Proszę o pomoc z usunięciem vshare toolbar
Przedstawiam log OTL
Log źle wklejony - brak ukośników \
Nie wklejasz loga poprzez Przeglądaj…, tylko ręcznie kopiujesz jego zawartość w pole do wklejania tekstu.
a teraz
przepraszam za kłopot ale pierwszy raz w życiu piszę na jakimkolwiek forum
Sprawdź go na --> http://www.virustotal.com/
i podaj wynik.
Wklej w białe okienko OTL i naciśnij wykonaj skrypt:
tak sie spytam, skad chcesz go usunac? pod co sie podpial? rozumiem, ze pod przegladarka, jesli tak to jaka? jesli firefox to masz, narzedzia->dodatki i odinstaluj
Witam wszystkich.
mam bardzo podobny problem - vshare toolbar. Nie jestem w stanie się go pozbyć z firefoxa żadnym sposobem. Proszę o pomoc. Tu log z OTL : http://www.wklejto.pl/89260
zooy , wklej w OTL i naciśnij wykonaj skrypt:
dajesz log z usuwania i nowy log z OTL
Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:
Kliknij Wykonaj skrypt…Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie. Następnie uruchom OTL ponownie, tym razem kliknij (Skanuj).
Pokaż nowy log OTL.txt oraz raport z usuwania.
All processes killed
========== OTL ==========
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page| /E : value set successfully!
Prefs.js: “Web Search…” removed from browser.search.defaultenginename
Prefs.js: “http://vshare.toolbarhome.com/?hp=df” removed from browser.startup.homepage
Prefs.js: vshare@toolbar:1.0.0 removed from extensions.enabledItems
Folder C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\hl9mgogo.default\extensions\vshare@toolbar\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{07B18EA9-A523-4961-B6BB-170DE4475CCA} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{07B18EA9-A523-4961-B6BB-170DE4475CCA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}\ not found.
========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\ deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Ania
->Temp folder emptied: 1298670694 bytes
->Temporary Internet Files folder emptied: 165768319 bytes
->Java cache emptied: 3760818 bytes
->FireFox cache emptied: 53055372 bytes
->Flash cache emptied: 130749 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56504 bytes
– Dodane 30.04.2011 (So) 20:07 –
OTL logfile created on: 4/30/2011 7:57:26 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Ania\Pobrane
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 30.00% Memory free
4.00 Gb Paging File | 2.00 Gb Available in Paging File | 57.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 58.22 Gb Total Space | 10.57 Gb Free Space | 18.16% Space Free | Partition Type: NTFS
Drive D: | 160.02 Gb Total Space | 142.00 Gb Free Space | 88.74% Space Free | Partition Type: NTFS
Computer Name: KACZKA | User Name: Ania | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/04/30 19:34:11 | 000,580,608 | ---- | M] (OldTimer Tools) – C:\Users\Ania\Pobrane\OTL_3.2.22.3(dobreprogramy.pl).exe
PRC - [2011/04/14 18:59:13 | 000,924,632 | ---- | M] (Mozilla Corporation) – C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2010/12/21 12:53:40 | 001,483,264 | ---- | M] (Nokia) – C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
PRC - [2010/12/08 15:31:06 | 000,628,736 | ---- | M] (Nokia) – C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
PRC - [2009/12/08 21:34:36 | 003,054,136 | ---- | M] (ASUS) – C:\Windows\AsScrPro.exe
PRC - [2009/11/25 01:51:40 | 000,081,000 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009/11/25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009/11/25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009/11/25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009/11/25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009/10/30 13:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd) – C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
PRC - [2009/10/27 10:15:02 | 000,120,832 | ---- | M] (Nokia) – C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2009/09/16 03:34:34 | 001,593,344 | ---- | M] () – C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
PRC - [2009/09/03 20:33:14 | 000,054,400 | ---- | M] () – C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
PRC - [2009/08/20 06:31:48 | 000,170,624 | ---- | M] (ASUS) – C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
PRC - [2009/08/17 19:58:46 | 006,859,392 | ---- | M] (ASUS) – C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
PRC - [2009/08/13 00:20:46 | 000,178,816 | ---- | M] (ASUS) – C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe
PRC - [2009/06/24 22:30:18 | 000,272,952 | ---- | M] (ASUSTek Computer Inc.) – C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
PRC - [2009/06/19 20:29:42 | 000,105,016 | ---- | M] (ASUS) – C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
PRC - [2009/06/19 20:29:26 | 002,488,888 | ---- | M] (ASUS) – C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
PRC - [2009/06/16 03:30:42 | 000,084,536 | ---- | M] (ASUS) – C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe
PRC - [2009/05/19 01:58:38 | 000,305,720 | ---- | M] (ASUS) – C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
PRC - [2008/12/23 03:15:34 | 000,174,648 | ---- | M] (ASUS) – C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe
PRC - [2008/08/14 07:00:08 | 000,113,208 | ---- | M] (ASUS) – C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe
PRC - [2008/08/14 06:59:56 | 000,301,624 | ---- | M] () – C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe
PRC - [2008/07/22 18:33:28 | 000,544,768 | ---- | M] (Hewlett-Packard Development Co. L.P.) – C:\Program Files (x86)\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe
PRC - [2008/07/19 05:52:16 | 000,104,936 | ---- | M] (CyberLink) – C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
PRC - [2008/03/31 12:55:48 | 000,225,280 | ---- | M] (ASUSTek Computer Inc.) – C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
PRC - [2007/11/30 21:20:44 | 000,051,768 | ---- | M] () – C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
PRC - [2007/11/20 14:50:36 | 001,145,400 | ---- | M] (ASUS) – C:\Program Files\ASUS\Net4Switch\Net4Switch.exe
PRC - [2007/08/08 10:08:40 | 000,094,208 | ---- | M] () – C:\Program Files\ATKGFNEX\GFNEXSrv.exe
PRC - [2007/08/03 13:24:54 | 000,125,496 | ---- | M] () – C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
========== Modules (SafeList) ==========
MOD - [2011/04/30 19:34:11 | 000,580,608 | ---- | M] (OldTimer Tools) – C:\Users\Ania\Pobrane\OTL_3.2.22.3(dobreprogramy.pl).exe
MOD - [2010/08/21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) – C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV: 64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] – C:\Program Files\Windows Live\Mesh\wlcrasvc.exe – (wlcrasvc)
SRV: 64bit: - [2009/11/25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] – C:\Program Files\Alwil Software\Avast4\ashServ.exe – (avast! Antivirus)
SRV: 64bit: - [2009/11/25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] – C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe – (avast! Mail Scanner)
SRV: 64bit: - [2009/11/25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] – C:\Program Files\Alwil Software\Avast4\ashWebSv.exe – (avast! Web Scanner)
SRV: 64bit: - [2009/11/25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] – C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe – (aswUpdSv)
SRV: 64bit: - [2009/09/17 21:36:34 | 000,359,552 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] – C:\Windows\SysNative\FBAgent.exe – (AFBAgent)
SRV: 64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] – C:\Program Files\Windows Defender\MpSvc.dll – (WinDefend)
SRV: 64bit: - [2007/08/08 10:08:40 | 000,094,208 | ---- | M] () [Auto | Running] – C:\Program Files\ATKGFNEX\GFNEXSrv.exe – (ATKGFNEXSrv)
SRV: 64bit: - [2007/08/03 13:24:54 | 000,125,496 | ---- | M] () [On_Demand | Running] – C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe – (spmgr)
SRV - [2010/12/08 15:31:06 | 000,628,736 | ---- | M] (Nokia) [On_Demand | Running] – C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe – (ServiceLayer)
SRV - [2009/09/15 03:03:42 | 000,044,312 | ---- | M] () [Auto | Running] – C:\Program Files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe – (OberonGameConsoleService)
SRV - [2009/06/16 03:30:42 | 000,084,536 | ---- | M] (ASUS) [Auto | Running] – C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe – (ASLDRService)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] – C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe – (clr_optimization_v2.0.50727_32)
SRV - [2008/03/31 12:55:48 | 000,225,280 | ---- | M] (ASUSTek Computer Inc.) [On_Demand | Running] – C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe – (ADSMService)
