billie utworzono 17 lutego 2010 utworzono 17 lutego 2010 Gdy wchodzę na google włącza mi się coś takiego: http://i48.tinypic.com/afeav8.jpg Mam tak od dzisiaj, odkąd złapałam jakiegoś wirusa, ale już chyba sytuacja opanowana. Wszystko inne działa jak trzeba. Co mam robić?
marcinns komentarz 17 lutego 2010 komentarz 17 lutego 2010 Czy instalowałaś w ostatnim czasie jakieś programy na swoim komputerze? Sprawdź, jaką stronę masz ustawioną jako startową narzędzia >> opcje>> ogólne (zakładka) I przeskanuj tym programem jest darmowy [url="http://www.dobreprogramy.pl/SUPERAntiSpyware-Free-Edition,Program,Windows,13150.html"]link[/url] Coś widocznie podmieniło ci stronę startową i nadal ją blokuje - więc zmień ją ręcznie lub gdy to się nie uda przeskanuj tym programem do którego dałem ci link powinno pomóc
billie komentarz 17 lutego 2010 Autor komentarz 17 lutego 2010 Google nie jest moją stroną startową. Jako stronę startową mam pajacyka i wszystko gra. Zrobiłam skan tym programem, ale to nic nie dało.
marcinns komentarz 17 lutego 2010 komentarz 17 lutego 2010 a instalowałaś w ostatnim czasie jakieś programy ?Trzeba tego kompa gruntownie przeskanować antywirusem oraz programem anty spyware ponieważ pewnie masz jakieś śmieci, które uniemożliwiają przejść na ten adres.
szaki komentarz 17 lutego 2010 komentarz 17 lutego 2010 (edytowane) A moze wpisanie pełnego adresu pomoże zamiast http://google.pl/ wpisać [b]http://www.google.pl/[/b] wcześniej można usunąć cookies i historię przeglądanych stron.
billie komentarz 17 lutego 2010 Autor komentarz 17 lutego 2010 Nic nie instalowałam. Problem jest odkąd złapałam jakiegoś wirusa. Przeskanowałam komputer najpierw avastem, potem tym antispyware i oba usunęły ileś tam wirusów, ale problem wciąż jest. Potem jeszcze ktoś mi polecił CCleaner i również nic. Dodanie http://www. nic nie daje, próbowałam dużo razy.
naekana komentarz 17 lutego 2010 komentarz 17 lutego 2010 Zapoznaj się proszę z tymi tematami: http://www.forumpc.pl/index.php?showtopic=72102 http://www.forumpc.pl/index.php?showtopic=104338 http://www.forumpc.pl/index.php?showtopic=121124 i wklej logi na forum.
billie komentarz 19 lutego 2010 Autor komentarz 19 lutego 2010 RSIT: [log]Logfile of random's system information tool 1.06 (written by random/random) Run by User at 2010-02-19 19:24:09 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 1 GB (12%) free of 10 GB Total RAM: 639 MB (36% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:25:56, on 2010-02-19 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE E:\Program Files\Alwil Software\Avast5\AvastSvc.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\vVX3000.exe C:\Program Files\Java\jre6\bin\jusched.exe D:\Program Files\iTunes\iTunesHelper.exe E:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe D:\Gadu-Gadu\gg.exe C:\Program Files\DNA\btdna.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\User\Pulpit\RSIT.exe C:\Program Files\trend micro\User.exe C:\WINDOWS\system32\rundll32.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O1 - Hosts: 74.125.45.100 4-open-davinci.com O1 - Hosts: 74.125.45.100 securitysoftwarepayments.com O1 - Hosts: 74.125.45.100 privatesecuredpayments.com O1 - Hosts: 74.125.45.100 secure.privatesecuredpayments.com O1 - Hosts: 74.125.45.100 getantivirusplusnow.com O1 - Hosts: 74.125.45.100 secure-plus-payments.com O1 - Hosts: 74.125.45.100 www.getantivirusplusnow.com O1 - Hosts: 74.125.45.100 www.secure-plus-payments.com O1 - Hosts: 74.125.45.100 www.getavplusnow.com O1 - Hosts: 74.125.45.100 safebrowsing-cache.google.com O1 - Hosts: 74.125.45.100 urs.microsoft.com O1 - Hosts: 74.125.45.100 www.securesoftwarebill.com O1 - Hosts: 74.125.45.100 secure.paysecuresystem.com O1 - Hosts: 74.125.45.100 paysoftbillsolution.com O1 - Hosts: 74.125.45.100 protected.maxisoftwaremart.com O1 - Hosts: 94.228.209.244 www.google.com O1 - Hosts: 94.228.209.244 google.com O1 - Hosts: 94.228.209.244 google.com.au O1 - Hosts: 94.228.209.244 www.google.com.au O1 - Hosts: 94.228.209.244 google.be O1 - Hosts: 94.228.209.244 www.google.be O1 - Hosts: 94.228.209.244 google.com.br O1 - Hosts: 94.228.209.244 www.google.com.br O1 - Hosts: 94.228.209.244 google.ca O1 - Hosts: 94.228.209.244 www.google.ca O1 - Hosts: 94.228.209.244 google.ch O1 - Hosts: 94.228.209.244 www.google.ch O1 - Hosts: 94.228.209.244 google.de O1 - Hosts: 94.228.209.244 www.google.de O1 - Hosts: 94.228.209.244 google.dk O1 - Hosts: 94.228.209.244 www.google.dk O1 - Hosts: 94.228.209.244 google.fr O1 - Hosts: 94.228.209.244 www.google.fr O1 - Hosts: 94.228.209.244 google.ie O1 - Hosts: 94.228.209.244 www.google.ie O1 - Hosts: 94.228.209.244 google.it O1 - Hosts: 94.228.209.244 www.google.it O1 - Hosts: 94.228.209.244 google.co.jp O1 - Hosts: 94.228.209.244 www.google.co.jp O1 - Hosts: 94.228.209.244 google.nl O1 - Hosts: 94.228.209.244 www.google.nl O1 - Hosts: 94.228.209.244 google.no O1 - Hosts: 94.228.209.244 www.google.no O1 - Hosts: 94.228.209.244 google.co.nz O1 - Hosts: 94.228.209.244 www.google.co.nz O1 - Hosts: 94.228.209.244 google.pl O1 - Hosts: 94.228.209.244 www.google.pl O1 - Hosts: 94.228.209.244 google.se O1 - Hosts: 94.228.209.244 www.google.se O1 - Hosts: 94.228.209.244 google.co.uk O1 - Hosts: 94.228.209.244 www.google.co.uk O1 - Hosts: 94.228.209.244 google.co.za O1 - Hosts: 94.228.209.244 www.google.co.za O1 - Hosts: 94.228.209.244 www.google-analytics.com O1 - Hosts: 94.228.209.244 www.bing.com O1 - Hosts: 94.228.209.244 search.yahoo.com O1 - Hosts: 94.228.209.244 www.search.yahoo.com O1 - Hosts: 94.228.209.244 uk.search.yahoo.com O1 - Hosts: 94.228.209.244 ca.search.yahoo.com O1 - Hosts: 94.228.209.244 de.search.yahoo.com O1 - Hosts: 94.228.209.244 fr.search.yahoo.com O1 - Hosts: 94.228.209.244 au.search.yahoo.com O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [avast5] E:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui O4 - HKCU\..\Run: [Gadu-Gadu] "D:\Gadu-Gadu\gg.exe" /tray O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user') O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Office12\REFIEBAR.DLL O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{A4D0F13C-26D7-4AE1-A276-1FFBCE5D474D}: NameServer = 192.168.1.1 O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! Antivirus - ALWIL Software - E:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: avast! Mail Scanner - ALWIL Software - E:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: avast! Web Scanner - ALWIL Software - E:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Usługa iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- End of file - 8839 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\AppleSoftwareUpdate.job C:\WINDOWS\tasks\Microsoft_Hardware_Launch_vVX3000_exe.