od czasu kiedy odwiedziłem strone na której można oglądać filmy on-line, samoczynnie wyskakują mi okna z jakimis stronami grami itp. zarówno w IE jak i w mozilli, jak się tego pozbyć. widzialem jakieś operacje z logami ale nie mam pojęcia jak sie za to zabrać. czy moze ktoś wyłożyć krok po kroku tak żeby na spokojnie ogarnąc?
– Dodane 15.12.2009 (Wt) 21:15 –
pomoże ktoś?
Daj log z OTL,
instrukcja na dole strony: http://forum.dobreprogramy.pl/hijackthis-rsit-otl-dds-inne-instrukcja-t36654.html
ok zaraz dam loga
– Dodane 15.12.2009 (Wt) 21:50 –
OTL logfile created on: 2009-12-15 21:42:31 - Run 1
OTL by OldTimer - Version 3.1.17.0 Folder = C:\Users\Mateusz\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18865)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
2,00 Gb Total Physical Memory | 1,50 Gb Available Physical Memory | 74,84% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 287,36 Gb Total Space | 38,34 Gb Free Space | 13,34% Space Free | Partition Type: NTFS
Drive D: | 10,72 Gb Total Space | 1,80 Gb Free Space | 16,76% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: MATEUSZ-PC
Current User Name: Mateusz
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2009-12-15 21:38:45 | 00,538,112 | ---- | M] (OldTimer Tools) – C:\Users\Mateusz\Downloads\OTL.exe
PRC - [2009-11-21 07:42:38 | 00,638,232 | ---- | M] (Microsoft Corporation) – C:\Program Files\Internet Explorer\iexplore.exe
PRC - [2009-08-22 09:14:09 | 00,117,640 | R— | M] (Symantec Corporation) – C:\Program Files\Norton 360\Engine\3.5.2.11\ccSvcHst.exe
PRC - [2009-05-29 12:41:26 | 00,144,712 | ---- | M] (Apple Inc.) – C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009-05-26 17:01:08 | 10,486,376 | ---- | M] (GG Network S.A.) – C:\Program Files\Nowe Gadu-Gadu\gg.exe
PRC - [2009-05-26 16:11:48 | 00,077,824 | ---- | M] () – C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe
PRC - [2009-04-21 13:39:16 | 24,264,488 | R— | M] (Skype Technologies S.A.) – C:\Program Files\Skype\Phone\Skype.exe
PRC - [2009-04-21 13:39:16 | 00,077,360 | R— | M] (Skype Technologies) – C:\Program Files\Skype\Plugin Manager\skypePM.exe
PRC - [2009-04-11 07:27:36 | 02,926,592 | ---- | M] (Microsoft Corporation) – C:\Windows\explorer.exe
PRC - [2009-04-11 07:27:28 | 00,069,120 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\conime.exe
PRC - [2009-01-26 15:31:16 | 02,144,088 | ---- | M] (Safer Networking Limited) – C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2008-12-12 10:17:38 | 00,238,888 | ---- | M] (Apple Inc.) – C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008-09-26 02:36:40 | 01,148,200 | ---- | M] (CyberLink Corp.) – C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
PRC - [2008-09-25 18:42:24 | 00,189,736 | ---- | M] (CyberLink) – C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
PRC - [2008-09-25 18:41:44 | 01,152,296 | ---- | M] (CyberLink Corp.) – C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
PRC - [2008-09-24 18:08:26 | 00,296,320 | ---- | M] () – C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
PRC - [2008-09-24 18:08:26 | 00,116,096 | ---- | M] () – C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
PRC - [2008-09-23 12:18:52 | 00,365,904 | ---- | M] () – C:\Program Files\SMINST\BLService.exe
PRC - [2008-09-23 11:03:38 | 00,912,688 | ---- | M] (Hewlett-Packard) – C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
PRC - [2008-09-08 14:05:48 | 00,193,840 | ---- | M] (Hewlett-Packard Development Company, L.P.) – C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
PRC - [2008-09-05 10:22:34 | 00,206,128 | ---- | M] ( Hewlett-Packard Development Company, L.P.) – C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
PRC - [2008-08-30 16:37:00 | 00,196,608 | ---- | M] (NVIDIA Corporation) – C:\Windows\System32\nvvsvc.exe
PRC - [2008-08-27 12:25:26 | 00,685,360 | ---- | M] () – C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
PRC - [2008-08-27 12:24:54 | 00,165,192 | ---- | M] (Hewlett-Packard Development Company, L.P.) – C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
PRC - [2008-08-11 14:00:10 | 00,225,362 | ---- | M] (IDT, Inc.) – C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\stacsv.exe
PRC - [2008-08-11 13:56:56 | 00,442,460 | ---- | M] (IDT, Inc.) – C:\Program Files\IDT\WDM\sttray.exe
PRC - [2008-07-14 19:15:10 | 00,814,144 | ---- | M] (DigitalPersona, Inc.) – C:\Program Files\DigitalPersona\Bin\DpAgent.exe
PRC - [2008-07-14 19:15:10 | 00,322,624 | ---- | M] (DigitalPersona, Inc.) – C:\Program Files\DigitalPersona\Bin\DpHostW.exe
PRC - [2008-07-02 11:50:55 | 00,116,064 | ---- | M] (AOL LLC) – c:\Program Files\AOL\Pasek narzędzi AOL 5.0\AolTbServer.exe
PRC - [2008-06-30 00:10:18 | 00,241,734 | ---- | M] () – C:\Program Files\Cyberlink\Shared files\RichVideo.exe
PRC - [2008-06-27 16:53:08 | 00,077,824 | ---- | M] (Andrea Electronics Corporation) – C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\AEstSrv.exe
PRC - [2008-06-19 13:17:36 | 00,727,592 | ---- | M] (Broadcom Corporation.) – C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2008-06-16 08:02:28 | 00,094,208 | ---- | M] (Hewlett-Packard) – c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
PRC - [2008-05-26 05:43:58 | 00,599,344 | ---- | M] (Validity Sensors, Inc.) – C:\Windows\System32\vfsFPService.exe
PRC - [2008-05-23 22:36:52 | 00,253,952 | ---- | M] (Alps Electric Co., Ltd.) – C:\Program Files\Apoint2K\Apoint.exe
PRC - [2008-04-15 14:51:00 | 00,488,752 | ---- | M] (Hewlett-Packard Development Company, L.P.) – C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
PRC - [2008-03-26 01:25:18 | 00,286,720 | ---- | M] (Hewlett-Packard) – C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
PRC - [2008-03-25 20:27:58 | 00,049,152 | ---- | M] (Hewlett-Packard) – C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
PRC - [2008-03-25 19:49:02 | 00,184,320 | ---- | M] (Hewlett-Packard Co.) – C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
PRC - [2008-03-25 19:49:00 | 00,569,344 | ---- | M] (Hewlett-Packard Co.) – C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
PRC - [2008-03-25 19:40:42 | 00,214,360 | ---- | M] (Hewlett-Packard Co.) – C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
PRC - [2008-03-21 21:32:04 | 00,046,376 | ---- | M] (Alps Electric Co., Ltd.) – C:\Program Files\Apoint2K\ApMsgFwd.exe
PRC - [2008-03-18 16:24:58 | 00,019,456 | ---- | M] (Hewlett-Packard Corporation) – C:\Windows\System32\hpservice.exe
PRC - [2008-01-21 03:25:33 | 00,202,240 | ---- | M] (Microsoft Corporation) – C:\Program Files\Windows Media Player\wmpnscfg.exe
PRC - [2008-01-21 03:23:24 | 00,215,552 | ---- | M] (Microsoft Corporation) – C:\Windows\WindowsMobile\wmdSync.exe
PRC - [2007-12-11 12:15:04 | 00,012,800 | ---- | M] (Agere Systems) – C:\Windows\System32\agrsmsvc.exe
PRC - [2007-11-22 00:21:10 | 00,131,072 | ---- | M] (Alcor Micro, Corp.) – C:\Program Files\Multimedia Card Reader\readericon10.exe
PRC - [2007-10-25 18:23:36 | 00,049,152 | ---- | M] (Alps Electric Co., Ltd.) – C:\Program Files\Apoint2K\ApntEx.exe
PRC - [2007-09-26 07:34:40 | 00,316,720 | ---- | M] (Hewlett-Packard Development Company, L.P.) – C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
PRC - [2007-07-12 12:43:50 | 00,226,904 | ---- | M] (Macrovision Corporation) – C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
========== Modules (SafeList) ==========
MOD - [2009-12-15 21:38:45 | 00,538,112 | ---- | M] (OldTimer Tools) – C:\Users\Mateusz\Downloads\OTL.exe
MOD - [2009-04-11 07:21:38 | 01,686,016 | ---- | M] (Microsoft Corporation) – C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - [2009-08-22 09:14:09 | 00,117,640 | R— | M] (Symantec Corporation) [Auto | Running] – C:\Program Files\Norton 360\Engine\3.5.2.11\ccSvcHst.exe – (N360)
SRV - [2009-05-30 11:30:20 | 00,541,992 | ---- | M] (Apple Inc.) [On_Demand | Stopped] – C:\Program Files\iPod\bin\iPodService.exe – (iPod Service)
SRV - [2009-05-29 12:41:26 | 00,144,712 | ---- | M] (Apple Inc.) [Auto | Running] – C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe – (Apple Mobile Device)
SRV - [2008-12-12 10:17:38 | 00,238,888 | ---- | M] (Apple Inc.) [Auto | Running] – C:\Program Files\Bonjour\mDNSResponder.exe – (Bonjour Service)
SRV - [2008-09-24 18:08:26 | 00,296,320 | ---- | M] () [Auto | Running] – C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe – (TVCapSvc) TV Background Capture Service (TVBCS)
SRV - [2008-09-24 18:08:26 | 00,116,096 | ---- | M] () [Auto | Running] – C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe – (TVSched) TV Task Scheduler (TVTS)
SRV - [2008-09-23 12:18:52 | 00,365,904 | ---- | M] () [Auto | Running] – C:\Program Files\SMINST\BLService.exe – (Recovery Service for Windows)
SRV - [2008-09-08 14:05:48 | 00,193,840 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Running] – C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe – (Com4QLBEx)
SRV - [2008-08-30 16:37:00 | 00,196,608 | ---- | M] (NVIDIA Corporation) [Auto | Running] – C:\Windows\System32\nvvsvc.exe – (nvsvc)
SRV - [2008-08-27 12:24:54 | 00,165,192 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Running] – C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe – (hpqwmiex)
SRV - [2008-08-11 14:00:10 | 00,225,362 | ---- | M] (IDT, Inc.) [Auto | Running] – C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\stacsv.exe – (STacSV)
SRV - [2008-07-18 12:13:20 | 00,053,760 | ---- | M] (Hewlett-Packard) [Auto | Running] – C:\Windows\System32\HPZipm12.dll – (Pml Driver HPZ12)
SRV - [2008-07-18 12:13:20 | 00,044,032 | ---- | M] (Hewlett-Packard) [Auto | Running] – C:\Windows\System32\HPZinw12.dll – (Net Driver HPZ12)
SRV - [2008-07-14 19:15:10 | 00,322,624 | ---- | M] (DigitalPersona, Inc.) [Auto | Running] – C:\Program Files\DigitalPersona\Bin\DpHostW.exe – (DpHost)
SRV - [2008-06-30 00:10:18 | 00,241,734 | ---- | M] () [Auto | Running] – C:\Program Files\Cyberlink\Shared files\RichVideo.exe – (RichVideo) Cyberlink RichVideo Service(CRVS)
SRV - [2008-06-27 16:53:08 | 00,077,824 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] – C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\AEstSrv.exe – (AESTFilters)
SRV - [2008-06-16 08:02:28 | 00,094,208 | ---- | M] (Hewlett-Packard) [Auto | Running] – c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe – (HP Health Check Service)
SRV - [2008-05-26 05:43:58 | 00,599,344 | ---- | M] (Validity Sensors, Inc.) [Auto | Running] – C:\Windows\System32\vfsFPService.exe – (vfsFPService)
SRV - [2008-05-05 23:25:46 | 00,165,416 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] – C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe – (GameConsoleService)
SRV - [2008-03-25 20:27:36 | 00,135,168 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] – C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll – (hpqddsvc)
SRV - [2008-03-25 20:25:50 | 00,630,784 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] – C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL – (HPSLPSVC)
SRV - [2008-03-25 19:38:24 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Running] – C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll – (hpqcxs08)