========== Driver Services (SafeList) ==========
DRV: 64bit: - [2011/03/11 08:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\amdsata.sys – (amdsata)
DRV: 64bit: - [2011/03/11 08:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] – C:\Windows\SysNative\drivers\amdxata.sys – (amdxata)
DRV: 64bit: - [2010/09/23 00:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\fssfltr.sys – (fssfltr)
DRV: 64bit: - [2010/07/30 15:18:02 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys – (upperdev)
DRV: 64bit: - [2010/07/30 15:18:00 | 000,026,624 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\ccdcmbox64.sys – (nmwcdc)
DRV: 64bit: - [2010/07/30 15:17:56 | 000,019,456 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\ccdcmbx64.sys – (nmwcd)
DRV: 64bit: - [2010/03/06 11:43:22 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] – C:\Windows\SysNative\drivers\sptd.sys – (sptd)
DRV: 64bit: - [2009/11/25 01:50:05 | 000,022,096 | ---- | M] (ALWIL Software) [File_System | Auto | Running] – C:\Windows\SysNative\drivers\aswFsBlk.sys – (aswFsBlk)
DRV: 64bit: - [2009/11/25 01:49:56 | 000,065,616 | ---- | M] (ALWIL Software) [File_System | Auto | Running] – C:\Windows\SysNative\drivers\aswMonFlt.sys – (aswMonFlt)
DRV: 64bit: - [2009/10/05 03:33:59 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\athrx.sys – (athr)
DRV: 64bit: - [2009/08/21 08:48:17 | 000,044,032 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\AmUStor.sys – (AmUStor)
DRV: 64bit: - [2009/08/18 05:44:19 | 000,236,544 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\Rt64win7.sys – (RTL8167)
DRV: 64bit: - [2009/07/20 11:29:39 | 000,015,416 | ---- | M] ( ) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\kbfiltr.sys – (kbfiltr)
DRV: 64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\amdsbs.sys – (amdsbs)
DRV: 64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\lsi_sas2.sys – (LSI_SAS2)
DRV: 64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\HpSAMD.sys – (HpSAMD)
DRV: 64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\stexstor.sys – (stexstor)
DRV: 64bit: - [2009/07/14 02:06:32 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\usbser.sys – (usbser)
DRV: 64bit: - [2009/07/09 05:11:41 | 000,140,800 | ---- | M] (ELAN Microelectronic Corp.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\ETD.sys – (ETD)
DRV: 64bit: - [2009/06/10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] – C:\Windows\SysNative\wbem\ntfs.mof – (Ntfs)
DRV: 64bit: - [2009/06/10 22:35:57 | 000,056,832 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\SiSG664.sys – (SiSGbeLH)
DRV: 64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\evbda.sys – (ebdrv)
DRV: 64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\bxvbda.sys – (b06bdrv)
DRV: 64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\b57nd60a.sys – (b57nd60a)
DRV: 64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\hcw85cir.sys – (hcw85cir)
DRV: 64bit: - [2009/06/05 12:15:55 | 001,806,400 | ---- | M] () [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\snp2uvc.sys – (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV: 64bit: - [2009/05/13 03:07:19 | 000,015,928 | ---- | M] (ASUS) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\ATK64AMD.sys – (MTsensor)
DRV: 64bit: - [2008/08/28 12:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\pccsmcfdx64.sys – (pccsmcfd)
DRV: 64bit: - [2008/05/24 03:27:28 | 000,154,168 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] – C:\Windows\SysNative\drivers\WimFltr.sys – (WimFltr)
DRV: 64bit: - [2007/08/03 06:26:48 | 000,017,464 | ---- | M] () [Kernel | Auto | Running] – C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys – (ghaio)
DRV: 64bit: - [2007/07/24 21:11:32 | 000,014,904 | ---- | M] () [Kernel | Auto | Running] – C:\Program Files\ATKGFNEX\ASMMAP64.sys – (ASMMAP64)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.pl/http://www.google.pl/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0
========== FireFox ==========
FF - prefs.js…browser.search.defaultenginename: “”
FF - prefs.js…browser.search.useDBForOrder: true
FF - prefs.js…browser.startup.homepage: “http://www.google.pl/firefox?client=firefox-a&rls=org.mozilla:pl:official”
FF - prefs.js…extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.4.0046
FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js…extensions.enabledItems: bkmrksync@nokia.com:1.0.0.736
FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js…extensions.enabledItems: smartwebprinting@hp.com:4.51
FF - HKLM\software\mozilla\Firefox\Extensions\bkmrksync@nokia.com: C:\Program Files (x86)\Nokia\Nokia PC Suite 7\bkmrksync\ [2011/02/11 13:10:22 | 000,000,000 | —D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011/04/13 20:29:57 | 000,000,000 | —D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/04/30 12:31:18 | 000,000,000 | —D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/04/30 12:31:15 | 000,000,000 | —D | M]
[2009/12/14 20:04:44 | 000,000,000 | —D | M] (No name found) – C:\Users\Ania\AppData\Roaming\mozilla\Extensions
[2011/04/30 19:46:07 | 000,000,000 | —D | M] (No name found) – C:\Users\Ania\AppData\Roaming\mozilla\Firefox\Profiles\e2gsn7k6.default\extensions
[2011/04/30 19:46:07 | 000,000,000 | —D | M] (“DAEMON Tools Toolbar”) – C:\Users\Ania\AppData\Roaming\mozilla\Firefox\Profiles\e2gsn7k6.default\extensions\DTToolbar@toolbarnet.com
[2010/03/06 11:44:03 | 000,002,055 | ---- | M] () – C:\Users\Ania\AppData\Roaming\Mozilla\Firefox\Profiles\e2gsn7k6.default\searchplugins\daemon-search.xml
[2011/04/02 16:46:09 | 000,001,583 | ---- | M] () – C:\Users\Ania\AppData\Roaming\Mozilla\Firefox\Profiles\e2gsn7k6.default\searchplugins\web-search.xml
[2011/04/30 12:31:18 | 000,000,000 | —D | M] (No name found) – C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/03/30 20:15:39 | 000,000,000 | —D | M] (Skype extension for Firefox) – C:\Program Files (x86)\Mozilla Firefox\extensions{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010/06/08 17:47:50 | 000,000,000 | —D | M] (Java Console) – C:\Program Files (x86)\Mozilla Firefox\extensions{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/08/12 15:32:02 | 000,000,000 | —D | M] (Java Console) – C:\Program Files (x86)\Mozilla Firefox\extensions{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/10/19 19:14:42 | 000,000,000 | —D | M] (Java Console) – C:\Program Files (x86)\Mozilla Firefox\extensions{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/01/11 14:20:29 | 000,000,000 | —D | M] (Java Console) – C:\Program Files (x86)\Mozilla Firefox\extensions{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/02/21 08:58:37 | 000,000,000 | —D | M] (Java Console) – C:\Program Files (x86)\Mozilla Firefox\extensions{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
File not found (No name found) –
[2011/04/14 18:59:14 | 000,142,296 | ---- | M] (Mozilla Foundation) – C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
[2009/07/17 10:40:12 | 000,704,512 | ---- | M] (BitComet) – C:\Program Files (x86)\Mozilla Firefox\plugins\npBitCometAgent.dll
[2011/02/02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/01/01 10:00:00 | 000,002,767 | ---- | M] () – C:\Program Files (x86)\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010/01/01 10:00:00 | 000,001,406 | ---- | M] () – C:\Program Files (x86)\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010/01/01 10:00:00 | 000,000,917 | ---- | M] () – C:\Program Files (x86)\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010/01/01 10:00:00 | 000,000,858 | ---- | M] () – C:\Program Files (x86)\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010/01/01 10:00:00 | 000,001,183 | ---- | M] () – C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010/01/01 10:00:00 | 000,001,683 | ---- | M] () – C:\Program Files (x86)\Mozilla Firefox\searchplugins\wp-pl.xml
O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.3.7.16.dll (BitComet)
O2 - BHO: (Bing Bar BHO) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Users\Ania\AppData\Roaming\Nowe Gadu-Gadu_userdata\ggbho.1.dll (GG Network S.A.)
O3: 64bit: - HKLM…\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3: 64bit: - HKLM…\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM…\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM…\Toolbar: (@C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation)
O3 - HKLM…\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU…\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3: 64bit: - HKCU…\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKCU…\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O4: 64bit: - HKLM…\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (AlcorMicro Co., Ltd.)
