wklejto.pl
Dodane przez: ~Anonim (2009-12-07 17:21) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
OTL logfile created on: 2009-12-07 17:18:29 - Run 3
OTL by OldTimer - Version 3.1.11.8     Folder = C:\\Documents and Settings\\User\\Moje dokumenty\\Downloads\\Programs
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1,99 Gb Total Physical Memory | 1,21 Gb Available Physical Memory | 61,03% Memory free
3,84 Gb Paging File | 2,93 Gb Available in Paging File | 76,31% Paging File free
Paging file location(s): c:\\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\\WINDOWS | %ProgramFiles% = C:\\Program Files
Drive C: | 99,36 Gb Total Space | 10,11 Gb Free Space | 10,18% Space Free | Partition Type: NTFS
Drive D: | 99,36 Gb Total Space | 71,49 Gb Free Space | 71,95% Space Free | Partition Type: NTFS
Drive E: | 99,36 Gb Total Space | 44,03 Gb Free Space | 44,32% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: KOMPUTER
Current User Name: User
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2009-12-07 14:27:17 | 00,537,088 | ---- | M] (OldTimer Tools) -- C:\\Documents and Settings\\User\\Moje dokumenty\\Downloads\\Programs\\OTL.exe
PRC - [2009-10-26 08:33:41 | 00,015,872 | ---- | M] () -- C:\\Program Files\\Unlocker\\UnlockerAssistant.exe
PRC - [2009-10-20 19:39:28 | 00,340,456 | ---- | M] (Kaspersky Lab) -- C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2010\\avp.exe
PRC - [2009-10-20 19:34:38 | 00,207,376 | ---- | M] (Kaspersky Lab) -- C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2010\\klwtblfs.exe
PRC - [2009-10-11 04:17:36 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\\Program Files\\Java\\jre6\\bin\\jusched.exe
PRC - [2009-10-11 04:17:35 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\\Program Files\\Java\\jre6\\bin\\jqs.exe
PRC - [2009-10-09 13:11:12 | 25,623,336 | R--- | M] (Skype Technologies S.A.) -- C:\\Program Files\\Skype\\Phone\\Skype.exe
PRC - [2009-10-09 13:11:12 | 00,078,008 | R--- | M] (Skype Technologies) -- C:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe
PRC - [2009-08-19 13:00:59 | 03,114,416 | ---- | M] (Tonec Inc.) -- C:\\Program Files\\Internet Download Manager\\IDMan.exe
PRC - [2009-03-08 13:09:26 | 00,638,816 | ---- | M] (Microsoft Corporation) -- C:\\Program Files\\Internet Explorer\\iexplore.exe
PRC - [2009-01-21 13:08:06 | 01,095,560 | ---- | M] (PC Tools) -- C:\\Program Files\\Spyware Doctor\\pctsSvc.exe
PRC - [2009-01-07 12:40:56 | 00,348,752 | ---- | M] (PC Tools) -- C:\\Program Files\\Spyware Doctor\\pctsAuxs.exe
PRC - [2008-12-08 13:33:48 | 01,173,384 | ---- | M] (PC Tools) -- C:\\Program Files\\Spyware Doctor\\pctsTray.exe
PRC - [2008-09-24 14:32:48 | 00,935,208 | ---- | M] (Nero AG) -- C:\\Program Files\\Common Files\\Nero\\Nero BackItUp 4\\NBService.exe
PRC - [2008-04-15 13:00:00 | 01,035,264 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\explorer.exe
PRC - [2008-03-25 19:49:02 | 00,184,320 | ---- | M] (Hewlett-Packard Co.) -- C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe
PRC - [2008-03-25 19:49:00 | 00,569,344 | ---- | M] (Hewlett-Packard Co.) -- C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqbam08.exe
PRC - [2008-03-25 19:40:42 | 00,214,360 | ---- | M] (Hewlett-Packard Co.) -- C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe
PRC - [2008-02-18 14:01:01 | 00,251,312 | ---- | M] (Tonec Inc.) -- C:\\Program Files\\Internet Download Manager\\IEMonitor.exe
PRC - [2008-02-13 07:31:34 | 16,857,600 | R--- | M] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\RTHDCPL.exe
PRC - [2007-11-02 19:12:50 | 00,262,144 | ---- | M] (Hewlett-Packard) -- C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe
PRC - [2007-10-14 20:17:32 | 00,049,152 | ---- | M] (Hewlett-Packard) -- C:\\Program Files\\HP\\HP Software Update\\hpwuSchd2.exe
PRC - [2007-09-05 10:13:36 | 00,252,440 | R--- | M] (Intel Corporation) -- C:\\WINDOWS\\system32\\igfxsrvc.exe
PRC - [2007-09-05 10:13:34 | 00,137,752 | R--- | M] (Intel Corporation) -- C:\\WINDOWS\\system32\\igfxpers.exe
PRC - [2007-09-05 10:13:26 | 00,166,424 | R--- | M] (Intel Corporation) -- C:\\WINDOWS\\system32\\hkcmd.exe
PRC - [2006-03-04 17:40:30 | 00,882,176 | ---- | M] () -- C:\\Program Files\\Kalendarz XP\\Kalendarz.exe
PRC - [2006-02-17 15:26:32 | 00,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe
PRC - [2004-11-02 20:24:46 | 00,032,768 | ---- | M] (Cyberlink Corp.) -- C:\\Program Files\\CyberLink\\PowerDVD\\PDVDServ.exe
PRC - [1999-12-01 12:47:24 | 00,036,864 | ---- | M] () -- C:\\Program Files\\PWN\\Definicje\\BIN\\Starter.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2009-12-07 14:27:17 | 00,537,088 | ---- | M] (OldTimer Tools) -- C:\\Documents and Settings\\User\\Moje dokumenty\\Downloads\\Programs\\OTL.exe
MOD - [2009-12-04 22:49:11 | 00,109,072 | ---- | M] (Kaspersky Lab) -- C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2010\\mzvkbd3.dll
MOD - [2009-10-26 08:33:32 | 00,004,608 | ---- | M] () -- C:\\Program Files\\Unlocker\\UnlockerHook.dll
MOD - [2009-03-26 16:35:39 | 00,034,224 | ---- | M] (Tonec Inc.) -- C:\\Program Files\\Internet Download Manager\\idmmkb.dll
MOD - [2009-02-13 14:11:44 | 00,100,864 | ---- | M] (PC Tools) -- C:\\Program Files\\Spyware Doctor\\klg.dat
MOD - [2008-11-13 14:19:40 | 00,148,944 | ---- | M] (PC Tools) -- C:\\Program Files\\Spyware Doctor\\smum32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2009-10-20 19:39:28 | 00,340,456 | ---- | M] (Kaspersky Lab) -- C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2010\\avp.exe -- (AVP)
SRV - [2009-10-11 04:17:35 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\\Program Files\\Java\\jre6\\bin\\jqs.exe -- (JavaQuickStarterService)
SRV - [2009-03-23 10:46:13 | 00,133,104 | ---- | M] (Google Inc.) -- C:\\Program Files\\Google\\Update\\GoogleUpdate.exe -- (gupdate1c9ab9c38b76c04) Usługa Google Update (gupdate1c9ab9c38b76c04)
SRV - [2009-03-23 10:43:04 | 00,183,280 | ---- | M] (Google) -- C:\\Program Files\\Google\\Common\\Google Updater\\GoogleUpdaterService.exe -- (gusvc)
SRV - [2009-01-21 13:08:06 | 01,095,560 | ---- | M] (PC Tools) -- C:\\Program Files\\Spyware Doctor\\pctsSvc.exe -- (sdCoreService)
SRV - [2009-01-07 12:40:56 | 00,348,752 | ---- | M] (PC Tools) -- C:\\Program Files\\Spyware Doctor\\pctsAuxs.exe -- (sdAuxService)
SRV - [2008-09-24 14:32:48 | 00,935,208 | ---- | M] (Nero AG) -- C:\\Program Files\\Common Files\\Nero\\Nero BackItUp 4\\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2008-07-18 12:13:20 | 00,053,760 | ---- | M] (Hewlett-Packard) -- C:\\WINDOWS\\system32\\HPZipm12.dll -- (Pml Driver HPZ12)