SRV - [2008-03-18 16:24:58 | 00,019,456 | ---- | M] (Hewlett-Packard Corporation) [Auto | Running] – C:\Windows\System32\hpservice.exe – (hpsrv)
SRV - [2008-02-03 12:00:00 | 00,129,992 | ---- | M] (EasyBits Sofware AS) [Auto | Running] – C:\Windows\System32\ezsvc7.dll – (ezSharedSvc)
SRV - [2008-01-21 03:23:32 | 00,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] – C:\Program Files\Windows Defender\MpSvc.dll – (WinDefend)
SRV - [2008-01-21 03:23:24 | 00,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] – C:\Windows\WindowsMobile\wcescomm.dll – (WcesComm)
SRV - [2008-01-21 03:23:24 | 00,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] – C:\Windows\WindowsMobile\rapimgr.dll – (RapiMgr)
SRV - [2007-12-11 12:15:04 | 00,012,800 | ---- | M] (Agere Systems) [Auto | Running] – C:\Windows\System32\agrsmsvc.exe – (AgereModemAudio)
SRV - [2006-11-02 13:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) [Auto | Stopped] – C:\Windows\ehome\ehstart.dll – (ehstart)
SRV - [2006-10-26 23:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] – C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe – (Microsoft Office Groove Audit Service)
SRV - [2006-10-26 18:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] – C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE – (odserv)
SRV - [2006-10-26 12:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] – C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE – (ose)
SRV - [2004-10-22 03:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] – C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe – (IDriverT)
========== Driver Services (SafeList) ==========
DRV - [2009-11-27 21:57:44 | 00,691,696 | ---- | M] () [Kernel | Boot | Running] – C:\Windows\System32\Drivers\sptd.sys – (sptd)
DRV - [2009-10-28 23:37:22 | 00,343,088 | ---- | M] (Symantec Corporation) [Kernel | System | Running] – C:\ProgramData\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091211.001\IDSvix86.sys – (IDSVix86)
DRV - [2009-09-11 10:40:02 | 00,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\SYMEVENT.SYS – (SymEvent)
DRV - [2009-09-09 07:58:41 | 00,026,600 | R— | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\GEARAspiWDM.sys – (GEARAspiWDM)
DRV - [2009-08-27 09:00:00 | 00,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] – C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys – (eeCtrl)
DRV - [2009-08-27 09:00:00 | 00,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] – C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys – (EraserUtilRebootDrv)
DRV - [2009-08-25 09:00:00 | 01,323,568 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] – C:\ProgramData\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091215.004\NAVEX15.SYS – (NAVEX15)
DRV - [2009-08-25 09:00:00 | 00,084,912 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] – C:\ProgramData\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091215.004\NAVENG.SYS – (NAVENG)
DRV - [2009-08-22 09:14:09 | 00,482,432 | ---- | M] (Symantec Corporation) [Kernel | System | Running] – C:\Windows\System32\Drivers\N360\0305020.00B\ccHPx86.sys – (ccHP)
DRV - [2009-08-22 09:14:09 | 00,310,320 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] – C:\Windows\system32\drivers\N360\0305020.00B\SYMEFA.SYS – (SymEFA)
DRV - [2009-08-22 09:14:09 | 00,308,272 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] – C:\Windows\System32\Drivers\N360\0305020.00B\SRTSP.SYS – (SRTSP)
DRV - [2009-08-22 09:14:09 | 00,259,632 | ---- | M] (Symantec Corporation) [Kernel | System | Running] – C:\Windows\System32\Drivers\N360\0305020.00B\BHDrvx86.sys – (BHDrvx86)
DRV - [2009-08-22 09:14:09 | 00,217,136 | ---- | M] (Symantec Corporation) [Kernel | System | Running] – C:\Windows\System32\Drivers\N360\0305020.00B\SYMTDI.SYS – (SYMTDI)
DRV - [2009-08-22 09:14:09 | 00,089,904 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] – C:\Windows\System32\Drivers\N360\0305020.00B\SYMFW.SYS – (SYMFW)
DRV - [2009-08-22 09:14:09 | 00,048,688 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] – C:\Windows\System32\Drivers\N360\0305020.00B\SYMNDISV.SYS – (SYMNDISV)
DRV - [2009-08-22 09:14:09 | 00,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] – C:\Windows\system32\drivers\N360\0305020.00B\SRTSPX.SYS – (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2009-08-22 09:13:59 | 00,025,648 | R— | M] (Symantec Corporation) [Kernel | System | Running] – C:\Windows\System32\drivers\SymIMV.sys – (SymIM)
DRV - [2009-05-29 12:36:16 | 00,039,424 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\usbaapl.sys – (USBAAPL)
DRV - [2009-04-11 05:46:08 | 00,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\usb8023x.sys – (usb_rndisx)
DRV - [2008-11-04 11:58:09 | 00,020,024 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\viaide.sys – (viaide)
DRV - [2008-11-04 11:58:09 | 00,019,000 | ---- | M] (CMD Technology, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\cmdide.sys – (cmdide)
DRV - [2008-11-04 11:58:09 | 00,017,464 | ---- | M] (Acer Laboratories Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\aliide.sys – (aliide)
DRV - [2008-09-26 02:36:34 | 00,059,376 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] – C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl – ({55662437-DA8C-40c0-AADA-2C816A897A49})
DRV - [2008-08-30 16:37:00 | 07,390,112 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\nvlddmkm.sys – (nvlddmkm)
DRV - [2008-08-29 00:48:46 | 03,664,384 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\NETw5v32.sys – (NETw5v32) Intel®
DRV - [2008-08-11 14:05:32 | 00,385,536 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\stwrt.sys – (STHDA)
DRV - [2008-06-23 12:54:08 | 00,081,960 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\btwavdt.sys – (btwavdt)
DRV - [2008-06-23 12:54:08 | 00,080,424 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\btwaudio.sys – (btwaudio)
DRV - [2008-06-23 12:54:08 | 00,016,168 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\btwrchid.sys – (btwrchid)
DRV - [2008-05-26 05:44:14 | 00,040,752 | ---- | M] (Validity Sensors, Inc.) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\vfs101x.sys – (vfs101x)
DRV - [2008-05-12 13:33:14 | 00,170,032 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\Apfiltr.sys – (ApfiltrService)
DRV - [2008-04-15 17:53:44 | 00,312,344 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] – C:\Windows\system32\DRIVERS\iaStor.sys – (iaStor)
DRV - [2008-03-27 12:12:12 | 00,024,424 | ---- | M] (Hewlett-Packard Corporation) [Kernel | Boot | Running] – C:\Windows\system32\DRIVERS\hpdskflt.sys – (hpdskflt)
DRV - [2008-03-27 12:11:34 | 00,034,664 | ---- | M] (Hewlett-Packard Corporation) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\Accelerometer.sys – (Accelerometer)
DRV - [2008-02-29 16:13:38 | 01,202,560 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\AGRSM.sys – (AgereSoftModem)
DRV - [2008-02-14 15:56:02 | 00,118,784 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\Rtlh86.sys – (RTL8169)
DRV - [2008-01-21 03:23:27 | 00,386,616 | ---- | M] (LSI Corporation, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\megasr.sys – (MegaSR)
DRV - [2008-01-21 03:23:27 | 00,149,560 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\adpu320.sys – (adpu320)
DRV - [2008-01-21 03:23:27 | 00,031,288 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\megasas.sys – (megasas)
DRV - [2008-01-21 03:23:27 | 00,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\serscan.sys – (StillCam)
DRV - [2008-01-21 03:23:26 | 00,101,432 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\adpu160m.sys – (adpu160m)
DRV - [2008-01-21 03:23:26 | 00,074,808 | ---- | M] (Silicon Integrated Systems) [Kernel | Boot | Running] – C:\Windows\system32\drivers\sisraid4.sys – (SiSRaid4)
DRV - [2008-01-21 03:23:26 | 00,040,504 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] – C:\Windows\system32\drivers\hpcisss.sys – (HpCISSs)
DRV - [2008-01-21 03:23:25 | 00,300,600 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\adpahci.sys – (adpahci)
DRV - [2008-01-21 03:23:25 | 00,089,656 | ---- | M] (LSI Logic) [Kernel | Boot | Running] – C:\Windows\system32\drivers\lsi_sas.sys – (LSI_SAS)
DRV - [2008-01-21 03:23:24 | 01,122,360 | ---- | M] (QLogic Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\ql2300.sys – (ql2300)
DRV - [2008-01-21 03:23:24 | 00,118,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\E1G60I32.sys – (E1G60) Intel®
DRV - [2008-01-21 03:23:24 | 00,079,928 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\arcsas.sys – (arcsas)
DRV - [2008-01-21 03:23:23 | 00,235,064 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\iastorv.sys – (iaStorV)
DRV - [2008-01-21 03:23:23 | 00,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Boot | Running] – C:\Windows\system32\drivers\vsmraid.sys – (vsmraid)
DRV - [2008-01-21 03:23:23 | 00,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\ulsata2.sys – (ulsata2)
DRV - [2008-01-21 03:23:23 | 00,096,312 | ---- | M] (LSI Logic) [Kernel | Boot | Running] – C:\Windows\system32\drivers\lsi_scsi.sys – (LSI_SCSI)
DRV - [2008-01-21 03:23:23 | 00,096,312 | ---- | M] (LSI Logic) [Kernel | Boot | Running] – C:\Windows\system32\drivers\lsi_fc.sys – (LSI_FC)
DRV - [2008-01-21 03:23:23 | 00,079,416 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\arc.sys – (arc)
DRV - [2008-01-21 03:23:22 | 00,342,584 | ---- | M] (Emulex) [Kernel | Boot | Running] – C:\Windows\system32\drivers\elxstor.sys – (elxstor)
DRV - [2008-01-21 03:23:21 | 00,422,968 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\adp94xx.sys – (adp94xx)
DRV - [2008-01-21 03:23:21 | 00,102,968 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\nvraid.sys – (nvraid)
DRV - [2008-01-21 03:23:21 | 00,045,112 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\nvstor.sys – (nvstor)
DRV - [2008-01-21 03:23:20 | 02,225,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\NETw3v32.sys – (NETw3v32) Intel®
DRV - [2008-01-21 03:23:20 | 00,238,648 | ---- | M] (ULi Electronics Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\uliahci.sys – (uliahci)
DRV - [2007-12-18 17:12:12 | 00,054,784 | ---- | M] (ITE Tech. Inc. ) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\itecir.sys – (itecir)
DRV - [2007-06-18 17:12:04 | 00,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\HpqKbFiltr.sys – (HpqKbFiltr)
DRV - [2006-11-02 10:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\ql40xx.sys – (ql40xx)
DRV - [2006-11-02 10:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\ulsata.sys – (UlSata)
DRV - [2006-11-02 10:50:19 | 00,045,160 | ---- | M] (IBM Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\nfrd960.sys – (nfrd960)
DRV - [2006-11-02 10:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Boot | Running] – C:\Windows\system32\drivers\iirsp.sys – (iirsp)
DRV - [2006-11-02 10:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\djsvs.sys – (aic78xx)
DRV - [2006-11-02 10:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\iteraid.sys – (iteraid)
DRV - [2006-11-02 10:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\iteatapi.sys – (iteatapi)