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-12-04 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-12-04 73728] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-11-17 577536] "VX3000"=C:\WINDOWS\vVX3000.exe [2007-04-10 709992] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-12-04 149280] "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-11-10 417792] "iTunesHelper"=D:\Program Files\iTunes\iTunesHelper.exe [2009-11-12 141600] "Adobe Reader Speed Launcher"=D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288] "avast5"=E:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-02-11 2756488] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Gadu-Gadu"=D:\Gadu-Gadu\gg.exe [2008-03-20 2127296] "BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-11-13 323392] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] C:\Documents and Settings\All Users\Menu Start\Programy\Autostart Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 267816] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2007-10-16 133632] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=323 "NoDriveAutoRun"=67108863 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= "NoResolveSearch"= "NoDriveAutoRun"= "NoDriveTypeAutoRun"= "NoDrives"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "D:\Gadu-Gadu\gg.exe"="D:\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny" "C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA" "D:\Office12\ONENOTE.EXE"="D:\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote" "C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test" "D:\Program Files\BitTorrent\bittorrent.exe"="D:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent" "E:\Program Files\Nowe Gadu-Gadu\gg.exe"="E:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Enabled:Nowe Gadu-Gadu" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "D:\Program Files\iTunes\iTunes.exe"="D:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" ======List of files/folders created in the last 1 months====== 2010-02-19 19:24:09 ----D---- C:\rsit 2010-02-19 14:13:09 ----A---- C:\ComboFix.txt 2010-02-19 14:05:55 ----A---- C:\Boot.bak 2010-02-19 14:05:48 ----RASHD---- C:\cmdcons 2010-02-18 17:46:16 ----D---- C:\Program Files\Trend Micro 2010-02-18 15:07:17 ----A---- C:\WINDOWS\PEV.exe 2010-02-18 15:07:17 ----A---- C:\WINDOWS\NIRCMD.exe 2010-02-18 15:07:17 ----A---- C:\WINDOWS\MBR.exe 2010-02-18 15:07:16 ----A---- C:\WINDOWS\zip.exe 2010-02-18 15:07:16 ----A---- C:\WINDOWS\SWXCACLS.exe 2010-02-18 15:07:16 ----A---- C:\WINDOWS\SWSC.exe 2010-02-18 15:07:16 ----A---- C:\WINDOWS\SWREG.exe 2010-02-18 15:07:16 ----A---- C:\WINDOWS\sed.exe 2010-02-18 15:07:16 ----A---- C:\WINDOWS\grep.exe 2010-02-18 15:06:48 ----D---- C:\WINDOWS\ERDNT 2010-02-18 15:04:46 ----D---- C:\Qoobox 2010-02-17 19:55:02 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy 2010-02-17 15:43:06 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\SUPERAntiSpyware.com 2010-02-17 15:42:55 ----D---- C:\Documents and Settings\User\Dane aplikacji\SUPERAntiSpyware.com 2010-02-16 16:33:29 ----A---- C:\WINDOWS\system32\aswBoot.exe 2010-02-16 16:33:06 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software 2010-02-16 15:52:58 ----SHD---- C:\Documents and Settings\All Users\Dane aplikacji\SABZTHBV 2010-02-16 15:51:58 ----SHD---- C:\Documents and Settings\All Users\Dane aplikacji\003f1c0 2010-02-13 19:30:27 ----HD---- C:\WINDOWS\system32\GroupPolicy 2010-01-27 19:49:56 ----D---- C:\WINDOWS\system32\codec 2010-01-22 20:13:55 ----D---- C:\WINDOWS\ie8updates ======List of files/folders modified in the last 1 months====== 2010-02-19 19:21:55 ----D---- C:\Program Files\Mozilla Firefox 2010-02-19 19:21:49 ----D---- C:\WINDOWS\Temp 2010-02-19 19:20:28 ----D---- C:\Program Files\DNA 2010-02-19 19:20:28 ----D---- C:\Documents and Settings\User\Dane aplikacji\DNA 2010-02-19 15:26:22 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-02-19 14:10:42 ----D---- C:\WINDOWS 2010-02-19 14:10:42 ----A---- C:\WINDOWS\system.ini 2010-02-19 14:09:10 ----D---- C:\WINDOWS\system32\drivers 2010-02-19 14:09:10 ----D---- C:\WINDOWS\system32 2010-02-19 14:09:10 ----D---- C:\WINDOWS\AppPatch 2010-02-19 14:09:06 ----D---- C:\Program Files\Common Files 2010-02-19 14:05:55 ----RASH---- C:\boot.ini 2010-02-19 14:03:02 ----D---- C:\WINDOWS\system32\CatRoot2 2010-02-19 14:02:58 ----SHD---- C:\System Volume Information 2010-02-19 14:02:58 ----D---- C:\WINDOWS\system32\Restore 2010-02-18 20:28:00 ----RD---- C:\Program Files 2010-02-18 17:50:54 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-02-18 15:13:51 ----SD---- C:\WINDOWS\Tasks 2010-02-17 20:01:30 ----D---- C:\WINDOWS\Prefetch 2010-02-17 18:52:36 ----SHD---- C:\WINDOWS\Installer 2010-02-17 17:16:27 ----D---- C:\WINDOWS\Minidump 2010-02-17 17:16:27 ----D---- C:\WINDOWS\Debug 2010-02-14 11:48:53 ----D---- C:\Documents and Settings\User\Dane aplikacji\Adobe 2010-02-14 11:48:53 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Adobe 2010-02-13 23:07:47 ----D---- C:\Documents and Settings\User\Dane aplikacji\BitTorrent 2010-02-10 15:26:01 ----HD---- C:\WINDOWS\inf 2010-02-10 15:25:58 ----HD---- C:\WINDOWS\$hf_mig$ 2010-02-10 15:25:54 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-02-09 18:52:03 ----RSD---- C:\WINDOWS\Fonts 2010-02-02 16:04:26 ----A---- C:\WINDOWS\win.ini 2010-02-01 20:26:20 ----A---- C:\WINDOWS\system32\MRT.exe 2010-01-22 20:14:02 ----D---- C:\Program Files\Internet Explorer 2010-01-20 17:16:55 ----D---- C:\Program Files\Microsoft Silverlight ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-02-11 28880] R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-02-11 162512] R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-02-11 46672] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-06-14 28520] R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-02-11 19024] R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-02-11 100432] R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-08-03 11868] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2007-03-08 4027840] R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-02-11 23376] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600] R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSFDPSP2.sys [2004-08-03 1041536] R3 HSFHWBS2;HSFHWBS2; C:\WINDOWS\system32\DRIVERS\HSFBS2S2.sys [2004-08-03 220032] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-08-03 1897408] R3 USB_RNDIS;ADI Remote NDIS Network Device Driver; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2008-04-13 12800] R3 usbehci;Sterownik Miniport rozszerzonego kontrolera hosta USB 2.0 Microsoft; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Koncentrator z obsługą USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSFCXTS2.sys [2004-08-03 685056] S3 catchme;catchme; \??