O4: 64bit: - HKLM…\Run: [EeeStorageBackup] C:\Program Files (x86)\ASUS\Asus WebStorage\BackupService.exe (ECAREME)
O4: 64bit: - HKLM…\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
O4: 64bit: - HKLM…\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM…\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe (ASUS)
O4 - HKLM…\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (ASUS)
O4 - HKLM…\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
O4 - HKLM…\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM…\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (ASUS)
O4 - HKLM…\Run: [setwallpaper] File not found
O4 - HKLM…\Run: [updateLBPShortCut] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM…\Run: [updateP2GoShortCut] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKCU…\Run: [bitComet] C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O4 - HKCU…\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU…\Run: [EA Core] File not found
O4 - HKCU…\Run: [PC Suite Tray] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0
O8: 64bit: - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O8: 64bit: - Extra context menu item: Pobierz wszystko za pomocą BitComet - C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O8: 64bit: - Extra context menu item: Pobierz za pomocą BitComet - C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Pobierz za pomocą BitComet - C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.3.7.16.dll (BitComet)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 77.237.0.3 217.113.224.36
O18: 64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18: 64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18: 64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18: 64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18: 64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18: 64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20: 64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20: 64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20: 64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21: 64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35: 64bit: - HKLM…comfile [open] – “%1” %*
O35: 64bit: - HKLM…exefile [open] – “%1” %*
O35 - HKLM…comfile [open] – “%1” %*
O35 - HKLM…exefile [open] – “%1” %*
O37: 64bit: - HKLM…com [@ = comfile] – “%1” %*
O37: 64bit: - HKLM…exe [@ = exefile] – “%1” %*
O37 - HKLM…com [@ = comfile] – “%1” %*
O37 - HKLM…exe [@ = exefile] – “%1” %*
========== Files/Folders - Created Within 30 Days ==========
[2011/04/30 19:38:42 | 000,000,000 | —D | C] – C:_OTL
[2011/04/30 12:24:28 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{936FD3F6-6C0D-450A-ACF8-E903F8277AFF}
[2011/04/29 16:37:42 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{DF8AAD8D-3E24-4D04-AB9E-B425C5D91FBE}
[2011/04/28 16:57:45 | 002,870,272 | ---- | C] (Microsoft Corporation) – C:\Windows\explorer.exe
[2011/04/28 16:57:44 | 002,614,784 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\explorer.exe
[2011/04/28 16:57:42 | 000,662,528 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\XpsPrint.dll
[2011/04/28 16:57:42 | 000,442,880 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\XpsPrint.dll
[2011/04/28 16:57:11 | 002,566,144 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\esent.dll
[2011/04/28 16:57:11 | 000,107,904 | ---- | C] (Advanced Micro Devices) – C:\Windows\SysNative\drivers\amdsata.sys
[2011/04/28 16:57:10 | 001,686,016 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\esent.dll
[2011/04/28 16:57:10 | 000,187,264 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\drivers\storport.sys
[2011/04/28 16:57:10 | 000,027,008 | ---- | C] (Advanced Micro Devices) – C:\Windows\SysNative\drivers\amdxata.sys
[2011/04/28 16:57:09 | 000,096,768 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\fsutil.exe
[2011/04/28 16:57:09 | 000,074,240 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\fsutil.exe
[2011/04/28 16:56:53 | 000,031,232 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\prevhost.exe
[2011/04/28 16:56:53 | 000,031,232 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\prevhost.exe
[2011/04/28 16:48:34 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{9206BECC-9DED-4DD2-B02D-C37D241FBD04}
[2011/04/27 09:49:35 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{B1713E5B-E46B-4F66-B131-55D6F1FC8B54}
[2011/04/25 17:59:21 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{A01B90FF-8FA1-4481-8BCA-098D89897D75}
[2011/04/24 11:00:29 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{B0A982F2-1573-41A8-AFA4-F118E5806326}
[2011/04/23 17:20:35 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{A153EAC6-4F04-47D1-8EF2-078D9A121FE4}
[2011/04/21 15:00:54 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{BB27A09E-8136-4CAF-B5B7-C21EF0F4CA28}
[2011/04/19 15:02:56 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{4A1AB108-5725-43ED-B547-2084F8F5E674}
[2011/04/18 09:34:05 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{586D35D8-5A41-4A1D-ACDB-CFE427A58EAA}
[2011/04/17 15:34:46 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{92273365-189D-43DE-A896-A36E3F4BD339}
[2011/04/17 07:16:40 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{A69BE999-6A9E-4F71-A460-B89362AC0041}
[2011/04/16 14:30:57 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{581BE4C7-FC68-441F-B0F6-16FE670A80F9}
[2011/04/15 19:52:29 | 000,000,000 | —D | C] – C:\Program Files (x86)\MSXML 4.0
[2011/04/15 19:19:12 | 000,476,160 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\XpsGdiConverter.dll
[2011/04/15 19:19:12 | 000,288,256 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\XpsGdiConverter.dll
[2011/04/15 19:19:08 | 000,852,480 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\jscript.dll
[2011/04/15 19:19:07 | 000,716,800 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\jscript.dll
[2011/04/15 19:19:07 | 000,612,352 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\vbscript.dll
[2011/04/15 19:19:00 | 001,359,872 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\mfc42u.dll
[2011/04/15 19:18:59 | 001,395,712 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\mfc42.dll
[2011/04/15 19:18:59 | 001,137,664 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\mfc42.dll
[2011/04/15 19:18:58 | 001,164,288 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\mfc42u.dll
[2011/04/15 19:18:53 | 000,367,104 | ---- | C] (Adobe Systems Incorporated) – C:\Windows\SysNative\atmfd.dll
[2011/04/15 19:18:53 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) – C:\Windows\SysWow64\atmfd.dll
[2011/04/15 19:18:52 | 000,046,080 | ---- | C] (Adobe Systems) – C:\Windows\SysNative\atmlib.dll
[2011/04/15 19:18:52 | 000,034,304 | ---- | C] (Adobe Systems) – C:\Windows\SysWow64\atmlib.dll
[2011/04/15 19:18:24 | 000,599,040 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\msfeeds.dll
[2011/04/15 19:18:23 | 000,703,488 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\msfeeds.dll
[2011/04/15 19:18:22 | 000,247,808 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\ieui.dll
[2011/04/15 19:18:22 | 000,176,640 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\ieui.dll
[2011/04/15 19:18:21 | 000,256,000 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\iepeers.dll
[2011/04/15 19:18:21 | 000,185,856 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\iepeers.dll
[2011/04/15 19:18:21 | 000,097,280 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\mshtmled.dll
[2011/04/15 19:18:21 | 000,067,072 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\mshtmled.dll
[2011/04/15 19:18:20 | 000,057,856 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\licmgr10.dll
[2011/04/15 19:18:19 | 000,482,816 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\html.iec
[2011/04/15 19:18:19 | 000,386,048 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\html.iec
[2011/04/15 19:18:19 | 000,044,544 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\licmgr10.dll
[2011/04/15 19:18:19 | 000,012,800 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\msfeedssync.exe
[2011/04/15 19:18:19 | 000,012,288 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\msfeedssync.exe
[2011/04/15 19:18:02 | 000,356,352 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\dnsapi.dll
[2011/04/15 19:18:02 | 000,030,208 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\dnscacheugc.exe
[2011/04/15 19:18:02 | 000,028,672 | ---- | C] (Microsoft Corporation) – C:\Windows\SysWow64\dnscacheugc.exe
[2011/04/15 19:17:55 | 000,603,976 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\winload.exe
[2011/04/15 19:17:54 | 000,640,896 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\winload.efi
[2011/04/15 19:17:54 | 000,556,928 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\winresume.efi