DRV - [2006-11-02 10:50:05 | 00,035,944 | ---- | M] (LSI Logic) [Kernel | Boot | Running] – C:\Windows\system32\drivers\symc8xx.sys – (Symc8xx)
DRV - [2006-11-02 10:50:03 | 00,034,920 | ---- | M] (LSI Logic) [Kernel | Boot | Running] – C:\Windows\system32\drivers\sym_u3.sys – (Sym_u3)
DRV - [2006-11-02 10:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\mraid35x.sys – (Mraid35x)
DRV - [2006-11-02 10:49:56 | 00,031,848 | ---- | M] (LSI Logic) [Kernel | Boot | Running] – C:\Windows\system32\drivers\sym_hi.sys – (Sym_hi)
DRV - [2006-11-02 09:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\brserid.sys – (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006-11-02 09:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\brusbser.sys – (BrUsbSer)
DRV - [2006-11-02 09:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\brfiltup.sys – (BrFiltUp)
DRV - [2006-11-02 09:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\brfiltlo.sys – (BrFiltLo)
DRV - [2006-11-02 09:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\brserwdm.sys – (BrSerWdm)
DRV - [2006-11-02 09:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\brusbmdm.sys – (BrUsbMdm)
DRV - [2006-11-02 08:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\ntrigdigi.sys – (ntrigdigi)
DRV - [2006-11-02 08:30:56 | 00,194,048 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\yk60x86.sys – (yukonwlh)
DRV - [2006-11-02 07:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto | Running] – C:\Windows\System32\drivers\secdrv.sys – (secdrv)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= … on&pf=cnnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= … on&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= … on&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.wp.pl/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyOverride” = *.local
FF - HKLM\software\mozilla\Firefox\Extensions\otis@digitalpersona.com: C:\Program Files\DigitalPersona\Bin\FirefoxExt\ [2009-01-21 08:44:52 | 00,000,000 | —D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2009-05-29 18:37:03 | 00,000,000 | —D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\{E63605FC-D583-4C81-867F-9457BDB3EA1B}: C:\Program Files\Web Search Operator\3.1.0.1840\FF [2009-11-30 23:20:25 | 00,000,000 | —D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\{8141440E-08F0-4339-9959-5C31C6A69F23}: C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF [2009-11-30 23:20:36 | 00,000,000 | —D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\{E889F097-B0BE-471B-89AD-B86B6F04B506}: C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF [2009-11-30 23:20:40 | 00,000,000 | —D | M]
[2009-12-15 20:42:58 | 00,000,000 | —D | M] – C:\Program Files\Mozilla Firefox\extensions
O1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Automated Content Enhancer) - {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} - C:\Program Files\Automated Content Enhancer\4.1.0.5190\ACEIEAddOn.dll ()
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (Customized Platform Advancer) - {42C7C39F-3128-4a17-BDB7-91C46032B5B9} - C:\Program Files\Customized Platform Advancer\3.1.0.1630\CPAIEAddOn.dll ()
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\3.5.2.11\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\3.5.2.11\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (AOL Toolbar BHO) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\Pasek narzędzi AOL 5.0\aoltb.dll (AOL LLC)
O2 - BHO: (Content Management Wizard) - {B72681C0-A222-4b21-A0E2-53A5A5CA3D41} - C:\Program Files\Content Management Wizard\1.1.0.1870\CMWIE.dll ()
O2 - BHO: (TCP) - {CAC89FF9-34A9-4431-8CFE-292A47F843BC} - C:\Program Files\Textual Content Provider\1.1.0.1610\TCPIE.dll ()
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Web Search Operator) - {EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431} - C:\Program Files\Web Search Operator\3.1.0.1840\WSO.dll ()
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Users\Mateusz\AppData\Roaming\Nowe Gadu-Gadu_userdata\ggbho.1.dll (GG Network S.A.)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM…\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\3.5.2.11\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM…\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\Pasek narzędzi AOL 5.0\aoltb.dll (AOL LLC)
O3 - HKCU…\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU…\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\3.5.2.11\CoIEPlg.dll (Symantec Corporation)
O3 - HKCU…\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\Pasek narzędzi AOL 5.0\aoltb.dll (AOL LLC)
O4 - HKLM…\Run: [] File not found
O4 - HKLM…\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM…\Run: [CLMLServer for HP TouchSmart] C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe (CyberLink)
O4 - HKLM…\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\DpAgent.exe (DigitalPersona, Inc.)
O4 - HKLM…\Run: [DVDAgent] C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe (CyberLink Corp.)
O4 - HKLM…\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM…\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard)
O4 - HKLM…\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe (Hewlett-Packard)
O4 - HKLM…\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM…\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM…\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM…\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM…\Run: [readericon10] C:\Program Files\Multimedia Card Reader\readericon10.exe (Alcor Micro, Corp.)
O4 - HKLM…\Run: [smartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (Hewlett-Packard)
O4 - HKLM…\Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM…\Run: [TSMAgent] C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe (CyberLink Corp.)
O4 - HKLM…\Run: [uCam_Menu] C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM…\Run: [updateLBPShortCut] C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM…\Run: [updatePSTShortCut] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM…\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM…\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation)
O4 - HKCU…\Run: [iSUSPM] C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation)
O4 - HKCU…\Run: [Le Petit Robert Hyperappel] C:\Program Files\Le Robert\Le Petit Robert\prhyper.exe File not found
O4 - HKCU…\Run: [rcwinHyper] C:\Program Files\Le Robert\Le Robert & Collins\rcwinHyper.exe File not found
O4 - HKCU…\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKCU…\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O8 - Extra context menu item: &Wyszukiwarka na pasku narzędzi AOL - C:\ProgramData\AOL\ieToolbar\resources\pl-PL\local\search.html ()
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth… - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth… - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra ‘Tools’ menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra ‘Tools’ menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Zaznaczanie HP Smart - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_15)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.63 62.179.1.62
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files\Norton 360\Engine\3.5.2.11\CoIEPlg.dll (Symantec Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 22:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat – [NTFS]
O33 - MountPoints2{34231daa-5205-11de-badd-00247e1ce1ad}\Shell\AutoRun\command - “” = F:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\amp32.exe – File not found
O33 - MountPoints2{34231daa-5205-11de-badd-00247e1ce1ad}\Shell\open\command - “” = F:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\amp32.exe – File not found
O33 - MountPoints2{3c5f586d-5134-11de-ade3-00247e1ce1ad}\Shell\AutoRun\command - “” = F:\d9c.bat – File not found
O33 - MountPoints2{3c5f586d-5134-11de-ade3-00247e1ce1ad}\Shell\open\Command - “” = F:\d9c.bat – File not found
O33 - MountPoints2{5d98c250-7b47-11de-9634-00247e1ce1ad}\Shell\AutoRun\command - “” = F:\xyw9tmdj.com – File not found
O33 - MountPoints2{5d98c250-7b47-11de-9634-00247e1ce1ad}\Shell\explore\Command - “” = F:\xyw9tmdj.com – File not found
O33 - MountPoints2{5d98c250-7b47-11de-9634-00247e1ce1ad}\Shell\open\Command - “” = F:\xyw9tmdj.com – File not found
O33 - MountPoints2{7287554e-c7d3-11de-a10e-00247e1ce1ad}\Shell\AutoRun\command - “” = F:\b.com – File not found
O33 - MountPoints2{7287554e-c7d3-11de-a10e-00247e1ce1ad}\Shell\explore\Command - “” = F:\b.com – File not found
O33 - MountPoints2{7287554e-c7d3-11de-a10e-00247e1ce1ad}\Shell\open\Command - “” = F:\b.com – File not found
O33 - MountPoints2{79cbcb2f-d362-11de-8e26-00247e1ce1ad}\Shell\AutoRun\command - “” = lcw.exe
O33 - MountPoints2{79cbcb2f-d362-11de-8e26-00247e1ce1ad}\Shell\open\Command - “” = lcw.exe
O33 - MountPoints2{fbf7d109-c91a-11de-8ad5-00247e1ce1ad}\Shell\AutoRun\command - “” = F:\yudald.bat – File not found
O33 - MountPoints2{fbf7d109-c91a-11de-8ad5-00247e1ce1ad}\Shell\open\Command - “” = F:\yudald.bat – File not found
O33 - MountPoints2{fbf7d10e-c91a-11de-8ad5-00247e1ce1ad}\Shell - “” = AutoRun
O33 - MountPoints2{fbf7d10e-c91a-11de-8ad5-00247e1ce1ad}\Shell\AutoRun\command - “” = G:\LaunchU3.exe – File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] – “%1” %*
O35 - exefile [open] – “%1” %*
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias [2008-01-21 03:34:27 | 00,000,000 | —D | M]
NetSvcs: Irmon - C:\Windows\System32\irmon.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
NetSvcs: ezSharedSvc - C:\Windows\System32\ezsvc7.dll (EasyBits Sofware AS)
========== Files/Folders - Created Within 30 Days ==========
[2009-12-14 23:24:24 | 00,000,000 | —D | C] – C:\ProgramData\Spybot - Search & Destroy
[2009-12-14 23:24:24 | 00,000,000 | —D | C] – C:\Program Files\Spybot - Search & Destroy
[2009-12-13 23:36:03 | 00,024,064 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\nshhttp.dll
[2009-12-13 23:35:40 | 00,030,720 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\httpapi.dll
[2009-12-10 20:48:27 | 00,000,000 | —D | C] – C:\Users\Mateusz\Desktop\music
[2009-12-10 20:38:01 | 00,000,000 | —D | C] – C:\Users\Mateusz\Desktop\filmy
[2009-12-09 22:42:31 | 00,594,432 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\msfeeds.dll
[2009-12-09 22:42:31 | 00,387,584 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\iedkcs32.dll
[2009-12-09 22:42:30 | 01,469,440 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\inetcpl.cpl
[2009-12-09 22:42:30 | 00,184,320 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\iepeers.dll
[2009-12-09 22:42:30 | 00,164,352 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\ieui.dll
[2009-12-09 22:42:30 | 00,133,632 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\ieUnatt.exe
[2009-12-09 22:42:29 | 00,173,056 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\ie4uinit.exe
[2009-12-09 22:42:29 | 00,109,056 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\iesysprep.dll
[2009-12-09 22:42:29 | 00,055,296 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\msfeedsbs.dll
[2009-12-09 22:42:29 | 00,025,600 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\jsproxy.dll
