Live Security Platinum! Proszę o POMOC!

odwrocone7iedem · 29 Sierpień 2012 13:08

tu skryptu z:

OTL: http://wklej.org/id/820851/

EXTRAS: http://wklej.org/id/820847/

Bardzo proszę o pomoc! Z góry dziękuję.

Pozdrawiam

Atis · 29 Sierpień 2012 13:35

Czy znasz ten program: E:\Program Files\184924

Odinstaluj Yontoo.

Do okna Własne opcje skanowania / skrypt wklej:

:OTL DRV - File not found [Kernel | On_Demand | Stopped] – E:\WINDOWS\system32\drivers\EagleXNt.sys – (EagleXNt) DRV - File not found [Kernel | On_Demand | Stopped] – E:\WINDOWS\system32\drivers\TBPANEL.SYS – (Cardex) O3 - HKU\S-1-5-21-606747145-790525478-1417001333-1005…\Toolbar\ShellBrowser: (no name) - {ECDEE021-0D17-467F-A1FF-C7A115230949} - No CLSID value found. O3 - HKU\S-1-5-21-606747145-790525478-1417001333-1005…\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found. [2012-10-24 19:35:00 | 000,000,000 | —D | C] – E:\Qoobox [2012-10-24 18:12:52 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Dane aplikacji\wpkqbtifzhjlrkd [2012-10-20 13:36:09 | 000,000,000 | —D | M] – E:\Documents and Settings\mama\Dane aplikacji\BabylonToolbar :Files E:\Documents and Settings\All Users\Dane aplikacji\036DFF6100015F24353CF89781CB3F95 :Reg [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Parameters] “ServiceDll”=hex(2):“E:\WINDOWS\system32\wuauserv.dll” :Commands [emptytemp]

Kliknij Wykonaj skrypt i zatwierdź restart.

Pokaż raport z usuwania i nowy log Skanuj.

odwrocone7iedem · 29 Sierpień 2012 14:40

Raport z usuwania:

All processes killed

========== OTL ==========

Service EagleXNt stopped successfully!

Service EagleXNt deleted successfully!

File E:\WINDOWS\system32\drivers\EagleXNt.sys not found.

Service Cardex stopped successfully!

Service Cardex deleted successfully!

File E:\WINDOWS\system32\drivers\TBPANEL.SYS not found.

Registry value HKEY_USERS\S-1-5-21-606747145-790525478-1417001333-1005\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{ECDEE021-0D17-467F-A1FF-C7A115230949} deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{ECDEE021-0D17-467F-A1FF-C7A115230949}\ not found.

Registry value HKEY_USERS\S-1-5-21-606747145-790525478-1417001333-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{EF99BD32-C1FB-11D2-892F-0090271D4F88}\ not found.

Folder E:\Qoobox\ not found.

E:\Documents and Settings\All Users\Dane aplikacji\wpkqbtifzhjlrkd folder moved successfully.

E:\Documents and Settings\mama\Dane aplikacji\BabylonToolbar folder moved successfully.

File EY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv\Parameters] not found.

File ptytemp] not found.

OTL by OldTimer - Version 3.2.59.1 log created on 08292012_163028

Files\Folders moved on Reboot…

PendingFileRenameOperations files…

Registry entries deleted on Reboot…

– Dodane 29.08.2012 (Śr) 16:47 –

a tu podrzucam raport ze skanowania:

OTL logfile created on: 2012-08-29 16:41:09 - Run 1

OTL by OldTimer - Version 3.2.59.1 Folder = E:\Documents and Settings\kendzy\Moje dokumenty\Pobieranie

Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,32 Gb Available Physical Memory | 65,91% Memory free

3,85 Gb Paging File | 3,34 Gb Available in Paging File | 86,72% Paging File free

Paging file location(s): E:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files

Drive C: | 146,48 Gb Total Space | 10,50 Gb Free Space | 7,17% Space Free | Partition Type: NTFS

Drive D: | 97,66 Gb Total Space | 38,65 Gb Free Space | 39,57% Space Free | Partition Type: NTFS

Drive E: | 53,94 Gb Total Space | 0,79 Gb Free Space | 1,46% Space Free | Partition Type: NTFS

Computer Name: MTS-9CA2D235BCD | User Name: kendzy | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012-10-24 20:01:51 | 000,161,776 | ---- | M] (Oracle Corporation) – E:\Program Files\Java\jre7\bin\jqs.exe

PRC - [2012-10-18 02:11:39 | 000,913,888 | ---- | M] (Mozilla Corporation) – E:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2012-10-09 20:24:34 | 000,935,008 | ---- | M] () – E:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe

PRC - [2012-10-09 20:24:32 | 001,107,552 | ---- | M] () – E:\Program Files\AVG Secure Search\vprot.exe

PRC - [2012-08-29 16:29:59 | 000,598,528 | ---- | M] (OldTimer Tools) – E:\Documents and Settings\kendzy\Moje dokumenty\Pobieranie\OTL.exe

PRC - [2012-05-15 12:18:00 | 001,262,400 | ---- | M] (NVIDIA Corporation) – E:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

PRC - [2012-04-04 02:30:36 | 000,603,536 | R— | M] (WinZip Computing, S.L.) – E:\Program Files\WinZip\WZQKPICK32.EXE