\C:\DOCUME~1\User\USTAWI~1\Temp\catchme.sys [] S3 CCDECODE;Dekoder napisów; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2008-05-07 17536] S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2008-05-07 20864] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2008-06-06 8064] S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448] S3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112] S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2008-05-07 8064] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 VX3000;VX-3000; C:\WINDOWS\system32\DRIVERS\VX3000.sys [2007-04-10 1966696] S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000] S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688] S4 atapi;atapi; C:\WINDOWS\system32\drivers\atapi.sys [2008-04-13 96512] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672] R2 avast! Antivirus;avast! Antivirus; E:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-02-11 40384] R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-12-04 153376] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R3 avast! Mail Scanner;avast! Mail Scanner; E:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-02-11 40384] R3 avast! Web Scanner;avast! Web Scanner; E:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-02-11 40384] R3 iPod Service;Usługa iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-11-12 545568] S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-05-03 72704] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-08-07 575488] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- [/log] [log]info.txt logfile of random's system information tool 1.06 2010-02-19 19:25:58 ======Uninstall list====== -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Acrobat.com-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07} Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F} Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe Adobe Photoshop CS-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}\setup.exe" -l0x15 Adobe Reader 9.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A92000000001} Adobe Shockwave Player 11.5-->"C:\WINDOWS\system32\Adobe\Shockwave 11\uninstaller.exe" Advanced SystemCare 3-->"E:\Program Files\IObit\Advanced SystemCare 3\unins000.exe" Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB978207)-->"C:\WINDOWS\ie8updates\KB978207-IE8\spuninst\spuninst.exe" ALLPlayer V3.X-->"E:\ALLPlayer\unins000.exe" Apple Application Support-->MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143} Apple Mobile Device Support-->MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE} Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033} Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe avast! Free Antivirus-->E:\Program Files\Alwil Software\Avast5\aswRunDll.exe "E:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B} CCleaner-->"E:\Program Files\CCleaner\uninst.exe" Dokumentacja Pocket RAR-a-->C:\Program Files\PocketRAR\uninstall.exe ffdshow (remove only)-->"C:\Program Files\ffdshow\uninstall.exe" FLV Player 2.0 (build 25)-->e:\Program Files\FLV Player\uninst.exe Freez FLV to AVI/MPEG/WMV Converter-->"D:\Program Files\Smallvideosoft\Freez FLV to AVI MPEG WMV Converter\unins000.exe" Gadu-Gadu 7.7-->D:\Gadu-Gadu\Setup.exe HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" Icy Tower v1.3.1-->"E:\icytower1.3\unins000.exe" IrfanView (remove only)-->C:\Program Files\IrfanView\iv_uninstall.exe iTunes-->MsiExec.exe /I{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5} Java(TM) 6 Update 17-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216017FF} Last.fm 1.5.4.24567-->"E:\Last.fm\unins000.exe" livebox tp-->C:\Program Files\InstallShield Installation Information\{AB3F9176-E74A-4F28-9A09-4F22349B145E}\setup.exe -runfromtemp -l0x0015 -removeonly Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe" Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0415-0000-0000000FF1CE} /uninstall {79EB535E-76E4-4356-8146-A24EE55AB69D} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0415-0000-0000000FF1CE} /uninstall {79EB535E-76E4-4356-8146-A24EE55AB69D} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0415-0000-0000000FF1CE} /uninstall {79EB535E-76E4-4356-8146-A24EE55AB69D} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0415-0000-0000000FF1CE} /uninstall {D45F91DE-F0FC-4D5F-9A0C-FDE5B251AAC6} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-0415-0000-0000000FF1CE} /uninstall {79EB535E-76E4-4356-8146-A24EE55AB69D} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} Microsoft Office Excel MUI (Polish) 2007-->MsiExec.exe /X{90120000-0016-0415-0000-0000000FF1CE} Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE} Microsoft Office OneNote MUI (Polish) 2007-->MsiExec.exe /X{90120000-00A1-0415-0000-0000000FF1CE} Microsoft Office PowerPoint MUI (Polish) 2007-->MsiExec.exe /X{90120000-0018-0415-0000-0000000FF1CE} Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE} Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE} Microsoft Office Proof (Polish) 2007-->MsiExec.exe /X{90120000-001F-0415-0000-0000000FF1CE} Microsoft Office Proofing (Polish) 2007-->MsiExec.exe /X{90120000-002C-0415-0000-0000000FF1CE} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0415-0000-0000000FF1CE} /uninstall {E9EA2604-8AC9-47D2-8F4B-6BF60787A357} Microsoft Office Shared MUI (Polish) 2007-->MsiExec.exe /X{90120000-006E-0415-0000-0000000FF1CE} Microsoft Office Word MUI (Polish) 2007-->MsiExec.exe /X{90120000-001B-0415-0000-0000000FF1CE} Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft User-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWudf01005$\spuninst\spuninst.exe" Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729-->MsiExec.exe /X{3C3D696B-0DB7-3C6D-A356-3DB8CE541918} Mozilla Firefox (3.0.18)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe MSVC80_x86-->MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27} MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} Nokia Connectivity Cable Driver-->MsiExec.exe /X{B3164E9E-BE08-4F3B-94BC-C6D09C0205E1} Nokia PC Suite-->C:\Documents and Settings\All Users\Dane aplikacji\Installations\{D5577624-0626-4C4B-87AA-D966DA1739D6}\Nokia_PC_Suite_rel_7_0_9_2_EA.exe Nokia PC