[2009-12-09 22:42:28 | 01,638,912 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\mshtml.tlb
[2009-12-09 22:42:28 | 00,071,680 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\iesetup.dll
[2009-12-09 22:42:28 | 00,055,808 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\iernonce.dll
[2009-12-09 22:42:28 | 00,013,312 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\msfeedssync.exe
[2009-12-09 22:40:41 | 00,243,712 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\rastls.dll
[2009-11-30 23:22:50 | 00,000,000 | —D | C] – C:\Users\Mateusz\AppData\Local\Textual Content Provider
[2009-11-30 23:21:00 | 00,000,000 | —D | C] – C:\Program Files\Textual Content Provider
[2009-11-30 23:20:54 | 00,000,000 | —D | C] – C:\Program Files\Content Management Wizard
[2009-11-30 23:20:48 | 00,000,000 | —D | C] – C:\Users\Mateusz\AppData\Local\Internet Today
[2009-11-30 23:20:47 | 00,000,000 | —D | C] – C:\Program Files\Internet Today
[2009-11-30 23:20:40 | 00,000,000 | —D | C] – C:\Program Files\Customized Platform Advancer
[2009-11-30 23:20:35 | 00,000,000 | —D | C] – C:\Program Files\Automated Content Enhancer
[2009-11-30 23:20:26 | 00,000,000 | —D | C] – C:\Users\Mateusz\AppData\Local\Web Search Operator
[2009-11-30 23:20:25 | 00,000,000 | —D | C] – C:\Program Files\Web Search Operator
[2009-11-27 22:23:30 | 00,305,664 | ---- | C] (InstallShield Software Corporation) – C:\Windows\IsUn040c.exe
[2009-11-27 22:14:31 | 00,604,432 | R— | C] (Microsoft Corporation) – C:\Windows\System32\comctl32.ocx
[2009-11-27 21:56:27 | 00,000,000 | —D | C] – C:\Users\Mateusz\AppData\Roaming\DAEMON Tools Lite
[2009-11-27 21:56:22 | 00,000,000 | —D | C] – C:\ProgramData\DAEMON Tools Lite
[2009-11-27 19:27:30 | 00,000,000 | —D | C] – C:\Users\Mateusz\Desktop\jasio
[2009-11-27 19:25:30 | 00,000,000 | —D | C] – C:\Users\Mateusz\Desktop\z tel
[2009-11-25 21:00:51 | 00,002,048 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\tzres.dll
[2009-11-18 22:40:42 | 00,000,000 | —D | C] – C:\Users\Mateusz\Desktop\orzech
========== Files - Modified Within 30 Days ==========
[2009-12-15 21:44:22 | 03,145,728 | -HS- | M] () – C:\Users\Mateusz\NTUSER.DAT
[2009-12-15 20:38:31 | 00,187,103 | ---- | M] () – C:\ProgramData\nvModes.001
[2009-12-15 20:37:57 | 00,003,216 | -H-- | M] () – C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009-12-15 20:37:57 | 00,003,216 | -H-- | M] () – C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009-12-15 20:37:56 | 00,000,006 | -H-- | M] () – C:\Windows\tasks\SA.DAT
[2009-12-15 20:37:52 | 00,067,584 | --S- | M] () – C:\Windows\bootstat.dat
[2009-12-15 20:37:49 | 32,180,46976 | -HS- | M] () – C:\hiberfil.sys
[2009-12-15 20:37:02 | 00,524,288 | -HS- | M] () – C:\Users\Mateusz\NTUSER.DAT{14b975b7-49ff-11de-bd87-0022647ee2ba}.TMContainer00000000000000000001.regtrans-ms
[2009-12-15 20:37:02 | 00,065,536 | -HS- | M] () – C:\Users\Mateusz\NTUSER.DAT{14b975b7-49ff-11de-bd87-0022647ee2ba}.TM.blf
[2009-12-15 20:36:41 | 00,001,076 | ---- | M] () – C:\Windows\bthservsdp.dat
[2009-12-15 20:36:38 | 04,085,994 | -H-- | M] () – C:\Users\Mateusz\AppData\Local\IconCache.db
[2009-12-15 12:18:03 | 00,000,422 | -H-- | M] () – C:\Windows\tasks\User_Feed_Synchronization-{86568B29-A035-4DBC-B00F-F9E16695931D}.job
[2009-12-10 20:48:05 | 00,136,192 | ---- | M] () – C:\Users\Mateusz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-12-07 12:28:19 | 01,477,664 | ---- | M] () – C:\Windows\System32\PerfStringBackup.INI
[2009-12-07 12:28:19 | 00,665,404 | ---- | M] () – C:\Windows\System32\perfh015.dat
[2009-12-07 12:28:19 | 00,590,082 | ---- | M] () – C:\Windows\System32\perfh009.dat
[2009-12-07 12:28:19 | 00,128,164 | ---- | M] () – C:\Windows\System32\perfc015.dat
[2009-12-07 12:28:19 | 00,102,094 | ---- | M] () – C:\Windows\System32\perfc009.dat
[2009-11-30 07:45:29 | 00,007,592 | ---- | M] () – C:\Users\Mateusz\AppData\Local\d3d9caps.dat
[2009-11-29 13:31:42 | 00,010,544 | ---- | M] () – C:\Users\Mateusz\Documents\upowazninie.docx
[2009-11-29 12:04:21 | 00,000,226 | ---- | M] () – C:\Users\Mateusz\Documents\NOTEBOOK.DBF
[2009-11-29 10:04:55 | 00,002,028 | ---- | M] () – C:\Users\Public\Desktop\HP Photosmart Essential 3.0.lnk
[2009-11-29 09:49:38 | 00,389,144 | ---- | M] () – C:\Windows\System32\FNTCACHE.DAT
[2009-11-27 22:40:22 | 00,107,328 | ---- | M] () – C:\Users\Mateusz\AppData\Local\GDIPFONTCACHEV1.DAT
[2009-11-27 22:23:27 | 00,000,000 | RHS- | M] () – C:\MSDOS.SYS
[2009-11-27 22:23:27 | 00,000,000 | RHS- | M] () – C:\IO.SYS
[2009-11-27 21:57:44 | 00,691,696 | ---- | M] () – C:\Windows\System32\drivers\sptd.sys
[2009-11-21 07:35:38 | 00,594,432 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\msfeeds.dll
[2009-11-21 07:35:38 | 00,055,296 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\msfeedsbs.dll
[2009-11-21 07:34:58 | 00,025,600 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\jsproxy.dll
[2009-11-21 07:34:52 | 01,469,440 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\inetcpl.cpl
[2009-11-21 07:34:39 | 00,164,352 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\ieui.dll
[2009-11-21 07:34:39 | 00,109,056 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\iesysprep.dll
[2009-11-21 07:34:39 | 00,071,680 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\iesetup.dll
[2009-11-21 07:34:38 | 00,184,320 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\iepeers.dll
[2009-11-21 07:34:38 | 00,055,808 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\iernonce.dll
[2009-11-21 07:34:33 | 00,387,584 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\iedkcs32.dll
[2009-11-21 05:59:58 | 00,133,632 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\ieUnatt.exe
[2009-11-21 05:59:52 | 00,173,056 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\ie4uinit.exe
[2009-11-21 05:59:14 | 00,013,312 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\msfeedssync.exe
[2009-11-21 05:58:54 | 01,638,912 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\mshtml.tlb
========== Files Created - No Company Name ==========
[2009-11-29 13:31:42 | 00,010,544 | ---- | C] () – C:\Users\Mateusz\Documents\upowazninie.docx
[2009-11-27 22:25:11 | 00,000,226 | ---- | C] () – C:\Users\Mateusz\Documents\NOTEBOOK.DBF
[2009-11-27 22:23:27 | 00,000,000 | RHS- | C] () – C:\MSDOS.SYS
[2009-11-27 22:23:27 | 00,000,000 | RHS- | C] () – C:\IO.SYS
[2009-11-27 21:57:44 | 00,691,696 | ---- | C] () – C:\Windows\System32\drivers\sptd.sys
[2009-09-13 18:41:47 | 00,117,248 | ---- | C] () – C:\Windows\System32\EhStorAuthn.dll
[2009-06-06 14:26:37 | 00,007,592 | ---- | C] () – C:\Users\Mateusz\AppData\Local\d3d9caps.dat
[2009-06-02 09:32:16 | 00,164,352 | ---- | C] () – C:\Windows\System32\unrar.dll
[2009-06-02 09:32:13 | 03,596,288 | ---- | C] () – C:\Windows\System32\qt-dx331.dll
[2009-06-02 09:32:13 | 00,755,027 | ---- | C] () – C:\Windows\System32\xvidcore.dll
[2009-06-02 09:32:13 | 00,159,839 | ---- | C] () – C:\Windows\System32\xvidvfw.dll
[2009-06-02 09:32:11 | 00,007,680 | ---- | C] () – C:\Windows\System32\ff_vfw.dll
[2009-06-02 09:32:11 | 00,000,547 | ---- | C] () – C:\Windows\System32\ff_vfw.dll.manifest
[2009-06-01 20:57:56 | 00,000,266 | RHS- | C] () – C:\ProgramData\ntuser.pol
[2009-05-31 20:46:29 | 00,000,000 | ---- | C] () – C:\Windows\hpqEmlSz.INI
[2009-05-26 20:21:26 | 00,000,000 | ---- | C] () – C:\Users\Mateusz\AppData\Local\FnF4.txt
[2009-05-26 17:27:06 | 00,136,192 | ---- | C] () – C:\Users\Mateusz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-05-26 16:02:03 | 00,187,103 | ---- | C] () – C:\ProgramData\nvModes.001
[2009-05-26 15:59:11 | 00,187,103 | ---- | C] () – C:\ProgramData\nvModes.dat
[2009-05-26 12:46:27 | 00,007,974 | ---- | C] () – C:\ProgramData\hpzinstall.log
[2009-05-26 12:39:42 | 00,000,000 | ---- | C] () – C:\Users\Mateusz\AppData\Local\QSwitch.txt
[2009-05-26 12:39:42 | 00,000,000 | ---- | C] () – C:\Users\Mateusz\AppData\Local\DSwitch.txt
[2009-05-26 12:39:42 | 00,000,000 | ---- | C] () – C:\Users\Mateusz\AppData\Local\AtStart.txt
[2009-01-21 08:44:29 | 00,000,105 | ---- | C] () – C:\ProgramData{d36dd326-7280-11d8-97c8-000129760cbe}.log
[2009-01-21 08:44:22 | 00,000,032 | ---- | C] () – C:\ProgramData{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log
[2009-01-21 08:43:59 | 00,000,032 | ---- | C] () – C:\ProgramData{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log
[2009-01-21 08:43:27 | 00,000,032 | ---- | C] () – C:\ProgramData{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log
[2009-01-21 08:41:54 | 00,000,032 | ---- | C] () – C:\ProgramData{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log
[2008-11-04 05:35:06 | 00,000,109 | ---- | C] () – C:\ProgramData{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
[2008-11-04 05:30:52 | 00,000,110 | ---- | C] () – C:\ProgramData{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
[2008-11-04 05:29:28 | 00,000,105 | ---- | C] () – C:\ProgramData{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
[2008-11-04 05:28:28 | 00,000,107 | ---- | C] () – C:\ProgramData{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
[2007-11-14 16:17:34 | 00,204,800 | ---- | C] () – C:\Windows\System32\CogentBioSDK.dll
[2006-11-02 13:35:32 | 00,005,632 | ---- | C] () – C:\Windows\System32\sysprepMCE.dll
[2006-11-02 08:40:29 | 00,013,750 | ---- | C] () – C:\Windows\System32\pacerprf.ini
[2001-11-14 13:56:00 | 01,802,240 | ---- | C] () – C:\Windows\System32\lcppn21.dll
========== Custom Scans ==========
< %SYSTEMDRIVE%*.exe >
< %SYSTEMDRIVE%\eventlog.dll /s /md5 >
[2007-05-17 21:34:04 | 00,007,216 | ---- | M] () MD5=C2A279A458A06DE2C83D842AA042B5A8 – C:\Program Files\Cyberlink\PowerDirector\EventLog.dll
< %SYSTEMDRIVE%\scecli.dll /s /md5 >
[2009-04-11 07:28:24 | 00,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 – C:\Windows\System32\scecli.dll
[2008-01-21 03:24:50 | 00,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 – C:\Windows\winsxs\x86_microsoft-windows-s…urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2009-04-11 07:28:24 | 00,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 – C:\Windows\winsxs\x86_microsoft-windows-s…urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
< %SYSTEMDRIVE%\netlogon.dll /s /md5 >
[2009-04-11 07:28:23 | 00,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE – C:\Windows\System32\netlogon.dll
[2008-01-21 03:24:05 | 00,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F – C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
[2009-04-11 07:28:23 | 00,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE – C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
< %SYSTEMDRIVE%\cngaudit.dll /s /md5 >
[2006-11-02 10:46:03 | 00,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D – C:\Windows\System32\cngaudit.dll
[2006-11-02 10:46:03 | 00,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D – C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< %SYSTEMDRIVE%\sceclt.dll /s /md5 >
< End of report >
– Dodane 15.12.2009 (Wt) 21:54 –
w trakcie scanowania zauważyłem, że w okienku Standard Registry mialem zaznaczone All zamiast UseSafeList
– Dodane 15.12.2009 (Wt) 21:56 –
to coś zmienia?