PRC - [2012-02-09 08:06:48 | 000,312,376 | ---- | M] (Power Software Ltd) – C:\power iso\PowerISO\PWRISOVM.EXE

PRC - [2011-07-04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) – E:\Program Files\AVAST Software\Avast\AvastUI.exe

PRC - [2011-07-04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) – E:\Program Files\AVAST Software\Avast\AvastSvc.exe

PRC - [2011-01-14 18:51:14 | 002,880,000 | ---- | M] (SEC) – D:\stermonitor\MagicTune Premium\MagicTune.exe

PRC - [2009-12-23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) – E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

PRC - [2009-10-05 17:36:46 | 000,036,864 | ---- | M] () – D:\stermonitor\MagicTune Premium\GammaTray.exe

PRC - [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) – E:\WINDOWS\explorer.exe

========== Modules (No Company Name) ==========

MOD - [2012-10-18 02:11:36 | 002,003,424 | ---- | M] () – E:\Program Files\Mozilla Firefox\mozjs.dll

MOD - [2012-10-09 20:24:35 | 000,132,704 | ---- | M] () – E:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\SiteSafety.dll

MOD - [2012-10-09 20:24:34 | 000,935,008 | ---- | M] () – E:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe

MOD - [2012-10-09 20:24:32 | 001,107,552 | ---- | M] () – E:\Program Files\AVG Secure Search\vprot.exe

MOD - [2012-08-16 12:34:26 | 001,796,608 | ---- | M] () – E:\Program Files\AVAST Software\Avast\defs\12081600\algo.dll

MOD - [2012-08-15 12:38:08 | 009,465,032 | ---- | M] () – E:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll

MOD - [2011-01-04 10:31:24 | 000,051,200 | ---- | M] () – D:\stermonitor\MagicTune Premium\MTResPol.dll

MOD - [2011-01-04 10:31:10 | 000,054,272 | ---- | M] () – D:\stermonitor\MagicTune Premium\DProfile.dll

MOD - [2011-01-04 10:31:06 | 000,023,552 | ---- | M] () – D:\stermonitor\MagicTune Premium\HzZone.dll

MOD - [2011-01-04 10:31:06 | 000,023,040 | ---- | M] () – D:\stermonitor\MagicTune Premium\Highlight.dll

MOD - [2011-01-04 10:30:32 | 000,056,320 | ---- | M] () – D:\stermonitor\MagicTune Premium\EProfile.dll

MOD - [2011-01-04 10:30:26 | 000,065,024 | ---- | M] () – D:\stermonitor\MagicTune Premium\VESADll.dll

MOD - [2011-01-04 10:30:22 | 000,064,512 | ---- | M] () – D:\stermonitor\MagicTune Premium\IProfile.dll

MOD - [2011-01-04 10:30:20 | 000,053,248 | ---- | M] () – D:\stermonitor\MagicTune Premium\DeviceInterface.dll

MOD - [2009-10-05 17:36:46 | 000,036,864 | ---- | M] () – D:\stermonitor\MagicTune Premium\GammaTray.exe

========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] – C:\WINDOWS\system32\wuauserv.dll – (wuauserv)

SRV - File not found [Disabled | Stopped] – %SystemRoot%\System32\hidserv.dll – (HidServ)

SRV - File not found [On_Demand | Stopped] – %SystemRoot%\System32\appmgmts.dll – (AppMgmt)

SRV - [2012-10-24 20:01:51 | 000,161,776 | ---- | M] (Oracle Corporation) [Auto | Running] – E:\Program Files\Java\jre7\bin\jqs.exe – (JavaQuickStarterService)

SRV - [2012-10-18 02:11:37 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] – E:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe – (MozillaMaintenance)

SRV - [2012-10-09 20:24:34 | 000,935,008 | ---- | M] () [Auto | Running] – E:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe – (vToolbarUpdater11.2.0)

SRV - [2012-08-15 12:38:08 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] – E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe – (AdobeFlashPlayerUpdateSvc)

SRV - [2012-05-15 12:18:00 | 001,262,400 | ---- | M] (NVIDIA Corporation) [Auto | Running] – E:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe – (nvUpdatusService)

SRV - [2011-07-04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] – E:\Program Files\AVAST Software\Avast\AvastSvc.exe – (avast! Antivirus)

SRV - [2009-12-23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] – E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe – (StarWindServiceAE)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] – -- (WDICA)

DRV - File not found [Kernel | On_Demand | Stopped] – -- (PDRFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] – -- (PDRELI)

DRV - File not found [Kernel | On_Demand | Stopped] – -- (PDFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] – -- (PDCOMP)

DRV - File not found [Kernel | System | Stopped] – -- (PCIDump)

DRV - File not found [Kernel | System | Stopped] – -- (lbrtfdc)

DRV - File not found [Kernel | System | Stopped] – -- (i2omgmt)

DRV - File not found [Kernel | System | Stopped] – -- (Changer)

DRV - File not found [Kernel | On_Demand | Unknown] – -- (a1wbsx43)

DRV - File not found [Kernel | On_Demand | Unknown] – -- (a13nka3g)

DRV - [2012-10-12 22:58:55 | 000,232,512 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] – E:\WINDOWS\system32\drivers\dtsoftbus01.sys – (dtsoftbus01)

