn.dll (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\components\NPFFAddOn.xpt (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Internet Saving Optimizer\3.8.1.4690\FF\components\NPFFHelperComponent.js (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Media Access Startup\2.0.0.1050\HPCommon.dll (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Media Access Startup\2.0.0.1050\unins000.dat (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Media Access Startup\2.0.0.1050\unins000.exe (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Media Access Startup\2.0.0.1050\Data\config.md (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Media Access Startup\2.0.0.1050\FF\chrome.manifest (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Media Access Startup\2.0.0.1050\FF\install.rdf (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Media Access Startup\2.0.0.1050\FF\chrome\HPAddOn.jar (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Media Access Startup\2.0.0.1050\FF\chrome\content\HPAddOn.js (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Media Access Startup\2.0.0.1050\FF\chrome\content\HPAddOn.xul (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Media Access Startup\2.0.0.1050\FF\components\HPFFAddOn.dll (Adware.DoubleD) -> Delete on reboot. C:\Program Files\Media Access Startup\2.0.0.1050\FF\components\HPFFAddOn.xpt (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\Media Access Startup\2.0.0.1050\FF\components\HPFFHelperComponent.js (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\System Search Dispatcher\1.4.3.1040\unins000.dat (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\System Search Dispatcher\1.4.3.1040\unins000.exe (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\System Search Dispatcher\1.4.3.1040\Data\eacore.mx (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\System Search Dispatcher\1.4.3.1040\Data\URLDynamic.mx (Adware.DoubleD) -> Quarantined and deleted successfully. C:\Program Files\System Search Dispatcher\1.4.3.1040\Data\URLStatic.mx (Adware.DoubleD) -> Quarantined and deleted successfully. [/log]
Psycholandia komentarz 22 listopada 2009 komentarz 22 listopada 2009 Uruchom OTL i klik na CleanUP. Problem nadal występuje?
bono2209 komentarz 22 listopada 2009 Autor komentarz 22 listopada 2009 Póki co nie wystepuje dziekuje za pomoc,w razie problemów odezwe sie
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.