– Dodane 15.12.2009 (Wt) 22:04 –
ja zrobie nowego scana, bo sprawdzilem i okazalo sie ze więcej ustawień pomieszałem i wkleje wtedy
Uruchom OTL i w oknie Custom Scans/Fixes wklej to:
Kliknij w Run Fix. Zatwierdź restart komputera.
Następnie uruchom OTL ponownie, tym razem wywołaj opcję Run Scan.
Pokaż nowy log OTL.txt oraz log z czyszczenia.
Zmiana zasad wklejania logów na forum - viewtopic.php?f=16&t=253052
wynik ponownego skanu
OTL logfile created on: 2009-12-15 22:51:24 - Run 3
OTL by OldTimer - Version 3.1.17.0 Folder = C:\Users\Mateusz\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18865)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
2,00 Gb Total Physical Memory | 1,65 Gb Available Physical Memory | 82,72% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 287,36 Gb Total Space | 38,47 Gb Free Space | 13,39% Space Free | Partition Type: NTFS
Drive D: | 10,72 Gb Total Space | 1,80 Gb Free Space | 16,76% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: MATEUSZ-PC
Current User Name: Mateusz
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2009-12-15 21:38:45 | 00,538,112 | ---- | M] (OldTimer Tools) – C:\Users\Mateusz\Downloads\OTL.exe
PRC - [2009-11-21 07:42:38 | 00,638,232 | ---- | M] (Microsoft Corporation) – C:\Program Files\Internet Explorer\iexplore.exe
PRC - [2009-08-22 09:14:09 | 00,117,640 | R— | M] (Symantec Corporation) – C:\Program Files\Norton 360\Engine\3.5.2.11\ccSvcHst.exe
PRC - [2009-05-29 12:41:26 | 00,144,712 | ---- | M] (Apple Inc.) – C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009-04-11 07:27:36 | 02,926,592 | ---- | M] (Microsoft Corporation) – C:\Windows\explorer.exe
PRC - [2009-04-11 07:27:28 | 00,069,120 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\conime.exe
PRC - [2009-01-26 15:31:16 | 02,144,088 | ---- | M] (Safer Networking Limited) – C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2008-12-12 10:17:38 | 00,238,888 | ---- | M] (Apple Inc.) – C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008-09-26 02:36:40 | 01,148,200 | ---- | M] (CyberLink Corp.) – C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
PRC - [2008-09-25 18:42:24 | 00,189,736 | ---- | M] (CyberLink) – C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
PRC - [2008-09-25 18:41:44 | 01,152,296 | ---- | M] (CyberLink Corp.) – C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
PRC - [2008-09-24 18:08:26 | 00,296,320 | ---- | M] () – C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
PRC - [2008-09-24 18:08:26 | 00,116,096 | ---- | M] () – C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
PRC - [2008-09-23 12:18:52 | 00,365,904 | ---- | M] () – C:\Program Files\SMINST\BLService.exe
PRC - [2008-09-23 11:03:38 | 00,912,688 | ---- | M] (Hewlett-Packard) – C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
PRC - [2008-09-08 14:05:48 | 00,193,840 | ---- | M] (Hewlett-Packard Development Company, L.P.) – C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
PRC - [2008-09-05 10:22:34 | 00,206,128 | ---- | M] ( Hewlett-Packard Development Company, L.P.) – C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
PRC - [2008-08-30 16:37:00 | 00,196,608 | ---- | M] (NVIDIA Corporation) – C:\Windows\System32\nvvsvc.exe
PRC - [2008-08-27 12:25:26 | 00,685,360 | ---- | M] () – C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
PRC - [2008-08-27 12:24:54 | 00,165,192 | ---- | M] (Hewlett-Packard Development Company, L.P.) – C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
PRC - [2008-08-11 14:00:10 | 00,225,362 | ---- | M] (IDT, Inc.) – C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\stacsv.exe
PRC - [2008-08-11 13:56:56 | 00,442,460 | ---- | M] (IDT, Inc.) – C:\Program Files\IDT\WDM\sttray.exe
PRC - [2008-07-14 19:15:10 | 00,814,144 | ---- | M] (DigitalPersona, Inc.) – C:\Program Files\DigitalPersona\Bin\DpAgent.exe
PRC - [2008-07-14 19:15:10 | 00,322,624 | ---- | M] (DigitalPersona, Inc.) – C:\Program Files\DigitalPersona\Bin\DpHostW.exe
PRC - [2008-07-02 11:50:55 | 00,116,064 | ---- | M] (AOL LLC) – c:\Program Files\AOL\Pasek narzędzi AOL 5.0\AolTbServer.exe
PRC - [2008-06-30 00:10:18 | 00,241,734 | ---- | M] () – C:\Program Files\Cyberlink\Shared files\RichVideo.exe
PRC - [2008-06-27 16:53:08 | 00,077,824 | ---- | M] (Andrea Electronics Corporation) – C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\AEstSrv.exe
PRC - [2008-06-19 13:17:36 | 00,727,592 | ---- | M] (Broadcom Corporation.) – C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2008-06-16 08:02:28 | 00,094,208 | ---- | M] (Hewlett-Packard) – c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
PRC - [2008-05-26 05:43:58 | 00,599,344 | ---- | M] (Validity Sensors, Inc.) – C:\Windows\System32\vfsFPService.exe
PRC - [2008-05-23 22:36:52 | 00,253,952 | ---- | M] (Alps Electric Co., Ltd.) – C:\Program Files\Apoint2K\Apoint.exe
PRC - [2008-04-15 14:51:00 | 00,488,752 | ---- | M] (Hewlett-Packard Development Company, L.P.) – C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
PRC - [2008-03-26 01:25:18 | 00,286,720 | ---- | M] (Hewlett-Packard) – C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
PRC - [2008-03-25 20:27:58 | 00,049,152 | ---- | M] (Hewlett-Packard) – C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
PRC - [2008-03-25 19:49:02 | 00,184,320 | ---- | M] (Hewlett-Packard Co.) – C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
PRC - [2008-03-25 19:49:00 | 00,569,344 | ---- | M] (Hewlett-Packard Co.) – C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
PRC - [2008-03-25 19:40:42 | 00,214,360 | ---- | M] (Hewlett-Packard Co.) – C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
PRC - [2008-03-21 21:32:04 | 00,046,376 | ---- | M] (Alps Electric Co., Ltd.) – C:\Program Files\Apoint2K\ApMsgFwd.exe
PRC - [2008-03-18 16:24:58 | 00,019,456 | ---- | M] (Hewlett-Packard Corporation) – C:\Windows\System32\hpservice.exe
PRC - [2008-01-21 03:25:33 | 00,202,240 | ---- | M] (Microsoft Corporation) – C:\Program Files\Windows Media Player\wmpnscfg.exe
PRC - [2008-01-21 03:23:32 | 00,095,744 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\mobsync.exe
PRC - [2008-01-21 03:23:24 | 00,215,552 | ---- | M] (Microsoft Corporation) – C:\Windows\WindowsMobile\wmdSync.exe
PRC - [2007-12-11 12:15:04 | 00,012,800 | ---- | M] (Agere Systems) – C:\Windows\System32\agrsmsvc.exe
PRC - [2007-11-22 00:21:10 | 00,131,072 | ---- | M] (Alcor Micro, Corp.) – C:\Program Files\Multimedia Card Reader\readericon10.exe
PRC - [2007-10-25 18:23:36 | 00,049,152 | ---- | M] (Alps Electric Co., Ltd.) – C:\Program Files\Apoint2K\ApntEx.exe
PRC - [2007-09-26 07:34:40 | 00,316,720 | ---- | M] (Hewlett-Packard Development Company, L.P.) – C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
PRC - [2007-07-12 12:43:50 | 00,226,904 | ---- | M] (Macrovision Corporation) – C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
========== Modules (SafeList) ==========
MOD - [2009-12-15 21:38:45 | 00,538,112 | ---- | M] (OldTimer Tools) – C:\Users\Mateusz\Downloads\OTL.exe
MOD - [2009-04-11 07:21:38 | 01,686,016 | ---- | M] (Microsoft Corporation) – C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - [2009-08-22 09:14:09 | 00,117,640 | R— | M] (Symantec Corporation) [Auto | Running] – C:\Program Files\Norton 360\Engine\3.5.2.11\ccSvcHst.exe – (N360)
SRV - [2009-05-30 11:30:20 | 00,541,992 | ---- | M] (Apple Inc.) [On_Demand | Stopped] – C:\Program Files\iPod\bin\iPodService.exe – (iPod Service)
SRV - [2009-05-29 12:41:26 | 00,144,712 | ---- | M] (Apple Inc.) [Auto | Running] – C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe – (Apple Mobile Device)
SRV - [2008-12-12 10:17:38 | 00,238,888 | ---- | M] (Apple Inc.) [Auto | Running] – C:\Program Files\Bonjour\mDNSResponder.exe – (Bonjour Service)
SRV - [2008-09-24 18:08:26 | 00,296,320 | ---- | M] () [Auto | Running] – C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe – (TVCapSvc) TV Background Capture Service (TVBCS)
SRV - [2008-09-24 18:08:26 | 00,116,096 | ---- | M] () [Auto | Running] – C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe – (TVSched) TV Task Scheduler (TVTS)
SRV - [2008-09-23 12:18:52 | 00,365,904 | ---- | M] () [Auto | Running] – C:\Program Files\SMINST\BLService.exe – (Recovery Service for Windows)
SRV - [2008-09-08 14:05:48 | 00,193,840 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Running] – C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe – (Com4QLBEx)
SRV - [2008-08-30 16:37:00 | 00,196,608 | ---- | M] (NVIDIA Corporation) [Auto | Running] – C:\Windows\System32\nvvsvc.exe – (nvsvc)
SRV - [2008-08-27 12:24:54 | 00,165,192 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Running] – C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe – (hpqwmiex)
SRV - [2008-08-11 14:00:10 | 00,225,362 | ---- | M] (IDT, Inc.) [Auto | Running] – C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\stacsv.exe – (STacSV)
SRV - [2008-07-18 12:13:20 | 00,053,760 | ---- | M] (Hewlett-Packard) [Auto | Running] – C:\Windows\System32\HPZipm12.dll – (Pml Driver HPZ12)
SRV - [2008-07-18 12:13:20 | 00,044,032 | ---- | M] (Hewlett-Packard) [Auto | Running] – C:\Windows\System32\HPZinw12.dll – (Net Driver HPZ12)
SRV - [2008-07-14 19:15:10 | 00,322,624 | ---- | M] (DigitalPersona, Inc.) [Auto | Running] – C:\Program Files\DigitalPersona\Bin\DpHostW.exe – (DpHost)
SRV - [2008-06-30 00:10:18 | 00,241,734 | ---- | M] () [Auto | Running] – C:\Program Files\Cyberlink\Shared files\RichVideo.exe – (RichVideo) Cyberlink RichVideo Service(CRVS)
SRV - [2008-06-27 16:53:08 | 00,077,824 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] – C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\AEstSrv.exe – (AESTFilters)
SRV - [2008-06-16 08:02:28 | 00,094,208 | ---- | M] (Hewlett-Packard) [Auto | Running] – c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe – (HP Health Check Service)
SRV - [2008-05-26 05:43:58 | 00,599,344 | ---- | M] (Validity Sensors, Inc.) [Auto | Running] – C:\Windows\System32\vfsFPService.exe – (vfsFPService)