DRV - [2012-10-12 22:54:39 | 000,443,448 | ---- | M] () [Kernel | Boot | Running] – E:\WINDOWS\system32\drivers\sptd.sys – (sptd)

DRV - [2012-02-09 08:06:40 | 000,112,096 | ---- | M] (Power Software Ltd) [Kernel | System | Running] – E:\WINDOWS\System32\drivers\scdemu.sys – (SCDEmu)

DRV - [2011-08-17 09:56:22 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] – E:\WINDOWS\system32\drivers\ccdcmb.sys – (nmwcd)

DRV - [2011-07-04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] – E:\WINDOWS\System32\drivers\aswSnx.sys – (aswSnx)

DRV - [2011-07-04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] – E:\WINDOWS\System32\drivers\aswSP.sys – (aswSP)

DRV - [2011-07-04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] – E:\WINDOWS\System32\drivers\aswTdi.sys – (aswTdi)

DRV - [2011-07-04 13:35:12 | 000,102,616 | ---- | M] (AVAST Software) [File_System | Auto | Running] – E:\WINDOWS\System32\drivers\aswmon2.sys – (aswMon2)

DRV - [2011-07-04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] – E:\WINDOWS\System32\drivers\aswRdr.sys – (aswRdr)

DRV - [2011-07-04 13:32:13 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] – E:\WINDOWS\System32\drivers\aavmker4.sys – (Aavmker4)

DRV - [2011-07-04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] – E:\WINDOWS\System32\drivers\aswFsBlk.sys – (aswFsBlk)

DRV - [2011-07-02 00:16:22 | 000,016,376 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Stopped] – E:\WINDOWS\gdrv.sys – (gdrv)

DRV - [2010-04-22 15:33:36 | 000,014,336 | ---- | M] (Samsung Electronics, Inc. ) [Kernel | On_Demand | Running] – E:\WINDOWS\system32\drivers\MTiCtwl.sys – (MagicTune)

DRV - [2008-01-09 11:53:00 | 000,141,246 | ---- | M] (NVIDIA Corporation) [Kernel | Auto | Running] – E:\WINDOWS\system32\drivers\NVCAP.SYS – (nvcap)

DRV - [2008-01-09 11:53:00 | 000,016,176 | ---- | M] (NVIDIA Corporation) [Kernel | Auto | Running] – E:\WINDOWS\system32\drivers\NVXBAR.SYS – (NVXBAR)

DRV - [2007-09-19 15:44:46 | 000,101,504 | R— | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] – E:\WINDOWS\system32\drivers\Rtenicxp.sys – (RTLE8023xp)

DRV - [2007-09-19 11:16:32 | 004,617,728 | R— | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] – E:\WINDOWS\system32\drivers\RtkHDAud.sys – (IntcAzAudAddService)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

IE - HKLM…\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKLM…\SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: “URL” = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

IE - HKU.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

IE - HKU\S-1-5-21-606747145-790525478-1417001333-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =

IE - HKU\S-1-5-21-606747145-790525478-1417001333-1005…\SearchScopes,DefaultScope = {210A02A6-8369-47CE-BD53-C4436446F9C0}

IE - HKU\S-1-5-21-606747145-790525478-1417001333-1005…\SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: “URL” = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC

IE - HKU\S-1-5-21-606747145-790525478-1417001333-1005…\SearchScopes{210A02A6-8369-47CE-BD53-C4436446F9C0}: “URL” = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7

IE - HKU\S-1-5-21-606747145-790525478-1417001333-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

IE - HKU\S-1-5-21-606747145-790525478-1417001333-1009\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com

========== FireFox ==========

FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins@adobe.com/FlashPlayer: E:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll ()

FF - HKLM\Software\MozillaPlugins@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: E:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\npsitesafety.dll ()

FF - HKLM\Software\MozillaPlugins@ganymede/GanymedeNetPlugin,version=1.0: D:\gry\Ganymede\Plugins\npganymedenet.dll ( )

FF - HKLM\Software\MozillaPlugins@Google.com/GoogleEarthPlugin: E:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF - HKLM\Software\MozillaPlugins@java.com/DTPlugin,version=10.5.0: E:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins@java.com/JavaPlugin,version=10.5.0: E:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins@Microsoft.com/NpCtrl,version=1.0: E:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins@microsoft.com/WPF,version=3.5: E:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins@tools.google.com/Google Update;version=3: E:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins@tools.google.com/Google Update;version=9: E:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins@Webzen.com/NPBrowserExt: E:\Program Files\WEBZEN\BrowserExtension\NPWZCmnCtrl.dll (WEBZEN)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\wrc@avast.com: E:\Program Files\AVAST Software\Avast\WebRep\FF [2011-08-16 16:14:33 | 000,000,000 | —D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\avg@toolbar: E:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search\11.1.0.12\ [2012-10-09 20:24:43 | 000,000,000 | —D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\Components: E:\Program Files\Mozilla Firefox\components [2012-10-18 02:11:40 | 000,000,000 | —D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\Plugins: E:\Program Files\Mozilla Firefox\plugins

[2011-10-20 20:22:47 | 000,000,000 | —D | M] (No name found) – E:\Documents and Settings\kendzy\Dane aplikacji\Mozilla\Extensions

[2012-05-03 13:10:15 | 000,000,000 | —D | M] (No name found) – E:\Documents and Settings\kendzy\Dane aplikacji\Mozilla\Firefox\Profiles\ir3i1zo5.default\extensions