Suite-->MsiExec.exe /I{D5577624-0626-4C4B-87AA-D966DA1739D6} Nowe Gadu-Gadu-->E:\Program Files\Nowe Gadu-Gadu\Uninstall.exe OpenOffice.org Installer 1.0-->MsiExec.exe /X{0D499481-22C6-4B25-8AC2-6D3F6C885FB9} Pakiet sterowników systemu Windows - Nokia Modem (05/22/2008 3.8)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokia_blue_6F90B0F4A73A2F780A1010B5D6CB5DDFB098181E\nokia_bluetooth.inf Pakiet sterowników systemu Windows - Nokia Modem (05/22/2008 7.00.0.1)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokbtmdm_E68D50F7E25BFE399D47C864C3B52557346242A9\nokbtmdm.inf Pakiet sterowników systemu Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccsmcfd_4A1E30386F4D0DEC8F5DF262CFBD8845EEBAB175\pccsmcfd.inf PC Connectivity Solution-->MsiExec.exe /I{1A524CFE-DF85-4555-8BC2-0C89DBD8BC2C} Power Tab Editor 1.7-->MsiExec.exe /I{6B3CA80E-6AC0-4725-BABF-9B0FEF880CB3} QuickTime-->MsiExec.exe /I{1451DE6B-ABE1-4F62-BE9A-B363A17588A2} Real Alternative 1.51-->"C:\Program Files\Real Alternative\unins000.exe" Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" -l0x15 -removeonly Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08} Security Update for 2007 Microsoft Office System (KB973704)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {E626DC89-A787-4553-9BB3-DC2EC7E1593F} Security Update for Microsoft Office Excel 2007 (KB973593)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7D6255E3-3423-4D8B-A328-F6F8D28DD5FE} Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D} Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF} Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C} Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC} Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D} Security Update for Microsoft Office Word 2007 (KB969604)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {CF3D6499-709C-43D0-8908-BC5652656050} SFR-->MsiExec.exe /I{DB02F716-6275-42E9-B8D2-83BA2BF5100B} Sims2Pack Clean Installer -->E:\Program Files\Sims2Pack Clean Installer\uninstall.exe The Sims 2 Na studiach-->E:\Program Files\EA GAMES\The Sims 2 Na studiach\EAUninstall.exe The Sims 2 Własny biznes-->E:\Program Files\EA GAMES\The Sims 2 Własny biznes\EAUninstall.exe The Sims 2-->D:\Program Files\EA GAMES\The Sims 2\EAUninstall.exe upapp-->MsiExec.exe /I{4EF69D40-4DC9-485E-95D3-B1C22F218FC8} Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D} Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT="" Update for Microsoft Office InfoPath 2007 (KB976416)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {432C5EE4-8096-4FF1-95E1-65219365DFF7} Winamp Toolbar for Firefox-->"\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\uninstall.exe" Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe" Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" XviD MPEG-4 Video Codec-->"E:\Program Files\XviD\unins000.exe" ======Hosts File====== 74.125.45.100 4-open-davinci.com 74.125.45.100 securitysoftwarepayments.com 74.125.45.100 privatesecuredpayments.com 74.125.45.100 secure.privatesecuredpayments.com 74.125.45.100 getantivirusplusnow.com 74.125.45.100 secure-plus-payments.com 74.125.45.100 www.getantivirusplusnow.com 74.125.45.100 www.secure-plus-payments.com 74.125.45.100 www.getavplusnow.com 74.125.45.100 safebrowsing-cache.google.com ======System event log====== Computer Name: KOMPUTER_XP Event Code: 7035 Message: Do usługi Karta wydajności WMI został pomyślnie wysłany kod sterowania uruchom. Record Number: 41261 Source Name: Service Control Manager Time Written: 20100124171058.000000+060 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM Computer Name: KOMPUTER_XP Event Code: 7036 Message: Usługa Usługa odnajdywania SSDP weszła w stan uruchomienia. Record Number: 41260 Source Name: Service Control Manager Time Written: 20100124171058.000000+060 Event Type: informacje User: Computer Name: KOMPUTER_XP Event Code: 7036 Message: Usługa Usługa iPod weszła w stan uruchomienia. Record Number: 41259 Source Name: Service Control Manager Time Written: 20100124171058.000000+060 Event Type: informacje User: Computer Name: KOMPUTER_XP Event Code: 7035 Message: Do usługi Menedżer połączeń usługi Dostęp zdalny został pomyślnie wysłany kod sterowania uruchom. Record Number: 41258 Source Name: Service Control Manager Time Written: 20100124171058.000000+060 Event Type: informacje User: KOMPUTER_XP\User Computer Name: KOMPUTER_XP Event Code: 7036 Message: Usługa Telefonia weszła w stan uruchomienia. Record Number: 41257 Source Name: Service Control Manager Time Written: 20100124171058.000000+060 Event Type: informacje User: =====Application event log===== Computer Name: KOMPUTER_XP Event Code: 1 Message: Record Number: 1060 Source Name: Bonjour Service Time Written: 20090412085105.000000+120 Event Type: informacje User: Computer Name: KOMPUTER_XP Event Code: 4096 Message: Record Number: 1059 Source Name: Avira AntiVir Time Written: 20090411212345.000000+120 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM Computer Name: KOMPUTER_XP Event Code: 1 Message: Record Number: 1058 Source Name: Bonjour Service Time Written: 20090411212339.000000+120 Event Type: informacje User: Computer Name: KOMPUTER_XP Event Code: 4096 Message: Record Number: 1057 Source Name: Avira AntiVir Time Written: 20090411162554.000000+120 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM Computer Name: KOMPUTER_XP Event Code: 1 Message: Record Number: 1056 Source Name: Bonjour Service Time Written: 20090411162553.000000+120 Event Type: informacje User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\Program Files\PC Connectivity Solution;C:\Program Files\QuickTime\QTSystem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=15 "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 2 Stepping 7, GenuineIntel "PROCESSOR_REVISION"=0207 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip -----------------EOF----------------- [/log] OTL: [log]OTL logfile created on: 2010-02-19 19:32:07 - Run 2 OTL by OldTimer - Version 3.1.30.1 Folder = C:\Documents and Settings\User\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 639,00 Mb Total Physical Memory | 230,00 Mb Available Physical Memory | 36,00% Memory free 2,00 Gb Paging File | 1,00 Gb Available in Paging File | 79,00% Paging File free Paging file location(s): C:\pagefile.sys 960 1920 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 9,77 Gb Total Space | 1,15 Gb Free Space | 11,81% Space Free | Partition Type: NTFS Drive D: | 21,48 Gb Total Space | 4,60 Gb Free Space | 21,43% Space Free | Partition Type: FAT32 Drive E: | 24,63 Gb Total Space | 16,88 Gb Free Space | 68,55% Space