[2011/04/15 19:17:54 | 000,518,160 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\winresume.exe
[2011/04/15 19:17:54 | 000,020,352 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\kdusb.dll
[2011/04/15 19:17:54 | 000,019,328 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\kd1394.dll
[2011/04/15 19:17:54 | 000,017,792 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\kdcom.dll
[2011/04/15 19:17:51 | 000,267,776 | ---- | C] (Microsoft Corporation) – C:\Windows\SysNative\FXSCOVER.exe
[2011/04/15 08:01:09 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{5656AD74-5EA8-40AA-A7FD-8CA0B5E24B1C}
[2011/04/14 07:57:42 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{8EB26573-E19B-4374-B675-8C1831CDE38F}
[2011/04/13 20:34:14 | 000,000,000 | —D | C] – C:\ProgramData\WEBREG
[2011/04/13 20:34:04 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Roaming\HP
[2011/04/13 20:33:51 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local\HP
[2011/04/13 20:32:33 | 000,000,000 | —D | C] – C:\ProgramData\Hewlett-Packard
[2011/04/13 20:28:05 | 000,000,000 | —D | C] – C:\ProgramData\HP Product Assistant
[2011/04/13 20:25:41 | 000,000,000 | —D | C] – C:\Program Files (x86)\Common Files\HP
[2011/04/13 20:25:29 | 000,000,000 | —D | C] – C:\Program Files (x86)\Common Files\Hewlett-Packard
[2011/04/13 20:25:04 | 000,000,000 | —D | C] – C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
[2011/04/13 20:24:08 | 000,000,000 | —D | C] – C:\Program Files (x86)\HP
[2011/04/13 20:24:07 | 000,000,000 | -H-D | C] – C:\Config.Msi
[2011/04/13 20:22:09 | 000,000,000 | —D | C] – C:\ProgramData\HP
[2011/04/13 20:21:47 | 000,938,496 | ---- | C] (Hewlett-Packard) – C:\Windows\SysNative\hpowiax7.dll
[2011/04/13 20:21:47 | 000,740,864 | ---- | C] (Hewlett-Packard Co.) – C:\Windows\SysNative\hpotscl6.dll
[2011/04/13 20:21:47 | 000,642,360 | ---- | C] (Hewlett-Packard) – C:\Windows\SysNative\hpzids40.dll
[2011/04/13 20:21:47 | 000,551,424 | ---- | C] (Hewlett-Packard) – C:\Windows\SysNative\hppldcoi.dll
[2011/04/13 20:21:47 | 000,505,344 | ---- | C] (Hewlett-Packard Co.) – C:\Windows\SysNative\hpovst15.dll
[2011/04/13 16:10:39 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{9B95AA57-C861-4DA4-B75F-0FC60A8AC731}
[2011/04/11 17:17:16 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{B322B59B-E2F5-42B1-9594-D058D43767AB}
[2011/04/10 05:58:13 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{0E5CCEFB-5A52-4746-A547-BD6F78D4446A}
[2011/04/09 06:45:40 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{1A49ECB9-6BFA-438A-8101-6CDCB5243267}
[2011/04/08 10:36:21 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{8E7EB177-E68D-4309-B425-3D85B9E8F448}
[2011/04/07 16:34:50 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{A451754E-68AF-4432-813A-E74F2A37F7A5}
[2011/04/06 16:58:22 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{20FBAA92-D15B-4083-893A-EA0DAB7D3FBF}
[2011/04/05 13:22:26 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{C51120D1-BD68-48D1-A5F7-17FF23650686}
[2011/04/04 12:11:16 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{9A5F629A-16A5-4A07-83DD-6B8C3DED6A9B}
[2011/04/03 09:38:37 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{E26159E9-8E54-4185-B897-A3B8121E2EAA}
[2011/04/02 11:09:40 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{6EF0FA36-301E-4CBD-BF5F-2F0B76E0124A}
[2011/04/01 11:10:18 | 000,000,000 | —D | C] – C:\Users\Ania\AppData\Local{4D1EF236-E39B-4E0D-A056-C0B4819576A5}
========== Files - Modified Within 30 Days ==========
[2011/04/30 19:57:38 | 000,010,240 | -H-- | M] () – C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/04/30 19:57:38 | 000,010,240 | -H-- | M] () – C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/04/30 19:50:34 | 000,001,040 | ---- | M] () – C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/04/30 19:50:08 | 000,067,584 | --S- | M] () – C:\Windows\bootstat.dat
[2011/04/30 19:50:00 | 1610,035,200 | -HS- | M] () – C:\hiberfil.sys
[2011/04/30 19:10:00 | 000,001,044 | ---- | M] () – C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/04/30 12:31:20 | 000,001,104 | ---- | M] () – C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/04/27 09:57:05 | 001,523,412 | ---- | M] () – C:\Windows\SysNative\PerfStringBackup.INI
[2011/04/27 09:57:05 | 000,687,828 | ---- | M] () – C:\Windows\SysNative\perfh015.dat
[2011/04/27 09:57:05 | 000,607,190 | ---- | M] () – C:\Windows\SysNative\perfh009.dat
[2011/04/27 09:57:05 | 000,131,382 | ---- | M] () – C:\Windows\SysNative\perfc015.dat
[2011/04/27 09:57:05 | 000,103,568 | ---- | M] () – C:\Windows\SysNative\perfc009.dat
[2011/04/23 20:19:31 | 000,027,767 | ---- | M] () – C:\Users\Ania\Documents\arek nieudacznik.rtf
[2011/04/22 18:45:39 | 000,001,976 | ---- | M] () – C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/04/17 15:51:29 | 000,000,934 | ---- | M] () – C:\Users\Ania\Documents\ISO1_DVD.nri
[2011/04/16 14:28:23 | 000,435,808 | ---- | M] () – C:\Windows\SysNative\FNTCACHE.DAT
[2011/04/14 07:56:35 | 000,001,926 | ---- | M] () – C:\Windows\SysNative\AutoRunFilter.ini
[2011/04/13 20:33:44 | 000,172,049 | ---- | M] () – C:\Windows\hpoins27.dat
[2011/04/13 20:29:09 | 000,002,129 | ---- | M] () – C:\Users\Public\Desktop\HP Photosmart Essential 3.5.lnk
[2011/04/13 20:28:02 | 000,001,343 | ---- | M] () – C:\Users\Public\Desktop\Centrum obsługi HP.lnk
[2011/04/13 20:27:46 | 000,001,191 | ---- | M] () – C:\Users\Public\Desktop\Zakup materiałów eksploatacyjnych HP.lnk
[2011/04/13 20:27:01 | 000,002,061 | ---- | M] () – C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
========== Files Created - No Company Name ==========
[2011/04/30 12:31:20 | 000,001,116 | ---- | C] () – C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/04/17 15:49:52 | 000,000,934 | ---- | C] () – C:\Users\Ania\Documents\ISO1_DVD.nri
[2011/04/13 20:29:09 | 000,002,129 | ---- | C] () – C:\Users\Public\Desktop\HP Photosmart Essential 3.5.lnk
[2011/04/13 20:28:00 | 000,001,343 | ---- | C] () – C:\Users\Public\Desktop\Centrum obsługi HP.lnk
[2011/04/13 20:27:44 | 000,001,191 | ---- | C] () – C:\Users\Public\Desktop\Zakup materiałów eksploatacyjnych HP.lnk
[2011/04/13 20:27:01 | 000,002,061 | ---- | C] () – C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2011/04/13 20:22:34 | 000,172,049 | ---- | C] () – C:\Windows\hpoins27.dat
[2011/04/13 20:22:34 | 000,000,442 | ---- | C] () – C:\Windows\hpomdl27.dat
[2010/10/14 02:36:44 | 000,179,263 | ---- | C] () – C:\Windows\SysWow64\xlive.dll.cat
[2010/06/16 20:59:57 | 000,002,432 | ---- | C] () – C:\Users\Ania\AppData\Local\TempWb1952.html
[2010/06/16 20:59:57 | 000,002,089 | ---- | C] () – C:\Users\Ania\AppData\Local\TempiA1952.html
[2010/03/09 13:32:29 | 000,007,605 | ---- | C] () – C:\Users\Ania\AppData\Local\Resmon.ResmonCfg
[2010/01/27 19:37:26 | 000,000,049 | ---- | C] () – C:\Windows\NeroDigital.ini
[2009/12/14 20:34:50 | 000,000,056 | -H-- | C] () – C:\ProgramData\ezsidmv.dat
[2009/12/08 20:27:11 | 012,608,420 | ---- | C] () – C:\Users\Ania\AppData\Roaming\UserTile.png
[2009/12/08 14:05:10 | 000,000,024 | ---- | C] () – C:\Windows\ATKPF.ini
[2009/12/08 13:53:59 | 000,010,752 | ---- | C] () – C:\Users\Ania\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/11/03 19:21:27 | 000,053,248 | ---- | C] () – C:\Windows\SysWow64\LogonStart.dll
[2009/11/03 19:02:40 | 000,131,368 | ---- | C] () – C:\ProgramData\FullRemove.exe
[2009/08/19 10:33:09 | 000,018,432 | ---- | C] () – C:\Windows\OOBEPlayer.exe
[2009/08/19 10:33:09 | 000,000,031 | ---- | C] () – C:\Windows\OOBEPlayer.ini
[2009/07/29 07:20:40 | 000,000,010 | ---- | C] () – C:\Windows\SysWow64\ABLKSR.ini
[2009/07/14 07:38:36 | 000,067,584 | --S- | C] () – C:\Windows\bootstat.dat
[2009/07/14 04:35:51 | 000,000,741 | ---- | C] () – C:\Windows\SysWow64\NOISE.DAT
[2009/07/14 04:34:42 | 000,215,943 | ---- | C] () – C:\Windows\SysWow64\dssec.dat
[2009/07/14 02:10:29 | 000,043,131 | ---- | C] () – C:\Windows\mib.bin
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () – C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 23:03:59 | 000,364,544 | ---- | C] () – C:\Windows\SysWow64\msjetoledb40.dll
[2009/07/01 10:10:50 | 000,000,176 | ---- | C] () – C:\Windows\explorer.exe.config
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () – C:\Windows\SysWow64\mlang.dat
========== Alternate Data Streams ==========
@Alternate Data Stream - 141 bytes -> C:\ProgramData\Temp:15024E60
@Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:734E442A
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:4CF61E54
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:B88E99C8
@Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:A724744F
< End of report >
Witam
Mam ten sam problem. Żadna z tych komend nie pomogła. Skan z OTL : http://www.wklejto.pl/96639
Przepraszam jeżeli log jest źle wstawiony, lub jest w nim coś nie tak. To mój pierwszy.
