:Processes explorer.exe :OTL PRC - [2009-12-15 17:22:38 | 00,348,160 | ---- | M] () – C:\Program Files\Internet Today\1.1.0.1260\InternetToday.exe PRC - [2009-12-04 18:53:30 | 00,058,744 | ---- | M] () – C:\Documents and Settings\All Users\Dane aplikacji\QuestService\questservice129.exe PRC - [2009-12-04 18:53:30 | 00,058,744 | ---- | M] () – C:\Program Files\QuestService\questservice.exe MOD - [2009-12-25 10:56:05 | 00,077,553 | RHS- | M] () – C:\Documents and Settings\esp.plaszczka\Ustawienia lokalne\Temp\cvasds0.dll MOD - [2009-12-04 18:53:28 | 00,598,016 | ---- | M] () – C:\Program Files\QuestService\questservice.dll SRV - [2009-12-04 18:53:30 | 00,058,744 | ---- | M] () [Auto | Running] – C:\Documents and Settings\All Users\Dane aplikacji\QuestService\questservice129.exe – (QuestService Service) FF - HKLM\software\mozilla\Firefox\Extensions\{E63605FC-D583-4C81-867F-9457BDB3EA1B}: C:\Program Files\Web Search Operator\4.1.0.2080\FF [2009-12-15 21:03:49 | 00,000,000 | —D | M] FF - HKLM\software\mozilla\Firefox\Extensions\{8141440E-08F0-4339-9959-5C31C6A69F23}: C:\Program Files\Automated Content Enhancer\4.1.0.5290\FF [2009-12-15 21:03:52 | 00,000,000 | —D | M] FF - HKLM\software\mozilla\Firefox\Extensions\{E889F097-B0BE-471B-89AD-B86B6F04B506}: C:\Program Files\Customized Platform Advancer\4.1.0.1960\FF [2009-12-15 21:03:56 | 00,000,000 | —D | M] [2009-12-09 23:47:38 | 00,000,000 | —D | M] (QuestService) – C:\Program Files\Mozilla Firefox\extensions{F2DDDB92-1605-4260-9B25-45A4DAE87B50} [2009-12-09 23:47:39 | 00,002,405 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\questservice129.xml O2 - BHO: (Automated Content Enhancer) - {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} - C:\Program Files\Automated Content Enhancer\4.1.0.5290\ACEIEAddOn.dll () O2 - BHO: (Customized Platform Advancer) - {42C7C39F-3128-4a17-BDB7-91C46032B5B9} - C:\Program Files\Customized Platform Advancer\4.1.0.1960\CPAIEAddOn.dll () O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found. O2 - BHO: (Content Management Wizard) - {B72681C0-A222-4b21-A0E2-53A5A5CA3D41} - C:\Program Files\Content Management Wizard\1.1.0.1990\CMWIE.dll () O2 - BHO: (Textual Content Provider) - {CAC89FF9-34A9-4431-8CFE-292A47F843BC} - C:\Program Files\Textual Content Provider\1.1.0.1810\TCPIE.dll () O2 - BHO: (Web Search Operator) - {EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431} - C:\Program Files\Web Search Operator\4.1.0.2080\WSO.dll () O3 - HKCU…\Toolbar\WebBrowser: (no name) - {D45817B8-3EAD-4D1D-8FCA-EC63A8E35DE2} - No CLSID value found. O8 - Extra context menu item: ĘąÓĂUUSeeĎÂÔŘ - C:\Program Files\uusee\geturltodown.htm () O8 - Extra context menu item: ĘąÓĂUUSeeĽÓËٲĄ·Ĺ - C:\Program Files\uusee\geturltoplay.htm () O9 - Extra Button: şÜżěĘÓƵËŃË÷ - {998A88A0-A355-809B-831C-B83A80000991} - File not found O9 - Extra ‘Tools’ menuitem : şÜżěĘÓƵËŃË÷ - {998A88A0-A355-809B-831C-B83A80000991} - File not found O9 - Extra Button: Ćô¶ŻUUSee ÍřÂçµçĘÓ - {998A88A0-A355-809B-831C-B83A80000992} - C:\Program Files\uusee\UUSeePlayer.exe () O9 - Extra ‘Tools’ menuitem : Ćô¶ŻUUSee ÍřÂçµçĘÓ - {998A88A0-A355-809B-831C-B83A80000992} - C:\Program Files\uusee\UUSeePlayer.exe () O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ … mv9VCM.CAB (Reg Error: Key error.) O32 - AutoRun File - [2009-12-26 14:07:15 | 00,000,063 | RHS- | M] () - C:\autorun.inf – [NTFS] O32 - AutoRun File - [2009-03-07 11:23:23 | 00,000,180 | RHS- | M] () - D:\AUTORUN.FCB – [NTFS] O32 - AutoRun File - [2009-12-26 14:07:15 | 00,000,063 | RHS- | M] () - D:\autorun.inf – [NTFS] [2009-12-09 23:03:13 | 00,000,000 | —D | C] – C:\Documents and Settings\esp.plaszczka\Ustawienia lokalne\Dane aplikacji\Textual Content Provider [2009-12-09 23:03:01 | 00,000,000 | —D | C] – C:\Program Files\QuestService [2009-12-09 23:03:01 | 00,000,000 | —D | C] – C:\Documents and Settings\All Users\Dane aplikacji\QuestService [2009-12-09 23:02:34 | 00,000,000 | —D | C] – C:\Program Files\Textual Content Provider [2009-12-09 23:02:30 | 00,000,000 | —D | C] – C:\Program Files\Content Management Wizard [2009-12-09 23:02:25 | 00,000,000 | —D | C] – C:\Documents and Settings\esp.plaszczka\Ustawienia lokalne\Dane aplikacji\Internet Today [2009-12-09 23:02:24 | 00,000,000 | —D | C] – C:\Program Files\Internet Today [2009-12-09 23:02:19 | 00,000,000 | —D | C] – C:\Documents and Settings\esp.plaszczka\Ustawienia lokalne\Dane aplikacji\Customized Platform Advancer [2009-12-09 23:02:18 | 00,000,000 | —D | C] – C:\Program Files\Customized Platform Advancer [2009-12-09 23:02:15 | 00,000,000 | —D | C] – C:\Program Files\Automated Content Enhancer [2009-12-09 23:02:15 | 00,000,000 | —D | C] – C:\Documents and Settings\esp.plaszczka\Ustawienia lokalne\Dane aplikacji\Automated Content Enhancer [2009-12-09 23:02:13 | 00,000,000 | —D | C] – C:\Documents and Settings\esp.plaszczka\Ustawienia lokalne\Dane aplikacji\Web Search Operator [2009-12-09 23:02:12 | 00,000,000 | —D | C] – C:\Program Files\Web Search Operator [2009-12-09 23:02:01 | 00,000,000 | —D | C] – C:\Program Files\Gameztar Toolbar [2009-12-09 23:01:45 | 00,000,000 | —D | C] – C:\Documents and Settings\esp.plaszczka\Ustawienia lokalne\Dane aplikacji\Gameztar Toolbar :Files C:\autorun.inf D:\autorun.inf C:\u16sqrqn.exe D:\u16sqrqn.exe C:\nx.exe D:\nx.exe C:\fx063d.exe D:\fx063d.exe C:\yu3.exe D:\yu3.exe C:\t8g.exe D:\t8g.exe C:\k0maw.exe D:\k0maw.exe C:\nqdymj.exe D:\nqdymj.exe C:\xmor.exe D:\xmor.exe C:\2id9.exe D:\2id9.exe C:\k8jc.exe D:\k8jc.exe C:\mbvd.exe D:\mbvd.exe C:\mbdm.exe D:\mbdm.exe C:\cs6phv6d.exe D:\cs6phv6d.exe C:\u16sqrqn.exe D:\u16sqrqn.exe :Reg [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2] :Commands [emptytemp] [start explorer] [Reboot]