Free | Partition Type: FAT32 F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: KOMPUTER_XP Current User Name: User Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-02-19 19:29:25 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe PRC - [2010-02-18 19:43:23 | 000,307,672 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-02-11 19:53:42 | 002,756,488 | ---- | M] (ALWIL Software) -- E:\Program Files\Alwil Software\Avast5\AvastUI.exe PRC - [2010-02-11 19:53:40 | 000,040,384 | ---- | M] (ALWIL Software) -- E:\Program Files\Alwil Software\Avast5\AvastSvc.exe PRC - [2009-12-04 22:59:57 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2009-12-04 22:59:57 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe PRC - [2009-11-13 12:57:58 | 000,323,392 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\DNA\btdna.exe PRC - [2009-11-12 16:33:10 | 000,141,600 | ---- | M] (Apple Inc.) -- D:\Program Files\iTunes\iTunesHelper.exe PRC - [2009-11-12 16:33:00 | 000,545,568 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe PRC - [2009-08-28 19:42:54 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe PRC - [2008-12-12 11:17:38 | 000,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe PRC - [2008-04-14 21:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-03-20 12:04:46 | 002,127,296 | ---- | M] (Gadu-Gadu S.A.) -- D:\Gadu-Gadu\gg.exe PRC - [2007-04-10 13:46:48 | 000,709,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\vVX3000.exe PRC - [2006-11-17 04:42:00 | 000,577,536 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-02-19 19:29:25 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe MOD - [2006-12-21 14:30:44 | 000,102,400 | ---- | M] (Gadu-Gadu S.A.) -- D:\Gadu-Gadu\ggwhook.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-02-11 19:53:40 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- E:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner) SRV - [2010-02-11 19:53:40 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- E:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner) SRV - [2010-02-11 19:53:40 | 000,040,384 | ---- | M] (ALWIL Software) [Auto | Running] -- E:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2009-12-04 22:59:57 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2009-11-12 16:33:00 | 000,545,568 | ---- | M] (Apple Inc.) [On_Demand | Running] -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service) SRV - [2009-08-28 19:42:54 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2008-12-12 11:17:38 | 000,238,888 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service) SRV - [2008-11-04 01:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2008-08-07 10:17:30 | 000,575,488 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2008-05-03 10:48:48 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service) SRV - [2006-10-26 12:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-02-11 19:42:34 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi) DRV - [2010-02-11 19:42:14 | 000,162,512 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP) DRV - [2010-02-11 19:39:02 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr) DRV - [2010-02-11 19:38:34 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2) DRV - [2010-02-11 19:38:24 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2010-02-11 19:38:08 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2009-08-28 19:42:52 | 000,040,448 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaapl.sys -- (USBAAPL) DRV - [2009-06-14 18:28:18 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2009-05-29 12:53:24 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-05-18 14:17:00 | 000,026,600 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM) DRV - [2009-04-28 21:20:06 | 000,044,944 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20) DRV - [2008-06-06 08:24:44 | 000,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2008-05-07 06:38:36 | 000,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2008-05-07 06:38:20 | 000,020,864 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2008-05-07 06:38:20 | 000,017,536 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2008-04-13 23:26:50 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\usb8023.sys -- (USB_RNDIS) DRV - [2008-04-13 23:15:38 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser.sys -- (usbser) DRV - [2008-04-13 23:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2008-04-13 23:15:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Sterownik audio USB (WDM) DRV - [2008-04-13 21:09:18 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv) DRV - [2007-10-16 14:29:54 | 000,101,431 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\IdeChnDr.sys -- (idechndr) Intel(R) DRV - [2007-10-16 14:29:54 | 000,013,891 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\IdeBusDr.sys -- (idebusdr) DRV - [2007-09-17 14:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2007-04-10 13:46:48 | 001,966,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VX3000.sys -- (VX3000) DRV - [2007-03-08 13:34:00 | 004,027,840 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2004-08-03 23:41:56 | 001,041,536 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFDPSP2.sys -- (HSF_DP) DRV - [2004-08-03 23:41:56 | 000,011,868 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mdmxsdk.sys -- (mdmxsdk) DRV - [2004-08-03 23:41:50 | 000,685,056 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFCXTS2.sys -- (winachsf) DRV - [2004-08-03 23:41:48 | 000,220,032 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFBS2S2.sys -- (HSFHWBS2) DRV - [2004-08-03 23:29:56 | 001,897,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2001-08-17 22:49:56 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/ IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.selectedEngine: "Wirtualna Polska" FF - prefs.js..browser.startup.homepage: "http://www.pajacyk.pl/" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.0.6 FF - prefs.js..extensions.enabledItems: {2fbc1200-ad13-11db-abbd-0800200c9a66}:3.0.1 FF - prefs.js..extensions.enabledItems: {a02c0c70-605c-11da-8cd6-0800200c9a66}:4.08 FF - prefs.js..network.proxy.backup.ftp: "204.228.144.136" FF - prefs.js..network.proxy.backup.ftp_port: 80 FF - prefs.js..network.proxy.backup.gopher: "204.228.144.136" FF - prefs.js..network.proxy.backup.gopher_port: 80 FF - prefs.js..network.proxy.backup.socks: "204.228.144.136" FF - prefs.js..network.proxy.backup.socks_port: 80 FF - prefs.js..network.proxy.backup.ssl: "204.228.144.136" FF - prefs.js..network.proxy.backup.ssl_port: 