Chodzi o Mozille Firefox 4.0
Proszę o pomoc.
O jakich komendach mówisz?Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:
Kliknij Wykonaj skrypt…Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie. Następnie uruchom OTL ponownie, tym razem kliknij (Skanuj).
Pokaż nowy log OTL.txt oraz raport z usuwania.
Przepraszam nie komendy, tylko skrypty.
Tu po skrypcie : http://www.wklejto.pl/96667
Tu po skanie : http://www.wklejto.pl/96668
Dodam, że dziad jeszcze siedzi (vshare).
– Dodane 05.05.2011 (Cz) 18:35 –
Ktoś mi jeszcze pomoże? Ktoś ma jakiś pomysł?
– Dodane 07.05.2011 (So) 9:43 –
Dzięki za pomoc… Naprawdę…
Proszę o pomoc z usunięciem vshare toolbar
Przedstawiam log OTL
OTL logfile created on: 2012-02-02 16:18:41 - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\user\Moje dokumenty\Pobieranie
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
3,25 Gb Total Physical Memory | 2,55 Gb Available Physical Memory | 78,38% Memory free
5,09 Gb Paging File | 4,53 Gb Available in Paging File | 89,11% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 5,16 Gb Free Space | 10,57% Space Free | Partition Type: NTFS
Drive E: | 416,92 Gb Total Space | 305,89 Gb Free Space | 73,37% Space Free | Partition Type: NTFS
Computer Name: B746D4FD6F514CD | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012-02-02 16:00:14 | 000,584,192 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\user\Moje dokumenty\Pobieranie\OTL.exe
PRC - [2012-01-29 17:34:06 | 000,924,632 | ---- | M] (Mozilla Corporation) – C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012-01-13 11:21:10 | 000,095,200 | ---- | M] (McAfee, Inc.) – c:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2011-10-25 09:42:20 | 000,081,872 | ---- | M] (Avira Operations GmbH & Co. KG) – c:\Program Files\Avira\AntiVir Desktop\ipmgui.exe
PRC - [2011-10-11 14:00:32 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) – C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011-10-11 14:00:20 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) – C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2011-10-11 14:00:08 | 000,258,512 | ---- | M] (Avira Operations GmbH & Co. KG) – C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2011-10-11 14:00:08 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) – C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2011-10-08 05:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) – C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011-08-19 10:26:50 | 000,450,848 | ---- | M] (Logitech Inc.) – C:\Program Files\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
PRC - [2011-08-12 12:18:42 | 000,205,336 | ---- | M] (Logitech Inc.) – C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
PRC - [2010-01-15 13:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) – C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
PRC - [2009-10-29 08:40:06 | 000,557,056 | ---- | M] (BitLeader) – C:\Program Files\lg_fwupdate\fwupdate.exe
PRC - [2009-06-04 15:10:56 | 005,777,408 | ---- | M] () – C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe
PRC - [2009-05-12 15:43:30 | 002,158,592 | ---- | M] () – C:\Program Files\Vtune\TBPANEL.exe
PRC - [2008-04-14 21:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\explorer.exe
========== Modules (No Company Name) ==========
MOD - [2012-01-29 17:34:07 | 001,911,768 | ---- | M] () – C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012-01-12 20:27:44 | 000,079,872 | ---- | M] () – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\extensions{ba14329e-9550-4989-b3f2-9732e92d17cc}\components\RadioWMPCoreGecko10.dll
MOD - [2011-10-11 14:00:22 | 000,398,288 | ---- | M] () – C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2011-06-24 21:56:36 | 000,087,328 | ---- | M] () – C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011-06-24 21:56:14 | 001,241,888 | ---- | M] () – C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2010-05-07 17:37:40 | 000,126,808 | ---- | M] () – C:\Program Files\Logitech\LWS\Webcam Software\ImageFormats\QJpeg4.dll
MOD - [2010-05-07 17:37:40 | 000,027,480 | ---- | M] () – C:\Program Files\Logitech\LWS\Webcam Software\ImageFormats\QGif4.dll
MOD - [2010-05-07 17:36:54 | 000,340,824 | ---- | M] () – C:\Program Files\Logitech\LWS\Webcam Software\QTXml4.dll
MOD - [2010-05-07 17:35:56 | 007,954,776 | ---- | M] () – C:\Program Files\Logitech\LWS\Webcam Software\QTGui4.dll
MOD - [2010-05-07 17:35:44 | 002,143,576 | ---- | M] () – C:\Program Files\Logitech\LWS\Webcam Software\QTCore4.dll
MOD - [2009-06-04 15:10:56 | 005,777,408 | ---- | M] () – C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe
MOD - [2009-05-12 15:43:30 | 002,158,592 | ---- | M] () – C:\Program Files\Vtune\TBPANEL.exe
MOD - [2009-01-15 14:55:10 | 000,565,248 | ---- | M] () – C:\Program Files\ASUS\EPU-4 Engine\pngio.dll
MOD - [2006-01-10 09:50:20 | 000,024,576 | R— | M] () – C:\WINDOWS\system32\AsIO.dll
MOD - [1998-10-31 04:55:56 | 000,005,120 | ---- | M] () – C:\Program Files\Vtune\TBMANAGE.DLL
========== Win32 Services (SafeList) ==========
SRV - [2012-01-13 11:21:10 | 000,095,200 | ---- | M] (McAfee, Inc.) [Auto | Running] – c:\Program Files\McAfee\SiteAdvisor\McSACore.exe – (McAfee SiteAdvisor Service)
SRV - [2011-10-11 14:00:20 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] – C:\Program Files\Avira\AntiVir Desktop\sched.exe – (AntiVirSchedulerService)
SRV - [2011-10-11 14:00:08 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] – C:\Program Files\Avira\AntiVir Desktop\avguard.exe – (AntiVirService)
SRV - [2011-10-08 05:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] – C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe – (nvUpdatusService)
SRV - [2011-08-19 10:26:50 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] – C:\Program Files\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe – (UMVPFSrv)
SRV - [2011-04-01 17:11:02 | 000,304,528 | ---- | M] (Protection Technology) [Auto | Stopped] – C:\WINDOWS\System32\appdrvrem01.exe – (appdrvrem01) Application Driver Auto Removal Service (01)
SRV - [2010-01-15 13:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] – C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe – (McComponentHostService)
SRV - [2006-05-11 17:40:06 | 000,358,008 | ---- | M] (Protection Technology (StarForce)) [Auto | Stopped] – C:\WINDOWS\System32\sfrem02.exe – (sfrem02) FrontLine Drivers Auto Removal (v2)
========== Driver Services (SafeList) ==========
DRV - [2011-12-09 09:32:51 | 000,134,856 | ---- | M] (Avira GmbH) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\avipbb.sys – (avipbb)
DRV - [2011-10-11 14:00:32 | 000,074,640 | ---- | M] (Avira GmbH) [File_System | Auto | Running] – C:\WINDOWS\system32\drivers\avgntflt.sys – (avgntflt)
DRV - [2011-10-11 14:00:32 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\avkmgr.sys – (avkmgr)
DRV - [2011-08-19 10:26:50 | 004,334,624 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\lvuvc.sys – (LVUVC) Logitech Webcam 200(UVC)
DRV - [2011-08-19 10:26:46 | 000,315,808 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\lvrs.sys – (LVRS)
DRV - [2011-04-01 17:11:03 | 002,915,944 | ---- | M] (Protection Technology) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\appdrv01.sys – (appdrv01) Application Driver (01)
DRV - [2010-06-17 14:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\ssmdrv.sys – (ssmdrv)
DRV - [2010-05-14 23:04:20 | 000,023,904 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\lvuvcflt.sys – (FilterService)
DRV - [2010-05-14 23:02:14 | 000,114,784 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\lvpopflt.sys – (lvpopflt)
DRV - [2010-05-07 17:43:30 | 000,025,824 | ---- | M] () [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\LVPr2Mon.sys – (LVPr2Mon)
DRV - [2010-04-28 07:44:02 | 000,054,760 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\fssfltr_tdi.sys – (fssfltr)
DRV - [2009-11-02 14:40:52 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] – C:\WINDOWS\System32\Drivers\sptd.sys – (sptd)
DRV - [2009-08-05 06:16:44 | 000,039,424 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\l1e51x86.sys – (L1e)
DRV - [2009-05-22 16:37:50 | 005,082,624 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\RtkHDAud.sys – (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008-08-05 13:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ambfilt.sys – (Ambfilt)
DRV - [2008-04-14 00:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] – C:\WINDOWS\System32\drivers\changer.sys – (Changer)
DRV - [2008-04-14 00:10:28 | 000,034,688 | ---- | M] (Toshiba Corp.) [Kernel | System | Stopped] – C:\WINDOWS\System32\drivers\lbrtfdc.sys – (lbrtfdc)
DRV - [2008-01-09 10:22:26 | 000,110,464 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\lgmcmdm.sys – (lgmcmdm)
DRV - [2008-01-09 10:22:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\lgmcmdfl.sys – (lgmcmdfl)
DRV - [2008-01-09 10:22:24 | 000,083,584 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\lgmcbus.sys – (lgmcbus) LGE Mobile driver (WDM)
DRV - [2007-12-17 10:14:06 | 000,012,400 | R— | M] () [Kernel | System | Running] – C:\WINDOWS\system32\drivers\AsIO.sys – (AsIO)
DRV - [2007-03-16 10:11:38 | 000,012,256 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] – C:\WINDOWS\System32\drivers\tbpanel.sys – (TBPanel)
DRV - [2007-03-16 10:11:38 | 000,012,256 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\tbpanel.sys – (Cardex)
DRV - [2006-12-21 16:11:51 | 000,061,312 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] – C:\WINDOWS\system32\drivers\sfsync05.sys – (sfsync05) FrontLine Synchronization Driver (v5)
DRV - [2006-09-11 12:57:56 | 000,067,960 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] – C:\WINDOWS\system32\drivers\sfdrv02.sys – (sfdrv02) FrontLine Environment Driver (v2)
DRV - [2006-01-04 08:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\monfilt.sys – (Monfilt)
DRV - [2004-08-13 03:56:20 | 000,005,810 | R— | M] () [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ASACPI.sys – (MTsensor)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM…\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.)