SRV - [2008-07-18 12:13:20 | 00,044,032 | ---- | M] (Hewlett-Packard) -- C:\\WINDOWS\\system32\\HPZinw12.dll -- (Net Driver HPZ12)
SRV - [2008-03-25 20:27:36 | 00,135,168 | ---- | M] (Hewlett-Packard Co.) -- C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqddsvc.dll -- (hpqddsvc)
SRV - [2008-03-25 19:38:24 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) -- C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqcxs08.dll -- (hpqcxs08)
SRV - [2006-02-17 15:26:32 | 00,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe -- (LightScribeService)
SRV - [2003-07-28 20:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) -- C:\\Program Files\\Common Files\\Microsoft Shared\\Source Engine\\OSE.EXE -- (ose)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2009-12-07 12:23:01 | 00,067,761 | ---- | M] (GMER) -- C:\\WINDOWS\\system32\\drivers\\gmer.sys -- (gmer)
DRV - [2009-12-04 22:49:11 | 00,315,408 | ---- | M] (Kaspersky Lab) -- C:\\WINDOWS\\system32\\drivers\\klif.sys -- (KLIF)
DRV - [2009-10-14 20:18:34 | 00,036,880 | ---- | M] (Kaspersky Lab) -- C:\\WINDOWS\\system32\\drivers\\klbg.sys -- (klbg)
DRV - [2009-10-02 18:39:44 | 00,019,472 | ---- | M] (Kaspersky Lab) -- C:\\WINDOWS\\system32\\drivers\\klmouflt.sys -- (klmouflt)
DRV - [2009-09-14 13:42:46 | 00,032,272 | ---- | M] (Kaspersky Lab) -- C:\\WINDOWS\\system32\\drivers\\klim5.sys -- (klim5)
DRV - [2009-09-01 14:29:50 | 00,128,016 | ---- | M] (Kaspersky Lab) -- C:\\WINDOWS\\system32\\drivers\\kl1.sys -- (kl1)
DRV - [2009-06-30 09:37:16 | 00,028,552 | ---- | M] (Panda Security, S.L.) -- C:\\WINDOWS\\system32\\drivers\\pavboot.sys -- (pavboot)
DRV - [2009-05-18 08:06:57 | 00,130,936 | ---- | M] (PC Tools) -- C:\\WINDOWS\\system32\\drivers\\PCTCore.sys -- (PCTCore)
DRV - [2009-02-22 20:44:01 | 00,047,360 | ---- | M] (VSO Software) -- C:\\WINDOWS\\system32\\drivers\\pcouffin.sys -- (pcouffin)
DRV - [2009-02-07 22:20:32 | 00,717,296 | ---- | M] (Duplex Secure Ltd.) -- C:\\WINDOWS\\System32\\Drivers\\sptd.sys -- (sptd)
DRV - [2009-02-01 21:38:14 | 00,016,608 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\\WINDOWS\\gdrv.sys -- (gdrv)
DRV - [2008-04-15 13:00:00 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\\WINDOWS\\system32\\drivers\\hdaudbus.sys -- (HDAudBus)
DRV - [2008-04-15 13:00:00 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\\WINDOWS\\system32\\drivers\\secdrv.sys -- (Secdrv)
DRV - [2008-04-15 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\\WINDOWS\\system32\\drivers\\ptilink.sys -- (Ptilink)
DRV - [2008-04-15 13:00:00 | 00,015,232 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\drivers\\mpe.sys -- (MPE)
DRV - [2008-02-14 10:04:06 | 04,676,096 | R--- | M] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\system32\\drivers\\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008-01-03 15:10:16 | 00,105,856 | R--- | M] (Realtek Semiconductor Corporation                           ) -- C:\\WINDOWS\\system32\\drivers\\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007-10-30 10:25:55 | 00,021,568 | R--- | M] (HP) -- C:\\WINDOWS\\system32\\drivers\\HPZius12.sys -- (HPZius12)
DRV - [2007-10-30 10:25:54 | 00,016,496 | R--- | M] (HP) -- C:\\WINDOWS\\system32\\drivers\\HPZipr12.sys -- (HPZipr12)