[2012-10-24 20:05:44 | 000,000,000 | —D | M] (No name found) – E:\Program Files\Mozilla Firefox\extensions

[2012-10-18 02:11:40 | 000,136,672 | ---- | M] (Mozilla Foundation) – E:\Program Files\mozilla firefox\components\browsercomps.dll

[2012-06-09 14:00:50 | 000,002,767 | ---- | M] () – E:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml

[2012-10-09 20:24:31 | 000,003,769 | ---- | M] () – E:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml

[2012-06-09 14:00:50 | 000,001,406 | ---- | M] () – E:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml

[2012-06-09 14:00:50 | 000,000,917 | ---- | M] () – E:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml

[2012-06-09 14:00:50 | 000,000,858 | ---- | M] () – E:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml

[2012-06-09 14:00:50 | 000,001,183 | ---- | M] () – E:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml

[2012-06-09 14:00:50 | 000,001,683 | ---- | M] () – E:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2012-10-24 19:45:50 | 000,000,027 | ---- | M]) - E:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - E:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)

O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - E:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)

O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - E:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)

O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)

O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - E:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)

O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - E:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC)

O3 - HKLM…\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)

O4 - HKLM…\Run: [Alcmtr] E:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)

O4 - HKLM…\Run: [avast] E:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)

O4 - HKLM…\Run: [MagicTuneLauncher] D:\stermonitor\MagicTune Premium\MagicTuneLauncher.exe ()

O4 - HKLM…\Run: [NvCplDaemon] E:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)

O4 - HKLM…\Run: [NvMediaCenter] E:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)

O4 - HKLM…\Run: [nwiz] E:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()

O4 - HKLM…\Run: [PWRISOVM.EXE] C:\power iso\PowerISO\PWRISOVM.EXE (Power Software Ltd)

O4 - HKLM…\Run: [vProt] E:\Program Files\AVG Secure Search\vprot.exe ()

O4 - HKU\S-1-5-21-606747145-790525478-1417001333-1005…\Run: [AlcoholAutomount] E:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe (Alcohol Soft Development Team)

O4 - Startup: E:\Documents and Settings\All Users\Menu Start\Programy\Autostart\GammaTray.lnk = D:\stermonitor\MagicTune Premium\GammaTray.exe ()

O4 - Startup: E:\Documents and Settings\All Users\Menu Start\Programy\Autostart\WinZip Quick Pick.lnk = E:\Program Files\WinZip\WZQKPICK32.EXE (WinZip Computing, S.L.)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKU.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKU.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-606747145-790525478-1417001333-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-606747145-790525478-1417001333-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: &P&obierz &za pomocą BitComet - E:\Program Files\BitComet\BitComet.exe (http://www.BitComet.com)

O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - E:\Program Files\BitComet\BitComet.exe (http://www.BitComet.com)

O9 - Extra Button: Kolekcja wycinków HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - E:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)

O9 - Extra Button: Zaznaczanie HP Smart - {700259D7-1666-479a-93B1-3250410481E8} - E:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)

O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - E:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta … s-i586.cab (Reg Error: Key error.)

O16 - DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta … s-i586.cab (Reg Error: Key error.)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta … s-i586.cab (Reg Error: Key error.)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc … wflash.cab (Shockwave Flash Object)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.231.1.206 217.172.224.160

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces{BBF811A7-837F-485D-BD9C-E140B128C747}: DhcpNameServer = 89.231.1.206 217.172.224.160

O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - E:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll ()

O20 - HKLM Winlogon: Shell - (Explorer.exe) - E:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (E:\WINDOWS\system32\userinit.exe) - E:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O24 - Desktop WallPaper: E:\Documents and Settings\kendzy\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: E:\Documents and Settings\kendzy\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2011-07-01 23:39:55 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT – [NTFS]

O34 - HKLM BootExecute: (autocheck autochk *)

O35 - HKLM…comfile [open] – “%1” %*

O35 - HKLM…exefile [open] – “%1” %*

O37 - HKLM…com [@ = comfile] – “%1” %*

O37 - HKLM…exe [@ = exefile] – “%1” %*

O38 - SubSystems\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012-10-24 20:17:01 | 000,000,000 | —D | C] – E:\Documents and Settings\kendzy\Ustawienia lokalne\Dane aplikacji\Sun

[2012-10-24 20:02:51 | 000,000,000 | —D | C] – E:\Program Files\Yontoo

[2012-10-24 20:02:50 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer

[2012-10-24 20:02:17 | 000,000,000 | —D | C] – E:\Program Files\Common Files\Java

[2012-10-24 20:02:09 | 000,227,824 | ---- | C] (Oracle Corporation) – E:\WINDOWS\System32\javaws.exe

[2012-10-24 20:02:09 | 000,143,872 | ---- | C] (Oracle Corporation) – E:\WINDOWS\System32\javacpl.cpl

[2012-10-24 20:02:04 | 000,174,064 | ---- | C] (Oracle Corporation) – E:\WINDOWS\System32\javaw.exe

[2012-10-24 20:02:04 | 000,174,064 | ---- | C] (Oracle Corporation) – E:\WINDOWS\System32\java.exe