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU…\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKCU…\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.)
IE - HKCU…\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz0.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0
========== FireFox ==========
FF - prefs.js…browser.search.defaultenginename: “AOL Web Search”
FF - prefs.js…browser.search.defaulturl: “http://search.winamp.com/search/search?query={searchTerms}&invocationType=tb50-ff-winamp-chromesbox-en-us&tb_uuid=20110816092738906&tb_oid=28-10-2009&tb_mrud=16-08-2011&query=”
FF - prefs.js…browser.search.selectedEngine: “Google”
FF - prefs.js…browser.search.useDBForOrder: true
FF - prefs.js…browser.startup.homepage: “http://www.onet.pl/”
FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js…extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.3.0244
FF - prefs.js…extensions.enabledItems: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.12.1
FF - prefs.js…extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.6
FF - prefs.js…extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.1.2
FF - prefs.js…extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js…extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6906
FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js…extensions.enabledItems: personas@christopher.beard:1.6.2
FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js…extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.5
FF - prefs.js…extensions.enabledItems: {ba14329e-9550-4989-b3f2-9732e92d17cc}:3.3.3.2
FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js…extensions.enabledItems: {203FB6B2-2E1E-4474-863B-4C483ECCE78E}:1.0.1
FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js…extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.3.1
FF - prefs.js…extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js…keyword.URL: “http://search.yahoo.com/search?fr=mcafee&p=”
FF - HKLM\Software\MozillaPlugins@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins@mcafee.com/SAFFPlugin: C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\user\Dane aplikacji\Facebook\npfbplugin_1_0_3.dll ( )
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor [2012-01-24 13:29:28 | 000,000,000 | —D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0\extensions\Components: C:\Program Files\Mozilla Firefox\components [2012-02-02 15:53:32 | 000,000,000 | —D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0\extensions\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-01-26 13:05:37 | 000,000,000 | —D | M]
[2009-10-28 16:23:00 | 000,000,000 | —D | M] (No name found) – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Extensions
[2012-02-02 15:00:55 | 000,000,000 | —D | M] (No name found) – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\extensions
[2010-11-14 08:57:22 | 000,000,000 | —D | M] (No name found) – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\extensions{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}-trash
[2011-12-24 21:45:25 | 000,000,000 | —D | M] (DownloadHelper) – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\extensions{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012-02-02 15:00:55 | 000,000,000 | —D | M] (Vuze Remote Community Toolbar) – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\extensions{ba14329e-9550-4989-b3f2-9732e92d17cc}
[2011-04-22 16:35:48 | 000,000,000 | —D | M] (“DAEMON Tools Toolbar”) – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\extensions\DTToolbar@toolbarnet.com
[2011-04-01 14:16:10 | 000,000,000 | —D | M] (Conduit Engine) – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\extensions\engine@conduit.com
[2011-03-19 10:38:47 | 000,000,000 | —D | M] (Personas) – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\extensions\personas@christopher.beard
[2011-04-01 19:39:52 | 000,000,000 | —D | M] (vShare) – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\extensions\vshare@toolbar
[2011-08-16 10:34:50 | 000,002,354 | ---- | M] () – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\searchplugins\aol-web-search.xml
[2010-04-21 13:39:01 | 000,002,059 | ---- | M] () – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\searchplugins\daemon-search.xml
[2011-04-01 19:40:26 | 000,001,583 | ---- | M] () – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\searchplugins\web-search.xml
[2009-10-28 20:16:46 | 000,001,201 | ---- | M] () – C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\5rnrqjcv.default\searchplugins\winamp-search.xml
[2012-02-02 15:53:32 | 000,000,000 | —D | M] (No name found) – C:\Program Files\Mozilla Firefox\extensions
() (No name found) – C:\DOCUMENTS AND SETTINGS\USER\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\5RNRQJCV.DEFAULT\EXTENSIONS{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
() (No name found) – C:\DOCUMENTS AND SETTINGS\USER\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\5RNRQJCV.DEFAULT\EXTENSIONS{DD05FD3D-18DF-4CE4-AE53-E795339C5F01}.XPI
[2012-01-29 17:34:08 | 000,134,104 | ---- | M] (Mozilla Foundation) – C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010-08-24 10:31:30 | 000,773,120 | ---- | M] (BitComet) – C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2011-11-10 05:54:13 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011-12-09 18:23:32 | 000,012,800 | ---- | M] (Nullsoft, Inc.) – C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2012-01-29 15:18:04 | 000,002,767 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-01-29 15:18:04 | 000,001,406 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2011-09-23 08:52:19 | 000,002,034 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\McSiteAdvisor.xml
[2012-01-29 15:18:04 | 000,000,917 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-01-29 15:18:04 | 000,000,858 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-01-29 15:18:04 | 000,001,183 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-01-29 15:18:04 | 000,001,683 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
O1 HOSTS File: ([2001-10-26 16:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.)
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz0.dll (Conduit Ltd.)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10_userdata\ggbho.2.dll File not found
O3 - HKLM…\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM…\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM…\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz0.dll (Conduit Ltd.)
O3 - HKLM…\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.)
O3 - HKCU…\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU…\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files\Vuze_Remote\prxtbVuz0.dll (Conduit Ltd.)
O3 - HKCU…\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.)