80 FF - prefs.js..network.proxy.ftp: "89.222.148.54 " FF - prefs.js..network.proxy.ftp_port: 80 FF - prefs.js..network.proxy.gopher: "89.222.148.54 " FF - prefs.js..network.proxy.gopher_port: 80 FF - prefs.js..network.proxy.http: "89.222.148.54 " FF - prefs.js..network.proxy.http_port: 80 FF - prefs.js..network.proxy.no_proxies_on: "" FF - prefs.js..network.proxy.share_proxy_settings: true FF - prefs.js..network.proxy.socks: "89.222.148.54 " FF - prefs.js..network.proxy.socks_port: 80 FF - prefs.js..network.proxy.socks_version: 4 FF - prefs.js..network.proxy.ssl: "89.222.148.54 " FF - prefs.js..network.proxy.ssl_port: 80 FF - HKLM\software\mozilla\Mozilla Firefox 3.0.18\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-02-18 19:43:31 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.18\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-02-18 19:43:29 | 000,000,000 | ---D | M] [2009-12-12 10:58:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Extensions [2009-12-12 10:58:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Extensions\IMVUClientXUL@imvu.com [2010-02-19 19:31:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Firefox\Profiles\kfrzb6lm.default\extensions [2008-09-29 16:03:58 | 000,000,000 | ---D | M] (Abstract Classic) -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Firefox\Profiles\kfrzb6lm.default\extensions\{2fbc1200-ad13-11db-abbd-0800200c9a66} [2009-09-15 16:55:00 | 000,000,000 | ---D | M] (Stylish) -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Firefox\Profiles\kfrzb6lm.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8} [2008-11-15 20:39:34 | 000,000,000 | ---D | M] (PimpZilla) -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Firefox\Profiles\kfrzb6lm.default\extensions\{a02c0c70-605c-11da-8cd6-0800200c9a66} [2008-11-15 20:39:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Firefox\Profiles\kfrzb6lm.default\extensions\{a02c0c70-605c-11da-8cd6-0800200c9a66}\chrome\mozapps\extensions [2010-02-19 19:31:55 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2009-02-11 20:16:16 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npbittorrent.dll [2008-06-24 18:07:32 | 000,927,224 | ---- | M] (Ganymede Technologies) -- C:\Program Files\Mozilla Firefox\plugins\NPBOARDS.dll [2008-06-24 18:07:50 | 000,620,016 | ---- | M] (Ganymede Technologies) -- C:\Program Files\Mozilla Firefox\plugins\NPSOCCER.dll [2008-06-24 18:07:14 | 000,669,176 | ---- | M] (Ganymede Technologies) -- C:\Program Files\Mozilla Firefox\plugins\NPWORDS.dll [2009-07-22 12:34:43 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2009-04-30 13:55:47 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2009-04-30 13:55:47 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2009-04-30 13:55:47 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2009-04-30 13:55:47 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2009-04-30 13:55:47 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2010-02-16 16:04:20 | 000,002,807 | RHS- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 74.125.45.100 4-open-davinci.com O1 - Hosts: 74.125.45.100 securitysoftwarepayments.com O1 - Hosts: 74.125.45.100 privatesecuredpayments.com O1 - Hosts: 74.125.45.100 secure.privatesecuredpayments.com O1 - Hosts: 74.125.45.100 getantivirusplusnow.com O1 - Hosts: 74.125.45.100 secure-plus-payments.com O1 - Hosts: 74.125.45.100 www.getantivirusplusnow.com O1 - Hosts: 74.125.45.100 www.secure-plus-payments.com O1 - Hosts: 74.125.45.100 www.getavplusnow.com O1 - Hosts: 74.125.45.100 safebrowsing-cache.google.com O1 - Hosts: 74.125.45.100 urs.microsoft.com O1 - Hosts: 74.125.45.100 www.securesoftwarebill.com O1 - Hosts: 74.125.45.100 secure.paysecuresystem.com O1 - Hosts: 74.125.45.100 paysoftbillsolution.com O1 - Hosts: 74.125.45.100 protected.maxisoftwaremart.com O1 - Hosts: 94.228.209.244 www.google.com O1 - Hosts: 94.228.209.244 google.com O1 - Hosts: 94.228.209.244 google.com.au O1 - Hosts: 94.228.209.244 www.google.com.au O1 - Hosts: 94.228.209.244 google.be O1 - Hosts: 94.228.209.244 www.google.be O1 - Hosts: 94.228.209.244 google.com.br O1 - Hosts: 94.228.209.244 www.google.com.br O1 - Hosts: 94.228.209.244 google.ca O1 - Hosts: 38 more lines... O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [avast5] E:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software) O4 - HKLM..\Run: [iTunesHelper] D:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.) O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [VX3000] C:\WINDOWS\vVX3000.exe (Microsoft Corporation) O4 - HKCU..\Run: [BitTorrent DNA] C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.) O4 - HKCU..\Run: [Gadu-Gadu] D:\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Office12\REFIEBAR.DLL (Microsoft Corporation) O9 - Extra Button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - Reg Error: Value error. File not found O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O15 - HKCU\..Trusted Domains: 8 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-04-28 14:28:03 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2008-03-21 18:24:54 | 000,000,000 | R--D | M] - D:\AutoPlay -- [ FAT32 ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS\system32\ias [2008-04-28 14:27:34 | 000,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-02-19 19:29:16 | 000,549,376 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe [2010-02-19 19:24:09 | 000,000,000 | ---D | C] -- C:\rsit [2010-02-19 14:05:48 | 000,000,000 | RHSD | C] -- C:\cmdcons [2010-02-18 18:14:12 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\User\Recent [2010-02-18 17:46:16 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro [2010-02-18 15:07:17 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2010-02-18 15:07:16 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2010-02-18 15:07:16 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2010-02-18 15:07:16 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2010-02-18 15:06:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010-02-18 15:04:46 | 000,000,000 | ---D | C] -- C:\Qoobox [2010-02-17 19:55:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy [2010-02-17 15:43:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\SUPERAntiSpyware.com [2010-02-17 15:42:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\SUPERAntiSpyware.com [2010-02-16 16:33:53 | 000,162,512 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2010-02-16 16:33:53 | 000,046,672 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2010-02-16 16:33:53 | 000,023,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2010-02-16 