SRV - [2008-05-05 23:25:46 | 00,165,416 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] – C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe – (GameConsoleService)
SRV - [2008-03-25 20:27:36 | 00,135,168 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] – C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll – (hpqddsvc)
SRV - [2008-03-25 20:25:50 | 00,630,784 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] – C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL – (HPSLPSVC)
SRV - [2008-03-25 19:38:24 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Running] – C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll – (hpqcxs08)
SRV - [2008-03-18 16:24:58 | 00,019,456 | ---- | M] (Hewlett-Packard Corporation) [Auto | Running] – C:\Windows\System32\hpservice.exe – (hpsrv)
SRV - [2008-02-03 12:00:00 | 00,129,992 | ---- | M] (EasyBits Sofware AS) [Auto | Running] – C:\Windows\System32\ezsvc7.dll – (ezSharedSvc)
SRV - [2008-01-21 03:23:32 | 00,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] – C:\Program Files\Windows Defender\MpSvc.dll – (WinDefend)
SRV - [2008-01-21 03:23:24 | 00,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] – C:\Windows\WindowsMobile\wcescomm.dll – (WcesComm)
SRV - [2008-01-21 03:23:24 | 00,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] – C:\Windows\WindowsMobile\rapimgr.dll – (RapiMgr)
SRV - [2007-12-11 12:15:04 | 00,012,800 | ---- | M] (Agere Systems) [Auto | Running] – C:\Windows\System32\agrsmsvc.exe – (AgereModemAudio)
SRV - [2006-11-02 13:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) [Auto | Stopped] – C:\Windows\ehome\ehstart.dll – (ehstart)
SRV - [2006-10-26 23:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] – C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe – (Microsoft Office Groove Audit Service)
SRV - [2006-10-26 18:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] – C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE – (odserv)
SRV - [2006-10-26 12:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] – C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE – (ose)
SRV - [2004-10-22 03:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] – C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe – (IDriverT)
========== Driver Services (SafeList) ==========
DRV - [2009-11-27 21:57:44 | 00,691,696 | ---- | M] () [Kernel | Boot | Running] – C:\Windows\System32\Drivers\sptd.sys – (sptd)
DRV - [2009-10-28 23:37:22 | 00,343,088 | ---- | M] (Symantec Corporation) [Kernel | System | Running] – C:\ProgramData\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091211.001\IDSvix86.sys – (IDSVix86)
DRV - [2009-09-11 10:40:02 | 00,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\SYMEVENT.SYS – (SymEvent)
DRV - [2009-09-09 07:58:41 | 00,026,600 | R— | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\GEARAspiWDM.sys – (GEARAspiWDM)
DRV - [2009-08-27 09:00:00 | 00,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] – C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys – (eeCtrl)
DRV - [2009-08-27 09:00:00 | 00,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] – C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys – (EraserUtilRebootDrv)
DRV - [2009-08-25 09:00:00 | 01,323,568 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] – C:\ProgramData\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091215.004\NAVEX15.SYS – (NAVEX15)
DRV - [2009-08-25 09:00:00 | 00,084,912 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] – C:\ProgramData\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091215.004\NAVENG.SYS – (NAVENG)
DRV - [2009-08-22 09:14:09 | 00,482,432 | ---- | M] (Symantec Corporation) [Kernel | System | Running] – C:\Windows\System32\Drivers\N360\0305020.00B\ccHPx86.sys – (ccHP)
DRV - [2009-08-22 09:14:09 | 00,310,320 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] – C:\Windows\system32\drivers\N360\0305020.00B\SYMEFA.SYS – (SymEFA)
DRV - [2009-08-22 09:14:09 | 00,308,272 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] – C:\Windows\System32\Drivers\N360\0305020.00B\SRTSP.SYS – (SRTSP)
DRV - [2009-08-22 09:14:09 | 00,259,632 | ---- | M] (Symantec Corporation) [Kernel | System | Running] – C:\Windows\System32\Drivers\N360\0305020.00B\BHDrvx86.sys – (BHDrvx86)
DRV - [2009-08-22 09:14:09 | 00,217,136 | ---- | M] (Symantec Corporation) [Kernel | System | Running] – C:\Windows\System32\Drivers\N360\0305020.00B\SYMTDI.SYS – (SYMTDI)
DRV - [2009-08-22 09:14:09 | 00,089,904 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] – C:\Windows\System32\Drivers\N360\0305020.00B\SYMFW.SYS – (SYMFW)
DRV - [2009-08-22 09:14:09 | 00,048,688 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] – C:\Windows\System32\Drivers\N360\0305020.00B\SYMNDISV.SYS – (SYMNDISV)
DRV - [2009-08-22 09:14:09 | 00,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] – C:\Windows\system32\drivers\N360\0305020.00B\SRTSPX.SYS – (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2009-08-22 09:13:59 | 00,025,648 | R— | M] (Symantec Corporation) [Kernel | System | Running] – C:\Windows\System32\drivers\SymIMV.sys – (SymIM)
DRV - [2009-05-29 12:36:16 | 00,039,424 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\usbaapl.sys – (USBAAPL)
DRV - [2009-04-11 05:46:08 | 00,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\usb8023x.sys – (usb_rndisx)
DRV - [2008-11-04 11:58:09 | 00,020,024 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\viaide.sys – (viaide)
DRV - [2008-11-04 11:58:09 | 00,019,000 | ---- | M] (CMD Technology, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\cmdide.sys – (cmdide)
DRV - [2008-11-04 11:58:09 | 00,017,464 | ---- | M] (Acer Laboratories Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\aliide.sys – (aliide)
DRV - [2008-09-26 02:36:34 | 00,059,376 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] – C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl – ({55662437-DA8C-40c0-AADA-2C816A897A49})
DRV - [2008-08-30 16:37:00 | 07,390,112 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\nvlddmkm.sys – (nvlddmkm)
DRV - [2008-08-29 00:48:46 | 03,664,384 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\NETw5v32.sys – (NETw5v32) Intel®
DRV - [2008-08-11 14:05:32 | 00,385,536 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\stwrt.sys – (STHDA)
DRV - [2008-06-23 12:54:08 | 00,081,960 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\btwavdt.sys – (btwavdt)
DRV - [2008-06-23 12:54:08 | 00,080,424 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\btwaudio.sys – (btwaudio)
DRV - [2008-06-23 12:54:08 | 00,016,168 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\btwrchid.sys – (btwrchid)
DRV - [2008-05-26 05:44:14 | 00,040,752 | ---- | M] (Validity Sensors, Inc.) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\vfs101x.sys – (vfs101x)
DRV - [2008-05-12 13:33:14 | 00,170,032 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\Apfiltr.sys – (ApfiltrService)
DRV - [2008-04-15 17:53:44 | 00,312,344 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] – C:\Windows\system32\DRIVERS\iaStor.sys – (iaStor)
DRV - [2008-03-27 12:12:12 | 00,024,424 | ---- | M] (Hewlett-Packard Corporation) [Kernel | Boot | Running] – C:\Windows\system32\DRIVERS\hpdskflt.sys – (hpdskflt)
DRV - [2008-03-27 12:11:34 | 00,034,664 | ---- | M] (Hewlett-Packard Corporation) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\Accelerometer.sys – (Accelerometer)
DRV - [2008-02-29 16:13:38 | 01,202,560 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\AGRSM.sys – (AgereSoftModem)
DRV - [2008-02-14 15:56:02 | 00,118,784 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\Rtlh86.sys – (RTL8169)
DRV - [2008-01-21 03:23:27 | 00,386,616 | ---- | M] (LSI Corporation, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\megasr.sys – (MegaSR)
DRV - [2008-01-21 03:23:27 | 00,149,560 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\adpu320.sys – (adpu320)
DRV - [2008-01-21 03:23:27 | 00,031,288 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\megasas.sys – (megasas)
DRV - [2008-01-21 03:23:27 | 00,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\serscan.sys – (StillCam)
DRV - [2008-01-21 03:23:26 | 00,101,432 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\adpu160m.sys – (adpu160m)
DRV - [2008-01-21 03:23:26 | 00,074,808 | ---- | M] (Silicon Integrated Systems) [Kernel | Boot | Running] – C:\Windows\system32\drivers\sisraid4.sys – (SiSRaid4)
DRV - [2008-01-21 03:23:26 | 00,040,504 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] – C:\Windows\system32\drivers\hpcisss.sys – (HpCISSs)
DRV - [2008-01-21 03:23:25 | 00,300,600 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\adpahci.sys – (adpahci)
DRV - [2008-01-21 03:23:25 | 00,089,656 | ---- | M] (LSI Logic) [Kernel | Boot | Running] – C:\Windows\system32\drivers\lsi_sas.sys – (LSI_SAS)
DRV - [2008-01-21 03:23:24 | 01,122,360 | ---- | M] (QLogic Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\ql2300.sys – (ql2300)
DRV - [2008-01-21 03:23:24 | 00,118,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\E1G60I32.sys – (E1G60) Intel®
DRV - [2008-01-21 03:23:24 | 00,079,928 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\arcsas.sys – (arcsas)
DRV - [2008-01-21 03:23:23 | 00,235,064 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\iastorv.sys – (iaStorV)
DRV - [2008-01-21 03:23:23 | 00,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Boot | Running] – C:\Windows\system32\drivers\vsmraid.sys – (vsmraid)
DRV - [2008-01-21 03:23:23 | 00,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\ulsata2.sys – (ulsata2)
DRV - [2008-01-21 03:23:23 | 00,096,312 | ---- | M] (LSI Logic) [Kernel | Boot | Running] – C:\Windows\system32\drivers\lsi_scsi.sys – (LSI_SCSI)
DRV - [2008-01-21 03:23:23 | 00,096,312 | ---- | M] (LSI Logic) [Kernel | Boot | Running] – C:\Windows\system32\drivers\lsi_fc.sys – (LSI_FC)
DRV - [2008-01-21 03:23:23 | 00,079,416 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\arc.sys – (arc)
DRV - [2008-01-21 03:23:22 | 00,342,584 | ---- | M] (Emulex) [Kernel | Boot | Running] – C:\Windows\system32\drivers\elxstor.sys – (elxstor)