O4 - HKLM…\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM…\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM…\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM…\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM…\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe ()
O4 - HKLM…\Run: [LGODDFU] C:\Program Files\lg_fwupdate\fwupdate.exe (BitLeader)
O4 - HKLM…\Run: [LWS] C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
O4 - HKLM…\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM…\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM…\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM…\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM…\Run: [six Engine] C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe ()
O4 - HKLM…\Run: [updatePSTShortCut] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKCU…\Run: [ALLUpdate] “C:\Program Files\ALLPlayer\ALLUpdate.exe” “sleep” File not found
O4 - HKCU…\Run: [EA Core] “C:\Program Files\Electronic Arts\EADM\Core.exe” -silent File not found
O4 - HKCU…\Run: [LGMobileSyncLauncher] C:\Program Files\LG PC Suite II\LG_MobileSync_Launcher.exe File not found
O4 - HKCU…\Run: [RGSC] E:\Gry\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe /silent File not found
O4 - HKCU…\Run: [TBPanel] C:\Program Files\Vtune\TBPanel.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso … 8137582218 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 83.218.120.66
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces{F5D5E25E-D5BC-4456-86E0-9DE6DB5A69A2}: DhcpNameServer = 83.218.120.66
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: TaskMan - (C:\RECYCLER\S-1-5-21-8018504886-5856859562-501289255-7008\nissan.exe) - File not found
O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - File not found
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-10-27 14:27:40 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT – [NTFS]
O33 - MountPoints2{3796008e-2565-11df-949f-cf482a3fc13d}\Shell\AutoRun\command - “” = H:\BEJBI///tatinamaza.exe
O33 - MountPoints2{3796008e-2565-11df-949f-cf482a3fc13d}\Shell\explore\command - “” = H:\BEJBI///tatinamaza.exe
O33 - MountPoints2{3796008e-2565-11df-949f-cf482a3fc13d}\Shell\open\command - “” = H:\BEJBI///tatinamaza.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM…comfile [open] – “%1” %*
O35 - HKLM…exefile [open] – “%1” %*
O37 - HKLM…com [@ = comfile] – “%1” %*
O37 - HKLM…exe [@ = exefile] – “%1” %*
========== Files/Folders - Created Within 30 Days ==========
[2012-02-02 16:12:35 | 000,000,000 | —D | C] – C:_OTL
[2012-02-02 16:01:21 | 000,000,000 | —D | C] – C:\Documents and Settings\user\Tracing
[2012-02-02 16:00:44 | 000,000,000 | —D | C] – C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office Live Add-in
[2012-02-02 16:00:29 | 000,054,760 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\drivers\fssfltr_tdi.sys
[2012-02-02 16:00:14 | 000,584,192 | ---- | C] (OldTimer Tools) – C:\Documents and Settings\user\Pulpit\OTL.exe
[2012-02-02 15:59:59 | 000,000,000 | —D | C] – C:\Program Files\Microsoft Sync Framework
[2012-02-02 15:59:19 | 000,000,000 | —D | C] – C:\Program Files\Microsoft SQL Server Compact Edition
[2012-02-02 15:58:50 | 000,000,000 | —D | C] – C:\Documents and Settings\All Users\Menu Start\Programy\Windows Live
[2012-02-02 15:58:37 | 000,000,000 | —D | C] – C:\Program Files\Microsoft
[2012-02-02 15:58:20 | 000,000,000 | —D | C] – C:\Program Files\Windows Live SkyDrive
[2012-02-02 15:58:09 | 000,000,000 | —D | C] – C:\Program Files\Windows Live
[2012-02-02 15:54:18 | 000,000,000 | —D | C] – C:\Program Files\Common Files\Windows Live
[2012-01-26 09:51:11 | 000,000,000 | —D | C] – C:\Documents and Settings\All Users\Menu Start\Programy\K-Lite Codec Pack
[2012-01-26 09:51:08 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) – C:\WINDOWS\System32\lameACM.acm
[2012-01-26 09:51:08 | 000,151,552 | ---- | C] (fccHandler) – C:\WINDOWS\System32\ac3acm.acm
[2012-01-26 09:49:24 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) – C:\WINDOWS\System32\javaws.exe
[2012-01-26 09:49:24 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) – C:\WINDOWS\System32\javaw.exe
[2012-01-26 09:49:24 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) – C:\WINDOWS\System32\java.exe
[2012-01-26 09:31:24 | 000,000,000 | —D | C] – C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Logitech® Webcam Software
[2012-01-25 11:01:25 | 000,000,000 | —D | C] – C:\Documents and Settings\All Users\Menu Start\Programy\iTunes
[2012-01-25 10:26:08 | 000,000,000 | —D | C] – C:\Program Files\Gadu-Gadu 10
[2012-01-25 10:08:01 | 000,000,000 | —D | C] – C:\Documents and Settings\user.swt
[2012-01-19 17:20:21 | 000,000,000 | —D | C] – C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\PesShop.net
[2012-01-19 16:56:55 | 000,274,288 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\mucltui.dll
[2012-01-19 16:56:55 | 000,017,776 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\mucltui.dll.mui
[2012-01-19 16:52:05 | 000,000,000 | —D | C] – C:\Program Files\MSECache
[2012-01-12 01:19:16 | 004,448,256 | ---- | C] (Google Inc.) – C:\WINDOWS\System32\GPhotos.scr
[2 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]
[13 C:\WINDOWS*.tmp files -> C:\WINDOWS*.tmp ->]
========== Files - Modified Within 30 Days ==========
[2012-02-02 16:16:41 | 000,000,366 | ---- | M] () – C:\WINDOWS\lgfwup.ini
[2012-02-02 16:16:33 | 000,001,028 | ---- | M] () – C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012-02-02 16:16:33 | 000,000,276 | ---- | M] () – C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-436374069-602162358-682003330-1003.job
[2012-02-02 16:16:30 | 000,002,048 | --S- | M] () – C:\WINDOWS\bootstat.dat
[2012-02-02 16:16:27 | 000,000,000 | ---- | M] () – C:\WINDOWS\System32\drivers\lvuvc.hs
[2012-02-02 16:15:01 | 000,000,460 | -H-- | M] () – C:\WINDOWS\tasks\User_Feed_Synchronization-{EAD3BD9F-0C73-4A55-8A6B-DC65D10E119D}.job
[2012-02-02 16:14:00 | 000,001,032 | ---- | M] () – C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012-02-02 16:00:14 | 000,584,192 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\user\Pulpit\OTL.exe
[2012-02-02 15:53:32 | 000,000,724 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2012-02-02 15:52:42 | 000,002,206 | ---- | M] () – C:\WINDOWS\System32\wpa.dbl
[2012-02-02 15:51:46 | 000,558,810 | ---- | M] () – C:\WINDOWS\System32\perfh015.dat
[2012-02-02 15:51:46 | 000,496,094 | ---- | M] () – C:\WINDOWS\System32\perfh009.dat
[2012-02-02 15:51:46 | 000,105,750 | ---- | M] () – C:\WINDOWS\System32\perfc015.dat
[2012-02-02 15:51:46 | 000,084,578 | ---- | M] () – C:\WINDOWS\System32\perfc009.dat
[2012-02-02 08:23:04 | 000,002,267 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2012-02-01 10:23:35 | 000,000,069 | ---- | M] () – C:\WINDOWS\NeroDigital.ini
[2012-01-28 21:04:00 | 000,000,284 | ---- | M] () – C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-436374069-602162358-682003330-1003.job
[2012-01-26 21:00:42 | 000,001,917 | ---- | M] () – C:\WINDOWS\imsins.BAK
[2012-01-26 20:27:18 | 000,051,712 | ---- | M] () – C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-01-26 17:51:01 | 000,000,284 | ---- | M] () – C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012-01-26 09:25:28 | 000,285,176 | ---- | M] () – C:\WINDOWS\System32\nvdrsdb0.bin
[2012-01-26 09:25:28 | 000,000,001 | ---- | M] () – C:\WINDOWS\System32\nvdrssel.bin
[2012-01-26 09:25:19 | 000,285,176 | ---- | M] () – C:\WINDOWS\System32\nvdrsdb1.bin