16:33:53 | 000,019,024 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2010-02-16 16:33:51 | 000,100,432 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2010-02-16 16:33:51 | 000,094,800 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2010-02-16 16:33:51 | 000,028,880 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2010-02-16 16:33:29 | 000,153,184 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe [2010-02-16 16:33:29 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr [2010-02-16 16:33:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-02-16 15:52:58 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\SABZTHBV [2010-02-16 15:51:58 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\003f1c0 [2010-02-13 19:30:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy [2010-02-10 14:07:19 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys [2010-02-10 14:05:09 | 000,455,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2010-02-10 14:02:23 | 002,190,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2010-02-10 14:02:23 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2010-02-10 14:02:21 | 002,067,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2010-02-10 14:02:21 | 002,025,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2010-02-07 13:15:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\nn [2010-01-28 18:29:20 | 000,631,955 | ---- | C] (XviD Team (Koepi) ) -- C:\Documents and Settings\User\Pulpit\XviD-1.0.1-05062004.exe [2010-01-27 20:59:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Adobe [2010-01-27 19:49:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\codec [2010-01-27 19:20:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\WinAVI [2010-01-22 20:13:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2010-01-22 10:29:05 | 001,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2010-01-22 10:29:03 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2010-01-22 10:29:02 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll [2010-01-22 10:29:00 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll [2010-01-22 10:28:59 | 005,942,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll [2010-01-22 10:28:59 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2010-01-22 10:28:58 | 001,208,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll [2010-01-22 10:28:58 | 000,916,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll [2010-01-22 10:28:58 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll [2010-01-22 10:28:57 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl [2010-01-22 10:28:57 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll [2010-01-22 10:28:57 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe [2010-01-22 10:28:56 | 011,070,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2008-05-01 16:26:09 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2008-04-28 14:31:44 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2008-04-28 14:27:57 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2008-04-28 14:27:57 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-02-19 19:29:25 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe [2010-02-19 19:23:53 | 000,781,909 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\RSIT.exe [2010-02-19 19:21:33 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-02-19 19:21:17 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-02-19 19:20:20 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-02-19 15:26:19 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\User\ntuser.ini [2010-02-19 15:26:18 | 008,126,464 | -H-- | M] () -- C:\Documents and Settings\User\NTUSER.DAT [2010-02-19 15:26:11 | 004,838,760 | -H-- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-02-19 14:10:42 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2010-02-19 14:05:55 | 000,000,281 | RHS- | M] () -- C:\boot.ini [2010-02-19 14:02:23 | 003,865,026 | R--- | M] () -- C:\Documents and Settings\User\Pulpit\ComboFix.exe [2010-02-18 19:34:33 | 002,290,490 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\P1060370.JPG [2010-02-18 17:53:50 | 000,001,360 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.new [2010-02-17 17:14:26 | 000,000,558 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\CCleaner.lnk [2010-02-16 18:49:48 | 000,084,581 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\jakiescos.JPG [2010-02-16 16:33:54 | 000,000,686 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk [2010-02-16 16:33:51 | 000,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-02-16 16:04:20 | 000,002,807 | RHS- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2010-02-14 09:55:00 | 000,124,223 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\psd01pastelbox.psd [2010-02-13 19:33:19 | 000,000,414 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol [2010-02-11 19:53:57 | 000,038,848 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr [2010-02-11 19:53:36 | 000,153,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe [2010-02-11 19:42:34 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2010-02-11 19:42:14 | 000,162,512 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2010-02-11 19:39:02 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2010-02-11 19:38:34 | 000,100,432 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2010-02-11 19:38:32 | 000,094,800 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2010-02-11 19:38:24 | 000,019,024 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2010-02-11 19:38:08 | 000,028,880 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2010-02-09 20:39:25 | 001,605,456 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-02-09 19:41:09 | 000,093,328 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-02-08 10:27:16 | 000,002,055 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\iTunes.lnk [2010-02-05 21:49:43 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\User\Pulpit\mental2.wav.sha [2010-02-05 15:37:39 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\User\Pulpit\mental.wav.sha [2010-02-05 13:52:01 | 000,107,409 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\meds1.jpg [2010-02-03 19:58:44 | 000,049,664 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\rozp..doc [2010-02-03 19:48:00 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Nowy Dokument programu Microsoft Office Word.docx [2010-02-03 18:53:24 | 000,030,218 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\mjjj.jpg [2010-02-02 19:02:47 | 000,011,302 