[2012-10-24 20:01:49 | 000,000,000 | —D | C] – E:\Program Files\Java

[2012-10-24 19:50:36 | 000,000,000 | —D | C] – E:\WINDOWS\System32\cache

[2012-10-24 19:50:36 | 000,000,000 | —D | C] – E:\Program Files\cacaoweb

[2012-10-24 19:50:35 | 000,000,000 | —D | C] – E:\WINDOWS\XSxS

[2012-10-24 19:50:34 | 000,000,000 | -HSD | C] – E:\RECYCLER

[2012-10-24 19:47:48 | 000,000,000 | —D | C] – E:\WINDOWS\temp

[2012-10-22 16:27:06 | 000,000,000 | —D | C] – E:\Documents and Settings\kendzy\Pulpit\Dropbox

[2012-10-22 16:26:43 | 000,000,000 | —D | C] – E:\Documents and Settings\kendzy\Pulpit\Extranet

[2012-10-20 13:56:21 | 000,772,592 | ---- | C] (Oracle Corporation) – E:\WINDOWS\System32\npDeployJava1.dll

[2012-10-20 13:45:23 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes’ Anti-Malware

[2012-10-20 13:45:23 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes

[2012-10-20 13:45:22 | 000,022,344 | ---- | C] (Malwarebytes Corporation) – E:\WINDOWS\System32\drivers\mbam.sys

[2012-10-20 13:32:13 | 000,000,000 | —D | C] – E:\WINDOWS\erdnt

[2012-10-20 00:43:43 | 000,000,000 | —D | C] – E:\Documents and Settings\kendzy\Ustawienia lokalne\Dane aplikacji\Temp

[2012-10-20 00:08:40 | 000,000,000 | -HSD | C] – E:\Documents and Settings\kendzy\PrivacIE

[2012-10-17 19:57:26 | 000,000,000 | —D | C] – E:\Documents and Settings\kendzy\Dane aplikacji\DAEMON Tools Pro

[2012-10-13 01:50:02 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation

[2012-10-13 01:49:02 | 000,065,536 | ---- | C] (Khronos Group) – E:\WINDOWS\System32\OpenCL.dll

[2012-10-13 01:48:09 | 002,530,624 | ---- | C] (NVIDIA Corporation) – E:\WINDOWS\System32\nvcuvid.dll

[2012-10-13 01:48:09 | 002,445,120 | ---- | C] (NVIDIA Corporation) – E:\WINDOWS\System32\nvcuvenc.dll

[2012-10-13 01:48:09 | 001,000,768 | ---- | C] (NVIDIA Corporation) – E:\WINDOWS\System32\nvdispco32.dll

[2012-10-13 01:48:09 | 000,883,008 | ---- | C] (NVIDIA Corporation) – E:\WINDOWS\System32\nvgenco32.dll

[2012-10-13 01:48:05 | 017,543,168 | ---- | C] (NVIDIA Corporation) – E:\WINDOWS\System32\nvcompiler.dll

[2012-10-13 01:47:10 | 000,000,000 | —D | C] – E:\NVIDIA

[2012-10-13 01:39:11 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Dane aplikacji\NVIDIA

[2012-10-12 22:58:47 | 000,232,512 | ---- | C] (DT Soft Ltd) – E:\WINDOWS\System32\drivers\dtsoftbus01.sys

[2012-10-12 22:54:40 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Menu Start\Programy\DAEMON Tools Pro

[2012-10-12 22:54:15 | 000,000,000 | —D | C] – E:\Program Files\DAEMON Tools Pro

[2012-10-12 22:46:07 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Pro

[2012-10-12 15:45:25 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage

[2012-10-09 21:37:40 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Dane aplikacji\WOP

[2012-10-09 21:35:58 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Menu Start\Programy\Wings of Prey

[2012-08-29 16:30:28 | 000,000,000 | —D | C] – E:_OTL

[2012-08-29 16:25:18 | 000,000,000 | —D | C] – E:\Documents and Settings\kendzy\Ustawienia lokalne\Dane aplikacji\WinZip

[2012-08-28 23:36:17 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Dane aplikacji\036DFF6100015F24353CF89781CB3F95

[2012-08-24 19:12:55 | 000,230,920 | ---- | C] (WEBZEN, INC.) – E:\WINDOWS\System32\EPWZCmnCtrl.dll

[2012-08-24 19:12:55 | 000,000,000 | —D | C] – E:\Program Files\WEBZEN

[2012-08-24 19:12:49 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Dane aplikacji\WEBZEN

[2012-08-24 19:03:23 | 000,000,000 | —D | C] – E:\Documents and Settings\All Users\Menu Start\Programy\Arctic Combat

[2012-08-06 11:55:49 | 000,426,184 | ---- | C] (Adobe Systems Incorporated) – E:\WINDOWS\System32\FlashPlayerApp.exe

========== Files - Modified Within 30 Days ==========

[2012-10-29 19:33:00 | 000,001,030 | ---- | M] () – E:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

[2012-10-26 17:19:54 | 000,000,859 | ---- | M] () – E:\Documents and Settings\All Users\Pulpit\Need For Speed World.lnk

[2012-10-24 20:01:51 | 000,772,592 | ---- | M] (Oracle Corporation) – E:\WINDOWS\System32\npDeployJava1.dll

[2012-10-24 20:01:51 | 000,687,600 | ---- | M] (Oracle Corporation) – E:\WINDOWS\System32\deployJava1.dll