DRV - [2008-01-21 03:23:21 | 00,422,968 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\adp94xx.sys – (adp94xx)
DRV - [2008-01-21 03:23:21 | 00,102,968 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\nvraid.sys – (nvraid)
DRV - [2008-01-21 03:23:21 | 00,045,112 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\nvstor.sys – (nvstor)
DRV - [2008-01-21 03:23:20 | 02,225,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\NETw3v32.sys – (NETw3v32) Intel®
DRV - [2008-01-21 03:23:20 | 00,238,648 | ---- | M] (ULi Electronics Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\uliahci.sys – (uliahci)
DRV - [2007-12-18 17:12:12 | 00,054,784 | ---- | M] (ITE Tech. Inc. ) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\itecir.sys – (itecir)
DRV - [2007-06-18 17:12:04 | 00,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] – C:\Windows\System32\drivers\HpqKbFiltr.sys – (HpqKbFiltr)
DRV - [2006-11-02 10:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\ql40xx.sys – (ql40xx)
DRV - [2006-11-02 10:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\ulsata.sys – (UlSata)
DRV - [2006-11-02 10:50:19 | 00,045,160 | ---- | M] (IBM Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\nfrd960.sys – (nfrd960)
DRV - [2006-11-02 10:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Boot | Running] – C:\Windows\system32\drivers\iirsp.sys – (iirsp)
DRV - [2006-11-02 10:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\djsvs.sys – (aic78xx)
DRV - [2006-11-02 10:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\iteraid.sys – (iteraid)
DRV - [2006-11-02 10:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Boot | Running] – C:\Windows\system32\drivers\iteatapi.sys – (iteatapi)
DRV - [2006-11-02 10:50:05 | 00,035,944 | ---- | M] (LSI Logic) [Kernel | Boot | Running] – C:\Windows\system32\drivers\symc8xx.sys – (Symc8xx)
DRV - [2006-11-02 10:50:03 | 00,034,920 | ---- | M] (LSI Logic) [Kernel | Boot | Running] – C:\Windows\system32\drivers\sym_u3.sys – (Sym_u3)
DRV - [2006-11-02 10:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Boot | Running] – C:\Windows\system32\drivers\mraid35x.sys – (Mraid35x)
DRV - [2006-11-02 10:49:56 | 00,031,848 | ---- | M] (LSI Logic) [Kernel | Boot | Running] – C:\Windows\system32\drivers\sym_hi.sys – (Sym_hi)
DRV - [2006-11-02 09:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\brserid.sys – (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006-11-02 09:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\brusbser.sys – (BrUsbSer)
DRV - [2006-11-02 09:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\brfiltup.sys – (BrFiltUp)
DRV - [2006-11-02 09:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\brfiltlo.sys – (BrFiltLo)
DRV - [2006-11-02 09:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\brserwdm.sys – (BrSerWdm)
DRV - [2006-11-02 09:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\brusbmdm.sys – (BrUsbMdm)
DRV - [2006-11-02 08:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | On_Demand | Stopped] – C:\Windows\system32\drivers\ntrigdigi.sys – (ntrigdigi)
DRV - [2006-11-02 08:30:56 | 00,194,048 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] – C:\Windows\System32\drivers\yk60x86.sys – (yukonwlh)
DRV - [2006-11-02 07:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto | Running] – C:\Windows\System32\drivers\secdrv.sys – (secdrv)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= … on&pf=cnnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= … on&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= … on&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.wp.pl/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyOverride” = *.local
FF - HKLM\software\mozilla\Firefox\Extensions\otis@digitalpersona.com: C:\Program Files\DigitalPersona\Bin\FirefoxExt\ [2009-01-21 08:44:52 | 00,000,000 | —D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2009-05-29 18:37:03 | 00,000,000 | —D | M]
[2009-12-15 20:42:58 | 00,000,000 | —D | M] – C:\Program Files\Mozilla Firefox\extensions
O1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\3.5.2.11\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\3.5.2.11\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (AOL Toolbar BHO) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\Pasek narzędzi AOL 5.0\aoltb.dll (AOL LLC)
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Users\Mateusz\AppData\Roaming\Nowe Gadu-Gadu_userdata\ggbho.1.dll (GG Network S.A.)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM…\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\3.5.2.11\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM…\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\Pasek narzędzi AOL 5.0\aoltb.dll (AOL LLC)
O3 - HKCU…\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU…\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\3.5.2.11\CoIEPlg.dll (Symantec Corporation)
O3 - HKCU…\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\Pasek narzędzi AOL 5.0\aoltb.dll (AOL LLC)
O4 - HKLM…\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM…\Run: [CLMLServer for HP TouchSmart] C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe (CyberLink)
O4 - HKLM…\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\DpAgent.exe (DigitalPersona, Inc.)
O4 - HKLM…\Run: [DVDAgent] C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe (CyberLink Corp.)
O4 - HKLM…\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM…\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard)
O4 - HKLM…\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe (Hewlett-Packard)
O4 - HKLM…\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM…\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM…\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM…\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM…\Run: [readericon10] C:\Program Files\Multimedia Card Reader\readericon10.exe (Alcor Micro, Corp.)
O4 - HKLM…\Run: [smartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (Hewlett-Packard)
O4 - HKLM…\Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM…\Run: [TSMAgent] C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe (CyberLink Corp.)
O4 - HKLM…\Run: [uCam_Menu] C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM…\Run: [updateLBPShortCut] C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM…\Run: [updatePSTShortCut] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM…\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM…\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation)
O4 - HKCU…\Run: [iSUSPM] C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation)
O4 - HKCU…\Run: [Le Petit Robert Hyperappel] C:\Program Files\Le Robert\Le Petit Robert\prhyper.exe File not found
O4 - HKCU…\Run: [rcwinHyper] C:\Program Files\Le Robert\Le Robert & Collins\rcwinHyper.exe File not found
O4 - HKCU…\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKCU…\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O8 - Extra context menu item: &Wyszukiwarka na pasku narzędzi AOL - C:\ProgramData\AOL\ieToolbar\resources\pl-PL\local\search.html ()
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth… - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth… - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra ‘Tools’ menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra ‘Tools’ menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Zaznaczanie HP Smart - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_15)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.63 62.179.1.62
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files\Norton 360\Engine\3.5.2.11\CoIEPlg.dll (Symantec Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 22:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat – [NTFS]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] – “%1” %*
O35 - exefile [open] – “%1” %*
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias [2008-01-21 03:34:27 | 00,000,000 | —D | M]
NetSvcs: Irmon - C:\Windows\System32\irmon.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
NetSvcs: ezSharedSvc - C:\Windows\System32\ezsvc7.dll (EasyBits Sofware AS)
========== Files/Folders - Created Within 30 Days ==========
[2009-12-15 22:34:23 | 00,000,000 | —D | C] – C:_OTL
[2009-12-14 23:24:24 | 00,000,000 | —D | C] – C:\ProgramData\Spybot - Search & Destroy
[2009-12-14 23:24:24 | 00,000,000 | —D | C] – C:\Program Files\Spybot - Search & Destroy
[2009-12-13 23:36:03 | 00,024,064 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\nshhttp.dll
[2009-12-13 23:35:40 | 00,030,720 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\httpapi.dll
[2009-12-10 20:48:27 | 00,000,000 | —D | C] – C:\Users\Mateusz\Desktop\music
[2009-12-10 20:38:01 | 00,000,000 | —D | C] – C:\Users\Mateusz\Desktop\filmy
[2009-12-09 22:42:31 | 00,594,432 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\msfeeds.dll
[2009-12-09 22:42:31 | 00,387,584 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\iedkcs32.dll
[2009-12-09 22:42:30 | 01,469,440 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\inetcpl.cpl
[2009-12-09 22:42:30 | 00,184,320 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\iepeers.dll
[2009-12-09 22:42:30 | 00,164,352 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\ieui.dll
[2009-12-09 22:42:30 | 00,133,632 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\ieUnatt.exe
[2009-12-09 22:42:29 | 00,173,056 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\ie4uinit.exe
[2009-12-09 22:42:29 | 00,109,056 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\iesysprep.dll
[2009-12-09 22:42:29 | 00,055,296 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\msfeedsbs.dll
[2009-12-09 22:42:29 | 00,025,600 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\jsproxy.dll
[2009-12-09 22:42:28 | 01,638,912 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\mshtml.tlb
[2009-12-09 22:42:28 | 00,071,680 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\iesetup.dll
[2009-12-09 22:42:28 | 00,055,808 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\iernonce.dll