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\Droga Lady GaGa.docx [2010-02-02 16:04:26 | 000,000,547 | ---- | M] () -- C:\WINDOWS\win.ini [2010-02-02 15:25:32 | 000,036,292 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\55175051.jpg [2010-02-01 19:32:28 | 000,012,579 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\Drogi Dżony Depie.docx [2010-01-28 19:59:55 | 000,322,921 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\fcnagl.jpg [2010-01-28 18:29:28 | 000,631,955 | ---- | M] (XviD Team (Koepi) ) -- C:\Documents and Settings\User\Pulpit\XviD-1.0.1-05062004.exe [2010-01-28 17:43:43 | 000,043,520 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-01-28 16:41:40 | 000,004,162 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\denialaction2.atn [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-02-19 19:23:42 | 000,781,909 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\RSIT.exe [2010-02-19 14:05:55 | 000,000,211 | ---- | C] () -- C:\Boot.bak [2010-02-19 14:05:51 | 000,262,400 | ---- | C] () -- C:\cmldr [2010-02-18 19:31:27 | 002,290,490 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\P1060370.JPG [2010-02-18 15:07:17 | 000,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe [2010-02-18 15:07:17 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe [2010-02-18 15:07:16 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2010-02-18 15:07:16 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2010-02-18 15:07:16 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2010-02-18 15:03:10 | 003,865,026 | R--- | C] () -- C:\Documents and Settings\User\Pulpit\ComboFix.exe [2010-02-17 17:14:26 | 000,000,558 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\CCleaner.lnk [2010-02-16 18:49:48 | 000,084,581 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\jakiescos.JPG [2010-02-16 16:33:54 | 000,000,686 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk [2010-02-16 11:01:55 | 000,004,162 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\denialaction2.atn [2010-02-14 09:54:53 | 000,124,223 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\psd01pastelbox.psd [2010-02-13 19:33:19 | 000,000,414 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol [2010-02-05 21:49:43 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\User\Pulpit\mental2.wav.sha [2010-02-05 15:37:39 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\User\Pulpit\mental.wav.sha [2010-02-05 13:51:59 | 000,107,409 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\meds1.jpg [2010-02-03 19:58:44 | 000,049,664 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\rozp..doc [2010-02-03 19:48:00 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Nowy Dokument programu Microsoft Office Word.docx [2010-02-03 18:53:23 | 000,030,218 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\mjjj.jpg [2010-02-02 19:02:46 | 000,011,302 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\Droga Lady GaGa.docx [2010-02-02 15:25:31 | 000,036,292 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\55175051.jpg [2010-02-01 17:52:53 | 000,012,579 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\Drogi Dżony Depie.docx [2010-01-28 19:59:55 | 000,322,921 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\fcnagl.jpg [2009-12-29 16:45:28 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2009-06-23 08:29:49 | 008,676,883 | ---- | C] () -- C:\WINDOWS\System32\NCMedia2.dll [2009-06-22 17:33:32 | 000,163,749 | ---- | C] () -- C:\Documents and Settings\User\Dane aplikacji\NMM-MetaData.db [2009-05-29 12:53:24 | 000,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2009-03-15 10:21:57 | 000,032,818 | ---- | C] () -- C:\Documents and Settings\User\Dane aplikacji\Urząd Skarbowy Poznań-Jeżyce 60-823 Poznań, ul. Słowackiego 22__2009-03-15 10-21-34.dpit [2009-02-25 18:44:02 | 000,032,734 | ---- | C] () -- C:\Documents and Settings\User\Dane aplikacji\Urząd Skarbowy Poznań-Jeżyce 60-823 Poznań, ul. Słowackiego 22__2009-02-25 18-43-55.dpit [2008-11-10 18:33:53 | 000,000,017 | ---- | C] () -- C:\WINDOWS\Missing.ini [2008-04-30 15:17:51 | 000,001,751 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\QTSBandwidthCache [2008-04-28 17:06:42 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll [2008-04-28 16:13:36 | 000,015,498 | ---- | C] () -- C:\WINDOWS\VX3000.ini [2008-04-28 15:24:27 | 000,147,456 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2008-04-28 15:24:23 | 000,000,164 | R--- | C] () -- C:\WINDOWS\avrack.ini [2008-04-28 15:21:56 | 000,043,520 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2007-03-29 22:00:40 | 000,203,264 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll [2004-06-06 12:53:42 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2004-06-05 12:56:16 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2002-10-06 18:42:58 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll [2002-10-04 23:04:26 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll [2002-10-04 23:04:26 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll [2002-10-04 23:04:18 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2008-04-28 14:28:03 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2008-04-28 14:24:05 | 000,000,211 | ---- | M] () -- C:\Boot.bak [2010-02-19 14:05:55 | 000,000,281 | RHS- | M] () -- C:\boot.ini [2001-07-21 23:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2004-08-03 23:00:14 | 000,262,400 | ---- | M] () -- C:\cmldr [2010-02-19 14:13:09 | 000,014,590 | ---- | M] () -- C:\ComboFix.txt [2008-04-28 14:28:03 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2009-10-29 18:48:27 | 000,168,774 | ---- | M] () -- C:\hpfr3420.log [2009-10-29 18:48:27 | 000,000,526 | ---- | M] () -- C:\hpfr3420.xml [2008-04-28 14:28:03 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2008-06-24 14:47:41 | 000,198,966 | ---- | M] () -- C:\logfile [2008-04-28 14:28:03 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004-08-03 22:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-28 15:38:45 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-02-19 19:20:18 | 1006,632,960 | -HS- | M] () -- C:\pagefile.sys [2008-04-28 17:06:46 | 000,000,159 | ---- | M] () -- C:\Setup.log < End of report > [/log]
grelson2 komentarz 2 marca 2010 komentarz 2 marca 2010 (edytowane) Ja mam podobny problem, z tym że nie mam ani nie miałem żadnego wirusa. Strona google, gmail itd. po prostu przestała działać. Używam firefoxa ale w IE też nie działa. Dostaję komunikat Błąd wczytywania strony. Help me Przez bramkę proxy wchodzę normalnie na google.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.