[2012-01-26 09:21:29 | 000,001,261 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Logitech Webcam Software .lnk
[2012-01-26 09:16:09 | 000,000,889 | ---- | M] () – C:\Documents and Settings\user\Pulpit\Any Video Converter.lnk
[2012-01-26 08:49:58 | 000,000,000 | ---- | M] () – C:\WINDOWS\System32\drivers\logiflt.iad
[2012-01-25 20:54:26 | 000,080,305 | ---- | M] () – C:\Documents and Settings\user\Pulpit\plan_mies.pdf
[2012-01-25 11:04:39 | 000,001,604 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\QuickTime Player.lnk
[2012-01-25 11:01:25 | 000,001,542 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\iTunes.lnk
[2012-01-25 10:26:51 | 000,000,791 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk
[2012-01-25 10:26:51 | 000,000,762 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2012-01-25 10:17:21 | 000,000,654 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[2012-01-25 10:07:46 | 000,001,505 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Vuze.lnk
[2012-01-25 10:00:13 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) – C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012-01-25 09:55:05 | 000,000,759 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Picasa 3.lnk
[2012-01-12 01:19:16 | 004,448,256 | ---- | M] (Google Inc.) – C:\WINDOWS\System32\GPhotos.scr
[2 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]
[13 C:\WINDOWS*.tmp files -> C:\WINDOWS*.tmp ->]
========== Files Created - No Company Name ==========
[2012-01-26 09:51:09 | 000,000,414 | ---- | C] () – C:\WINDOWS\System32\lame_acm.xml
[2012-01-26 09:51:08 | 000,650,752 | ---- | C] () – C:\WINDOWS\System32\xvidcore.dll
[2012-01-26 09:51:08 | 000,243,200 | ---- | C] () – C:\WINDOWS\System32\xvidvfw.dll
[2012-01-26 09:51:08 | 000,079,360 | ---- | C] () – C:\WINDOWS\System32\ff_vfw.dll
[2012-01-26 09:22:21 | 000,003,250 | ---- | C] () – C:\WINDOWS\System32\nvinfo.pb
[2012-01-25 11:01:25 | 000,001,542 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\iTunes.lnk
[2012-01-25 10:26:51 | 000,000,791 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk
[2012-01-25 10:26:51 | 000,000,762 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2012-01-25 10:26:20 | 000,000,680 | ---- | C] () – C:\Documents and Settings\All Users\Menu Start\Programy\Gadu-Gadu 10.lnk
[2012-01-20 20:31:59 | 000,317,065 | ---- | C] () – C:\Documents and Settings\user\Pulpit\prowadzenie dokumentacji.pdf
[2012-01-20 20:31:56 | 000,056,959 | ---- | C] () – C:\Documents and Settings\user\Pulpit\Rozporzadzenie MEN o programach i podręcznikach.pdf
[2012-01-15 18:16:18 | 000,080,305 | ---- | C] () – C:\Documents and Settings\user\Pulpit\plan_mies.pdf
[2011-08-12 12:20:14 | 000,015,896 | ---- | C] () – C:\WINDOWS\System32\drivers\iKeyLFT2.dll
[2011-07-31 10:38:32 | 002,130,002 | ---- | C] () – C:\WINDOWS\System32\nvdata.data
[2011-07-12 10:44:52 | 000,197,120 | ---- | C] () – C:\WINDOWS\patchw32.dll
[2011-03-11 10:07:28 | 000,010,240 | ---- | C] () – C:\WINDOWS\System32\vidx16.dll
[2011-02-19 18:24:01 | 000,285,176 | ---- | C] () – C:\WINDOWS\System32\nvdrsdb0.bin
[2011-02-19 18:23:54 | 000,285,176 | ---- | C] () – C:\WINDOWS\System32\nvdrsdb1.bin
[2011-02-19 18:23:54 | 000,000,001 | ---- | C] () – C:\WINDOWS\System32\nvdrssel.bin
[2010-10-15 12:01:52 | 000,051,712 | ---- | C] () – C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-08-05 11:41:27 | 000,000,664 | ---- | C] () – C:\WINDOWS\System32\d3d9caps.dat
[2010-06-18 10:16:37 | 000,028,418 | ---- | C] () – C:\WINDOWS\System32\lvcoinst.ini
[2010-05-14 22:56:06 | 010,898,456 | ---- | C] () – C:\WINDOWS\System32\LogiDPP.dll
[2010-05-14 22:56:06 | 000,104,472 | ---- | C] () – C:\WINDOWS\System32\LogiDPPApp.exe
[2010-05-14 22:55:58 | 000,336,408 | ---- | C] () – C:\WINDOWS\System32\DevManagerCore.dll
[2010-05-07 17:43:30 | 000,025,824 | ---- | C] () – C:\WINDOWS\System32\drivers\LVPr2Mon.sys
[2010-04-11 17:59:54 | 000,122,884 | ---- | C] () – C:\WINDOWS\UnGins.exe
[2010-04-02 16:17:34 | 000,179,091 | ---- | C] () – C:\WINDOWS\System32\xlive.dll.cat
[2010-03-19 18:49:52 | 001,265,952 | ---- | C] () – C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-02-15 14:04:37 | 000,000,624 | ---- | C] () – C:\WINDOWS\eReg.dat
[2009-11-19 18:10:24 | 000,000,025 | ---- | C] () – C:\WINDOWS\cdplayer.ini
[2009-11-13 17:47:00 | 000,000,069 | ---- | C] () – C:\WINDOWS\NeroDigital.ini
[2009-11-02 14:49:18 | 000,022,328 | ---- | C] () – C:\Documents and Settings\user\Dane aplikacji\PnkBstrK.sys
[2009-10-30 15:26:12 | 000,003,421 | ---- | C] () – C:\WINDOWS\VPlayer.INI
[2009-10-29 16:53:59 | 000,175,616 | ---- | C] () – C:\WINDOWS\System32\unrar.dll
[2009-10-28 21:50:30 | 000,001,743 | ---- | C] () – C:\Documents and Settings\All Users\Dane aplikacji\QTSBandwidthCache
[2009-10-28 16:46:41 | 000,000,056 | -H-- | C] () – C:\WINDOWS\System32\ezsidmv.dat
[2009-10-28 16:22:21 | 000,000,000 | ---- | C] () – C:\WINDOWS\nsreg.dat
[2009-10-27 15:21:51 | 000,000,366 | ---- | C] () – C:\WINDOWS\lgfwup.ini
[2009-10-27 15:18:55 | 000,004,293 | ---- | C] () – C:\WINDOWS\ODBCINST.INI
[2009-10-27 15:17:37 | 000,270,192 | ---- | C] () – C:\WINDOWS\System32\FNTCACHE.DAT
[2009-10-27 14:40:44 | 000,024,576 | R— | C] () – C:\WINDOWS\System32\AsIO.dll
[2009-10-27 14:40:44 | 000,012,400 | R— | C] () – C:\WINDOWS\System32\drivers\AsIO.sys
[2009-10-27 14:40:40 | 000,011,832 | ---- | C] () – C:\WINDOWS\System32\drivers\AsInsHelp64.sys
[2009-10-27 14:40:40 | 000,010,216 | ---- | C] () – C:\WINDOWS\System32\drivers\AsInsHelp32.sys
[2009-10-27 14:33:04 | 000,030,039 | ---- | C] () – C:\WINDOWS\Ascd_log.ini
[2009-10-27 14:32:45 | 000,005,810 | R— | C] () – C:\WINDOWS\System32\drivers\ASACPI.sys
[2009-10-27 14:32:41 | 000,001,769 | ---- | C] () – C:\WINDOWS\Language_trs.ini
[2009-10-27 14:32:38 | 000,021,966 | ---- | C] () – C:\WINDOWS\Ascd_tmp.ini
[2009-10-27 14:32:38 | 000,010,296 | ---- | C] () – C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2009-10-27 14:29:13 | 000,002,048 | --S- | C] () – C:\WINDOWS\bootstat.dat
[2009-10-27 14:24:40 | 000,021,856 | ---- | C] () – C:\WINDOWS\System32\emptyregdb.dat
[2008-04-14 22:16:20 | 000,001,804 | ---- | C] () – C:\WINDOWS\System32\Dcache.bin
[2006-12-31 06:57:08 | 000,004,569 | ---- | C] () – C:\WINDOWS\System32\secupd.dat
[2001-10-26 17:15:16 | 000,558,810 | ---- | C] () – C:\WINDOWS\System32\perfh015.dat
[2001-10-26 17:15:16 | 000,313,828 | ---- | C] () – C:\WINDOWS\System32\perfi015.dat
[2001-10-26 17:15:16 | 000,105,750 | ---- | C] () – C:\WINDOWS\System32\perfc015.dat
[2001-10-26 17:15:16 | 000,034,990 | ---- | C] () – C:\WINDOWS\System32\perfd015.dat
[2001-08-23 14:00:00 | 013,107,200 | ---- | C] () – C:\WINDOWS\System32\oembios.bin
[2001-08-23 14:00:00 | 000,004,463 | ---- | C] () – C:\WINDOWS\System32\oembios.dat
[2001-08-17 22:30:24 | 000,496,094 | ---- | C] () – C:\WINDOWS\System32\perfh009.dat
[2001-08-17 22:30:24 | 000,272,128 | ---- | C] () – C:\WINDOWS\System32\perfi009.dat
[2001-08-17 22:30:24 | 000,028,626 | ---- | C] () – C:\WINDOWS\System32\perfd009.dat
[2001-08-17 22:30:22 | 000,084,578 | ---- | C] () – C:\WINDOWS\System32\perfc009.dat
[2001-08-17 22:15:38 | 000,046,258 | ---- | C] () – C:\WINDOWS\System32\mib.bin
[2001-07-21 23:36:48 | 000,218,003 | ---- | C] () – C:\WINDOWS\System32\dssec.dat
[2001-07-21 23:36:04 | 000,673,088 | ---- | C] () – C:\WINDOWS\System32\mlang.dat
[2001-07-21 23:24:16 | 000,000,741 | ---- | C] () – C:\WINDOWS\System32\noise.dat
========== Alternate Data Streams ==========
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\Temp:D1B5B4F1
< End of report >