DRV - [2007-10-30 10:25:53 | 00,049,920 | R--- | M] (HP) -- C:\\WINDOWS\\system32\\drivers\\HPZid412.sys -- (HPZid412)
DRV - [2007-08-24 04:22:56 | 05,776,928 | R--- | M] (Intel Corporation) -- C:\\WINDOWS\\system32\\drivers\\igxpmp32.sys -- (ialm)
DRV - [2007-03-05 10:53:30 | 01,176,192 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) -- C:\\WINDOWS\\system32\\drivers\\AVerBDA3x.sys -- (AVerBDA3x)
DRV - [2004-09-01 10:42:18 | 00,138,396 | ---- | M] () -- C:\\WINDOWS\\system32\\drivers\\Pfc027.sys -- (SoC PC-Camera Service)
DRV - [2003-12-08 11:53:48 | 00,053,600 | ---- | M] (THOMSON) -- C:\\WINDOWS\\system32\\drivers\\alcan5wn.sys -- (alcan5wn) SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)
DRV - [2003-12-08 11:53:46 | 00,070,688 | ---- | M] (THOMSON) -- C:\\WINDOWS\\system32\\drivers\\alcaudsl.sys -- (alcaudsl)
DRV - [2001-11-08 09:53:54 | 00,018,120 | R--- | M] (   ) -- C:\\WINDOWS\\system32\\drivers\\gt680x.sys -- (GT680x)
DRV - [2001-10-26 16:05:44 | 00,006,912 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\drivers\\serscan.sys -- (StillCam)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.msn.com/
IE - HKLM\\SOFTWARE\\Microsoft\\Internet Explorer\\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\\SOFTWARE\\Microsoft\\Internet Explorer\\Search,SearchAssistant = http://www.google.com/ie
 
IE - HKCU\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://www.onet.pl/
IE - HKCU\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Search Page = http://www.google.com
IE - HKCU\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,SearchDefaultBranded = 1
IE - HKCU\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Secondary Start Pages = http://www.wp.pl/http://www.google.pl/ [binary data]
IE - HKCU\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.onet.pl/
IE - HKCU\\SOFTWARE\\Microsoft\\Internet Explorer\\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings: \"ProxyEnable\" = 0
IE - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings: \"ProxyOverride\" = <local>
 
[color=#E56717]========== FireFox ==========[/color]
 
 
 
[2009-05-23 11:33:36 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\User\\Dane aplikacji\\Mozilla\\Extensions
[2009-05-23 11:33:36 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\User\\Dane aplikacji\\Mozilla\\Extensions\\{418FBC96-F371-47C0-A903-9F2FF80455DC}
[2009-02-03 21:22:14 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\User\\Dane aplikacji\\Mozilla\\Extensions\\mozswing@mozswing.org
[2009-03-18 21:26:09 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\User\\Dane aplikacji\\Mozilla\\Firefox\\Profiles\\iha9ur20.default\\extensions
[2009-03-18 21:26:09 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\User\\Dane aplikacji\\Mozilla\\Firefox\\Profiles\\iha9ur20.default\\extensions\\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2009-02-04 17:35:56 | 00,000,000 | ---D | M] -- C:\\Program Files\\Mozilla Firefox\\extensions
[2009-02-04 17:33:02 | 00,000,000 | ---D | M] -- C:\\Program Files\\Mozilla Firefox\\extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}
 
O1 HOSTS File: (742 bytes) - C:\\WINDOWS\\system32\\drivers\\etc\\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\\Program Files\\Internet Download Manager\\IDMIECC.dll (Tonec Inc.)