[2012-10-24 20:01:51 | 000,227,824 | ---- | M] (Oracle Corporation) – E:\WINDOWS\System32\javaws.exe

[2012-10-24 20:01:51 | 000,174,064 | ---- | M] (Oracle Corporation) – E:\WINDOWS\System32\javaw.exe

[2012-10-24 20:01:51 | 000,174,064 | ---- | M] (Oracle Corporation) – E:\WINDOWS\System32\java.exe

[2012-10-24 20:01:51 | 000,143,872 | ---- | M] (Oracle Corporation) – E:\WINDOWS\System32\javacpl.cpl

[2012-10-24 19:45:50 | 000,000,027 | ---- | M] () – E:\WINDOWS\System32\drivers\etc\hosts

[2012-10-20 00:36:29 | 000,001,324 | ---- | M] () – E:\WINDOWS\System32\d3d9caps.dat

[2012-10-13 01:49:01 | 001,074,636 | ---- | M] () – E:\WINDOWS\System32\nvdrsdb0.bin

[2012-10-13 01:49:01 | 000,000,001 | ---- | M] () – E:\WINDOWS\System32\nvdrssel.bin

[2012-10-13 01:48:47 | 001,074,636 | ---- | M] () – E:\WINDOWS\System32\nvdrsdb1.bin

[2012-10-13 01:48:47 | 000,000,000 | ---- | M] () – E:\WINDOWS\System32\nvdrswr.lk

[2012-10-13 00:05:52 | 000,194,117 | ---- | M] () – E:\WINDOWS\System32\nvapps.xml

[2012-10-12 22:58:55 | 000,232,512 | ---- | M] (DT Soft Ltd) – E:\WINDOWS\System32\drivers\dtsoftbus01.sys

[2012-10-12 22:54:40 | 000,001,595 | ---- | M] () – E:\Documents and Settings\All Users\Pulpit\DAEMON Tools Pro.lnk

[2012-10-12 22:54:39 | 000,443,448 | ---- | M] () – E:\WINDOWS\System32\drivers\sptd.sys

[2012-10-11 08:49:42 | 000,001,393 | ---- | M] () – E:\WINDOWS\imsins.BAK

[2012-08-29 16:38:52 | 001,266,484 | ---- | M] () – E:\WINDOWS\System32\PerfStringBackup.INI

[2012-08-29 16:38:52 | 000,559,362 | ---- | M] () – E:\WINDOWS\System32\perfh015.dat

[2012-08-29 16:38:52 | 000,496,854 | ---- | M] () – E:\WINDOWS\System32\perfh009.dat

[2012-08-29 16:38:52 | 000,106,426 | ---- | M] () – E:\WINDOWS\System32\perfc015.dat

[2012-08-29 16:38:52 | 000,085,338 | ---- | M] () – E:\WINDOWS\System32\perfc009.dat

[2012-08-29 16:38:03 | 000,000,930 | ---- | M] () – E:\WINDOWS\tasks\Adobe Flash Player Updater.job

[2012-08-29 16:37:09 | 000,001,026 | ---- | M] () – E:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job

[2012-08-29 16:31:40 | 000,000,006 | -H-- | M] () – E:\WINDOWS\tasks\SA.DAT

[2012-08-29 16:31:33 | 000,002,048 | --S- | M] () – E:\WINDOWS\bootstat.dat

[2012-08-29 16:30:39 | 003,932,160 | -H-- | M] () – E:\Documents and Settings\kendzy\ntuser.dat

[2012-08-29 16:30:39 | 000,000,188 | -HS- | M] () – E:\Documents and Settings\kendzy\ntuser.ini

[2012-08-29 15:32:01 | 000,070,016 | ---- | M] () – E:\Documents and Settings\kendzy\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT

[2012-08-29 15:27:13 | 000,274,968 | ---- | M] () – E:\WINDOWS\System32\FNTCACHE.DAT

[2012-08-24 14:00:22 | 000,000,615 | ---- | M] () – E:\WINDOWS\win.ini

[2012-08-24 14:00:22 | 000,000,253 | ---- | M] () – E:\WINDOWS\system.ini

[2012-08-19 14:16:28 | 000,013,646 | ---- | M] () – E:\WINDOWS\System32\wpa.dbl

[2012-08-15 12:38:08 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) – E:\WINDOWS\System32\FlashPlayerApp.exe

[2012-08-15 12:38:08 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) – E:\WINDOWS\System32\FlashPlayerCPLApp.cpl

========== Files Created - No Company Name ==========

[2012-10-26 17:19:54 | 000,000,859 | ---- | C] () – E:\Documents and Settings\All Users\Pulpit\Need For Speed World.lnk

[2012-10-13 01:48:47 | 001,074,636 | ---- | C] () – E:\WINDOWS\System32\nvdrsdb1.bin

[2012-10-13 01:48:47 | 001,074,636 | ---- | C] () – E:\WINDOWS\System32\nvdrsdb0.bin

[2012-10-13 01:48:47 | 000,000,001 | ---- | C] () – E:\WINDOWS\System32\nvdrssel.bin

[2012-10-13 01:48:47 | 000,000,000 | ---- | C] () – E:\WINDOWS\System32\nvdrswr.lk