[2009-12-09 22:42:28 | 00,013,312 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\msfeedssync.exe
[2009-12-09 22:40:41 | 00,243,712 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\rastls.dll
[2009-11-27 22:14:31 | 00,604,432 | R— | C] (Microsoft Corporation) – C:\Windows\System32\comctl32.ocx
[2009-11-27 21:56:27 | 00,000,000 | —D | C] – C:\Users\Mateusz\AppData\Roaming\DAEMON Tools Lite
[2009-11-27 21:56:22 | 00,000,000 | —D | C] – C:\ProgramData\DAEMON Tools Lite
[2009-11-27 19:27:30 | 00,000,000 | —D | C] – C:\Users\Mateusz\Desktop\jasio
[2009-11-27 19:25:30 | 00,000,000 | —D | C] – C:\Users\Mateusz\Desktop\z tel
[2009-11-25 21:00:51 | 00,002,048 | ---- | C] (Microsoft Corporation) – C:\Windows\System32\tzres.dll
[2009-11-18 22:40:42 | 00,000,000 | —D | C] – C:\Users\Mateusz\Desktop\orzech
========== Files - Modified Within 30 Days ==========
[2009-12-15 22:48:46 | 03,145,728 | -HS- | M] () – C:\Users\Mateusz\NTUSER.DAT
[2009-12-15 22:39:36 | 00,187,103 | ---- | M] () – C:\ProgramData\nvModes.001
[2009-12-15 22:36:50 | 00,003,216 | -H-- | M] () – C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009-12-15 22:36:50 | 00,003,216 | -H-- | M] () – C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009-12-15 22:36:47 | 00,000,006 | -H-- | M] () – C:\Windows\tasks\SA.DAT
[2009-12-15 22:36:45 | 00,067,584 | --S- | M] () – C:\Windows\bootstat.dat
[2009-12-15 22:36:41 | 32,180,46976 | -HS- | M] () – C:\hiberfil.sys
[2009-12-15 22:35:53 | 00,524,288 | -HS- | M] () – C:\Users\Mateusz\NTUSER.DAT{14b975b7-49ff-11de-bd87-0022647ee2ba}.TMContainer00000000000000000001.regtrans-ms
[2009-12-15 22:35:53 | 00,065,536 | -HS- | M] () – C:\Users\Mateusz\NTUSER.DAT{14b975b7-49ff-11de-bd87-0022647ee2ba}.TM.blf
[2009-12-15 22:35:32 | 00,000,012 | ---- | M] () – C:\Windows\bthservsdp.dat
[2009-12-15 20:36:38 | 04,085,994 | -H-- | M] () – C:\Users\Mateusz\AppData\Local\IconCache.db
[2009-12-15 12:18:03 | 00,000,422 | -H-- | M] () – C:\Windows\tasks\User_Feed_Synchronization-{86568B29-A035-4DBC-B00F-F9E16695931D}.job
[2009-12-10 20:48:05 | 00,136,192 | ---- | M] () – C:\Users\Mateusz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-12-07 12:28:19 | 01,477,664 | ---- | M] () – C:\Windows\System32\PerfStringBackup.INI
[2009-12-07 12:28:19 | 00,665,404 | ---- | M] () – C:\Windows\System32\perfh015.dat
[2009-12-07 12:28:19 | 00,590,082 | ---- | M] () – C:\Windows\System32\perfh009.dat
[2009-12-07 12:28:19 | 00,128,164 | ---- | M] () – C:\Windows\System32\perfc015.dat
[2009-12-07 12:28:19 | 00,102,094 | ---- | M] () – C:\Windows\System32\perfc009.dat
[2009-11-30 07:45:29 | 00,007,592 | ---- | M] () – C:\Users\Mateusz\AppData\Local\d3d9caps.dat
[2009-11-29 13:31:42 | 00,010,544 | ---- | M] () – C:\Users\Mateusz\Documents\upowazninie.docx
[2009-11-29 12:04:21 | 00,000,226 | ---- | M] () – C:\Users\Mateusz\Documents\NOTEBOOK.DBF
[2009-11-29 10:04:55 | 00,002,028 | ---- | M] () – C:\Users\Public\Desktop\HP Photosmart Essential 3.0.lnk
[2009-11-29 09:49:38 | 00,389,144 | ---- | M] () – C:\Windows\System32\FNTCACHE.DAT
[2009-11-27 22:40:22 | 00,107,328 | ---- | M] () – C:\Users\Mateusz\AppData\Local\GDIPFONTCACHEV1.DAT
[2009-11-27 22:23:27 | 00,000,000 | RHS- | M] () – C:\MSDOS.SYS
[2009-11-27 22:23:27 | 00,000,000 | RHS- | M] () – C:\IO.SYS
[2009-11-27 21:57:44 | 00,691,696 | ---- | M] () – C:\Windows\System32\drivers\sptd.sys
[2009-11-21 07:35:38 | 00,594,432 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\msfeeds.dll
[2009-11-21 07:35:38 | 00,055,296 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\msfeedsbs.dll
[2009-11-21 07:34:58 | 00,025,600 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\jsproxy.dll
[2009-11-21 07:34:52 | 01,469,440 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\inetcpl.cpl
[2009-11-21 07:34:39 | 00,164,352 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\ieui.dll
[2009-11-21 07:34:39 | 00,109,056 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\iesysprep.dll
[2009-11-21 07:34:39 | 00,071,680 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\iesetup.dll
[2009-11-21 07:34:38 | 00,184,320 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\iepeers.dll
[2009-11-21 07:34:38 | 00,055,808 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\iernonce.dll
[2009-11-21 07:34:33 | 00,387,584 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\iedkcs32.dll
[2009-11-21 05:59:58 | 00,133,632 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\ieUnatt.exe
[2009-11-21 05:59:52 | 00,173,056 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\ie4uinit.exe
[2009-11-21 05:59:14 | 00,013,312 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\msfeedssync.exe
[2009-11-21 05:58:54 | 01,638,912 | ---- | M] (Microsoft Corporation) – C:\Windows\System32\mshtml.tlb
========== Files Created - No Company Name ==========
[2009-11-29 13:31:42 | 00,010,544 | ---- | C] () – C:\Users\Mateusz\Documents\upowazninie.docx
[2009-11-27 22:25:11 | 00,000,226 | ---- | C] () – C:\Users\Mateusz\Documents\NOTEBOOK.DBF
[2009-11-27 22:23:27 | 00,000,000 | RHS- | C] () – C:\MSDOS.SYS
[2009-11-27 22:23:27 | 00,000,000 | RHS- | C] () – C:\IO.SYS
[2009-11-27 21:57:44 | 00,691,696 | ---- | C] () – C:\Windows\System32\drivers\sptd.sys
[2009-09-13 18:41:47 | 00,117,248 | ---- | C] () – C:\Windows\System32\EhStorAuthn.dll
[2009-06-06 14:26:37 | 00,007,592 | ---- | C] () – C:\Users\Mateusz\AppData\Local\d3d9caps.dat
[2009-06-02 09:32:16 | 00,164,352 | ---- | C] () – C:\Windows\System32\unrar.dll
[2009-06-02 09:32:13 | 03,596,288 | ---- | C] () – C:\Windows\System32\qt-dx331.dll
[2009-06-02 09:32:13 | 00,755,027 | ---- | C] () – C:\Windows\System32\xvidcore.dll
[2009-06-02 09:32:13 | 00,159,839 | ---- | C] () – C:\Windows\System32\xvidvfw.dll
[2009-06-02 09:32:11 | 00,007,680 | ---- | C] () – C:\Windows\System32\ff_vfw.dll
[2009-06-02 09:32:11 | 00,000,547 | ---- | C] () – C:\Windows\System32\ff_vfw.dll.manifest
[2009-06-01 20:57:56 | 00,000,266 | RHS- | C] () – C:\ProgramData\ntuser.pol
[2009-05-31 20:46:29 | 00,000,000 | ---- | C] () – C:\Windows\hpqEmlSz.INI
[2009-05-26 20:21:26 | 00,000,000 | ---- | C] () – C:\Users\Mateusz\AppData\Local\FnF4.txt
[2009-05-26 17:27:06 | 00,136,192 | ---- | C] () – C:\Users\Mateusz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-05-26 16:02:03 | 00,187,103 | ---- | C] () – C:\ProgramData\nvModes.001
[2009-05-26 15:59:11 | 00,187,103 | ---- | C] () – C:\ProgramData\nvModes.dat
[2009-05-26 12:46:27 | 00,007,974 | ---- | C] () – C:\ProgramData\hpzinstall.log
[2009-05-26 12:39:42 | 00,000,000 | ---- | C] () – C:\Users\Mateusz\AppData\Local\QSwitch.txt
[2009-05-26 12:39:42 | 00,000,000 | ---- | C] () – C:\Users\Mateusz\AppData\Local\DSwitch.txt
[2009-05-26 12:39:42 | 00,000,000 | ---- | C] () – C:\Users\Mateusz\AppData\Local\AtStart.txt
[2009-01-21 08:44:29 | 00,000,105 | ---- | C] () – C:\ProgramData{d36dd326-7280-11d8-97c8-000129760cbe}.log
[2009-01-21 08:44:22 | 00,000,032 | ---- | C] () – C:\ProgramData{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log
[2009-01-21 08:43:59 | 00,000,032 | ---- | C] () – C:\ProgramData{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log
[2009-01-21 08:43:27 | 00,000,032 | ---- | C] () – C:\ProgramData{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log
[2009-01-21 08:41:54 | 00,000,032 | ---- | C] () – C:\ProgramData{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log
[2008-11-04 05:35:06 | 00,000,109 | ---- | C] () – C:\ProgramData{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
[2008-11-04 05:30:52 | 00,000,110 | ---- | C] () – C:\ProgramData{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
[2008-11-04 05:29:28 | 00,000,105 | ---- | C] () – C:\ProgramData{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
[2008-11-04 05:28:28 | 00,000,107 | ---- | C] () – C:\ProgramData{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
[2007-11-14 16:17:34 | 00,204,800 | ---- | C] () – C:\Windows\System32\CogentBioSDK.dll
[2006-11-02 13:35:32 | 00,005,632 | ---- | C] () – C:\Windows\System32\sysprepMCE.dll
[2006-11-02 08:40:29 | 00,013,750 | ---- | C] () – C:\Windows\System32\pacerprf.ini
[2001-11-14 13:56:00 | 01,802,240 | ---- | C] () – C:\Windows\System32\lcppn21.dll
========== Custom Scans ==========
< %SYSTEMDRIVE%*.exe >
< %SYSTEMDRIVE%\eventlog.dll /s /md5 >
[2007-05-17 21:34:04 | 00,007,216 | ---- | M] () MD5=C2A279A458A06DE2C83D842AA042B5A8 – C:\Program Files\Cyberlink\PowerDirector\EventLog.dll
< %SYSTEMDRIVE%\scecli.dll /s /md5 >
[2009-04-11 07:28:24 | 00,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 – C:\Windows\System32\scecli.dll
[2008-01-21 03:24:50 | 00,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 – C:\Windows\winsxs\x86_microsoft-windows-s…urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2009-04-11 07:28:24 | 00,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 – C:\Windows\winsxs\x86_microsoft-windows-s…urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
< %SYSTEMDRIVE%\netlogon.dll /s /md5 >
[2009-04-11 07:28:23 | 00,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE – C:\Windows\System32\netlogon.dll
[2008-01-21 03:24:05 | 00,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F – C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
[2009-04-11 07:28:23 | 00,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE – C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
< %SYSTEMDRIVE%\cngaudit.dll /s /md5 >
[2006-11-02 10:46:03 | 00,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D – C:\Windows\System32\cngaudit.dll
[2006-11-02 10:46:03 | 00,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D – C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< %SYSTEMDRIVE%\sceclt.dll /s /md5 >
< End of report >
– Dodane 15.12.2009 (Wt) 22:58 –
udalo sie wkleic wynik czyszczenia?
– Dodane 15.12.2009 (Wt) 23:02 –
efekt już widać, nowe okna nie wyskakują i wszystko tak jakby przyśpieszyło
Uruchom OTL i w oknie Custom Scans/Fixes wklej to:
Kliknij w Run Fix. Zatwierdź restart komputera.
W OTL kliknij na przycisk CleanUp
Wykonaj pełny skan Dr. Web CureIt