[2012-10-13 01:48:09 | 002,807,708 | ---- | C] () – E:\WINDOWS\System32\nvdata.data

[2012-10-13 01:48:09 | 000,010,264 | ---- | C] () – E:\WINDOWS\System32\nvinfo.pb

[2012-10-12 22:54:40 | 000,001,595 | ---- | C] () – E:\Documents and Settings\All Users\Pulpit\DAEMON Tools Pro.lnk

[2012-08-06 11:55:52 | 000,000,930 | ---- | C] () – E:\WINDOWS\tasks\Adobe Flash Player Updater.job

[2012-06-25 20:44:00 | 000,153,535 | ---- | C] () – E:\WINDOWS\hpoins14.dat

[2012-06-25 20:44:00 | 000,002,000 | ---- | C] () – E:\WINDOWS\hpomdl14.dat

[2012-05-21 00:29:28 | 000,189,248 | ---- | C] () – E:\WINDOWS\System32\PnkBstrB.exe

[2012-05-21 00:29:26 | 000,075,136 | ---- | C] () – E:\WINDOWS\System32\PnkBstrA.exe

[2012-02-15 09:35:11 | 000,003,072 | ---- | C] () – E:\WINDOWS\System32\iacenc.dll

[2012-02-14 22:42:51 | 000,153,522 | ---- | C] () – E:\WINDOWS\hpoins14.dat.temp

[2012-02-14 22:42:51 | 000,002,000 | ---- | C] () – E:\WINDOWS\hpomdl14.dat.temp

[2012-01-09 16:49:34 | 000,009,728 | ---- | C] () – E:\Documents and Settings\kendzy\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2011-12-06 20:15:01 | 000,000,008 | ---- | C] () – E:\WINDOWS\System32\nvModes.dat

[2011-11-24 15:08:37 | 000,175,616 | ---- | C] () – E:\WINDOWS\System32\unrar.dll

[2011-11-24 15:08:33 | 000,243,200 | ---- | C] () – E:\WINDOWS\System32\xvidvfw.dll

[2011-11-24 15:08:32 | 000,074,752 | ---- | C] () – E:\WINDOWS\System32\ff_vfw.dll

[2011-11-24 15:08:32 | 000,000,714 | ---- | C] () – E:\WINDOWS\System32\ff_vfw.dll.manifest

[2011-11-24 15:05:51 | 000,650,752 | ---- | C] () – E:\WINDOWS\System32\xvidcore.dll

[2011-11-24 15:05:51 | 000,258,048 | ---- | C] () – E:\WINDOWS\System32\libFLAC.dll

[2011-11-23 12:35:24 | 000,017,408 | ---- | C] () – E:\Documents and Settings\kendzy\Ustawienia lokalne\Dane aplikacji\WebpageIcons.db

[2011-10-01 14:03:20 | 000,443,448 | ---- | C] () – E:\WINDOWS\System32\drivers\sptd.sys

[2011-07-30 13:39:37 | 000,001,324 | ---- | C] () – E:\WINDOWS\System32\d3d9caps.dat

[2011-07-04 11:09:12 | 000,070,016 | ---- | C] () – E:\Documents and Settings\kendzy\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT

[2011-07-02 20:03:22 | 006,433,252 | -H-- | C] () – E:\Documents and Settings\kendzy\Ustawienia lokalne\Dane aplikacji\IconCache.db

[2011-07-02 20:01:30 | 000,000,188 | -HS- | C] () – E:\Documents and Settings\kendzy\ntuser.ini

[2011-07-02 20:01:28 | 003,932,160 | -H-- | C] () – E:\Documents and Settings\kendzy\ntuser.dat

[2011-07-02 01:27:27 | 001,266,484 | ---- | C] () – E:\WINDOWS\System32\PerfStringBackup.INI

[2011-07-02 01:27:26 | 000,004,293 | ---- | C] () – E:\WINDOWS\ODBCINST.INI

[2011-07-02 01:26:16 | 000,274,968 | ---- | C] () – E:\WINDOWS\System32\FNTCACHE.DAT

[2011-07-02 00:14:51 | 000,049,152 | R— | C] () – E:\WINDOWS\System32\ChCfg.exe

[2011-07-01 23:41:36 | 000,002,048 | --S- | C] () – E:\WINDOWS\bootstat.dat

[2011-07-01 23:39:55 | 000,000,000 | ---- | C] () – E:\WINDOWS\control.ini

[2011-07-01 23:39:05 | 000,000,488 | RH-- | C] () – E:\WINDOWS\System32\logonui.exe.manifest

[2011-07-01 23:39:01 | 000,000,749 | RH-- | C] () – E:\WINDOWS\System32\cdplayer.exe.manifest

[2011-07-01 23:37:19 | 000,021,856 | ---- | C] () – E:\WINDOWS\System32\emptyregdb.dat

[2011-07-01 23:37:06 | 000,000,037 | ---- | C] () – E:\WINDOWS\vbaddin.ini

[2011-07-01 23:37:06 | 000,000,036 | ---- | C] () – E:\WINDOWS\vb.ini

[2011-07-01 23:35:57 | 000,026,717 | ---- | C] () – E:\WINDOWS\System32\tslabels.ini

[2011-07-01 23:35:55 | 000,003,813 | ---- | C] () – E:\WINDOWS\System32\msdtcprf.ini

[2011-04-09 18:55:28 | 000,179,261 | ---- | C] () – E:\WINDOWS\System32\xlive.dll.cat

========== LOP Check ==========

[2012-08-28 23:38:07 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\036DFF6100015F24353CF89781CB3F95

[2011-08-16 16:14:19 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\AVAST Software

[2012-10-09 20:24:43 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search

[2011-08-21 23:02:09 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\Codemasters

[2012-03-13 21:18:36 | 000,000,000 | -H-D | M] – E:\Documents and Settings\All Users\Dane aplikacji\Common Files

[2011-07-06 18:20:58 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite

[2012-10-12 22:54:05 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Pro

[2011-08-21 23:02:10 | 000,000,000 | -HSD | M] – E:\Documents and Settings\All Users\Dane aplikacji\DSS

[2011-10-23 13:28:21 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\EA Core

[2012-02-23 17:03:25 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\EA Logs

[2012-10-26 17:19:50 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts

[2011-07-02 16:29:11 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10

[2012-04-30 17:36:34 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\GG

[2011-09-05 23:04:37 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\InstallMate

[2011-11-23 14:43:36 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\KONAMI

[2012-03-08 21:46:41 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\OpenFM

[2012-02-20 21:56:30 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\Origin

[2011-08-19 20:49:48 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\Premium

[2012-08-29 16:29:16 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer

[2012-05-21 00:33:39 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\Ubisoft

[2012-06-22 19:20:55 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\wanted

[2012-08-24 19:12:55 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\WEBZEN

[2012-06-27 16:03:13 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\WinZip

[2012-10-09 21:37:40 | 000,000,000 | —D | M] – E:\Documents and Settings\All Users\Dane aplikacji\WOP

[2012-03-19 10:22:37 | 000,000,000 | —D | M] – E:\Documents and Settings\kendzy\Dane aplikacji\BitComet

[2011-07-06 18:20:58 | 000,000,000 | —D | M] – E:\Documents and Settings\kendzy\Dane aplikacji\DAEMON Tools Lite

[2012-10-17 19:57:26 | 000,000,000 | —D | M] – E:\Documents and Settings\kendzy\Dane aplikacji\DAEMON Tools Pro

[2011-07-04 20:46:29 | 000,000,000 | —D | M] – E:\Documents and Settings\kendzy\Dane aplikacji\Gadu-Gadu 10

[2012-03-02 14:56:37 | 000,000,000 | —D | M] – E:\Documents and Settings\kendzy\Dane aplikacji\GanymedeNet

[2012-05-04 20:09:39 | 000,000,000 | —D | M] – E:\Documents and Settings\kendzy\Dane aplikacji\GG

[2011-10-29 13:07:08 | 000,000,000 | —D | M] – E:\Documents and Settings\kendzy\Dane aplikacji\Might & Magic Heroes VI

[2011-07-07 16:49:39 | 000,000,000 | —D | M] – E:\Documents and Settings\kendzy\Dane aplikacji\OpenFM

[2011-07-03 20:45:20 | 000,000,000 | —D | M] – E:\Documents and Settings\kendzy\Dane aplikacji\Opera

[2012-03-08 16:07:34 | 000,000,000 | —D | M] – E:\Documents and Settings\kendzy\Dane aplikacji\Podatnik.info

[2011-09-20 16:00:20 | 000,000,000 | —D | M] – E:\Documents and Settings\mama\Dane aplikacji\Opera

[2012-03-13 21:18:48 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\AVG Secure Search

[2012-08-14 19:37:57 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\BitComet

[2012-10-24 19:50:36 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\cacaoweb

[2011-11-25 19:07:44 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\DAEMON Tools Lite

[2012-10-12 23:02:11 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\DAEMON Tools Pro

[2011-07-02 16:29:20 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\Gadu-Gadu 10

[2011-09-02 00:25:11 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\Leadertech

[2011-12-29 20:34:04 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\Might & Magic Heroes VI

[2012-10-20 12:57:59 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\MotioninJoy

[2012-02-12 21:09:21 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\Need for Speed World

[2011-08-29 14:52:10 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\OpenFM

[2011-09-03 12:22:39 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\Opera

[2012-02-20 21:09:27 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\Origin

[2012-05-21 00:29:25 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\PunkBuster

[2012-01-30 21:57:29 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\SumatraPDF

[2011-09-06 20:04:43 | 000,000,000 | —D | M] – E:\Documents and Settings\mts\Dane aplikacji\Ubisoft

[2011-08-11 07:59:49 | 000,000,000 | —D | M] – E:\Documents and Settings\tata\Dane aplikacji\Gadu-Gadu 10

[2011-07-12 20:19:29 | 000,000,000 | —D | M] – E:\Documents and Settings\tata\Dane aplikacji\Opera

========== Purity Check ==========

< End of report >

– Dodane 29.08.2012 (Śr) 16:48 –

http://wklej.org/id/820940/

– Dodane 29.08.2012 (Śr) 16:57 –

sory za ten spam tutaj jest raport z usuwania:

http://wklej.org/id/820940/

Atis · 29 Sierpień 2012 15:44

Kliknij w przycisk Edytuj i usuń ten log wklejony do posta.

Przecież napisałem żebyś odinstalował Yontoo.

Wklej i kliknij Wykonaj skrypt:

Pokaż raport z usuwania i nowy log Skanuj.