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\\Program Files\\HP\\Digital Imaging\\Smart Web Printing\\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2010\\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\\Program Files\\Google\\GoogleToolbarNotifier\\5.4.4525.1752\\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2010\\klwtbbho.dll (Kaspersky Lab)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\\Program Files\\HP\\Digital Imaging\\Smart Web Printing\\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\\..\\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\\..\\Toolbar\\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\\..\\Toolbar\\WebBrowser: (Foxit Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\\Program Files\\AskBarDis\\bar\\bin\\askBar.dll (Ask.com)
O4 - HKLM..\\Run: [Alcmtr] C:\\WINDOWS\\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\\Run: [AVP] C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2010\\avp.exe (Kaspersky Lab)
O4 - HKLM..\\Run: [DemonStarter] C:\\Program Files\\PWN\\Definicje\\BIN\\Starter.exe ()
O4 - HKLM..\\Run: [HotKeysCmds] C:\\WINDOWS\\system32\\hkcmd.exe (Intel Corporation)
O4 - HKLM..\\Run: [HP Software Update] C:\\Program Files\\HP\\HP Software Update\\hpwuSchd2.exe (Hewlett-Packard)
O4 - HKLM..\\Run: [hpqSRMon] C:\\Program Files\\HP\\Digital Imaging\\bin\\HpqSRmon.exe (Hewlett-Packard)
O4 - HKLM..\\Run: [IgfxTray] C:\\WINDOWS\\system32\\igfxtray.exe (Intel Corporation)
O4 - HKLM..\\Run: [ISTray] C:\\Program Files\\Spyware Doctor\\pctsTray.exe (PC Tools)
O4 - HKLM..\\Run: [NeroFilterCheck] C:\\WINDOWS\\system32\\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\\Run: [Persistence] C:\\WINDOWS\\system32\\igfxpers.exe (Intel Corporation)
O4 - HKLM..\\Run: [RemoteControl] C:\\Program Files\\CyberLink\\PowerDVD\\PDVDServ.exe (Cyberlink Corp.)
O4 - HKLM..\\Run: [RTHDCPL] C:\\WINDOWS\\RTHDCPL.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\\Run: [SunJavaUpdateSched] C:\\Program Files\\Java\\jre6\\bin\\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\\Run: [UnlockerAssistant] C:\\Program Files\\Unlocker\\UnlockerAssistant.exe ()
O4 - HKCU..\\Run: [ccleaner] C:\\Program Files\\CCleaner\\CCleaner.exe (Piriform Ltd)
O4 - HKCU..\\Run: [IDMan] C:\\Program Files\\Internet Download Manager\\IDMan.exe (Tonec Inc.)
O4 - HKCU..\\Run: [Odkurzacz-MCD] C:\\Program Files\\Odkurzacz\\odk_mcd.exe (Franmo Software)
O4 - HKCU..\\Run: [Skype] C:\\Program Files\\Skype\\Phone\\Skype.exe (Skype Technologies S.A.)
O4 - HKCU..\\Run: [swg] C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\\Documents and Settings\\All Users\\Menu Start\\Programy\\Autostart\\Adobe Gamma Loader.exe.lnk = C:\\Program Files\\Common Files\\Adobe\\Calibration\\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\\Documents and Settings\\All Users\\Menu Start\\Programy\\Autostart\\HP Digital Imaging Monitor.lnk = C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\\Documents and Settings\\All Users\\Menu Start\\Programy\\Autostart\\Kalendarz XP.lnk = C:\\Program Files\\Kalendarz XP\\Kalendarz.exe ()
O6 - HKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDriveTypeAutoRun = 60
O7 - HKCU\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDriveTypeAutoRun = 95 00 00 00  [binary data]
O7 - HKCU\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDrives = 02 FE FF 03  [binary data]
O8 - Extra context menu item: Funkcja Google Sidewiki - C:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
O8 - Extra context menu item: Ściągnij przez IDM - C:\\Program Files\\Internet Download Manager\\IEExt.htm ()
O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - C:\\Program Files\\Internet Download Manager\\IEGetAll.htm ()
O8 - Extra context menu item: Ściągnij zawartość wideo FLV przez IDM - C:\\Program Files\\Internet Download Manager\\IEGetVL.htm ()
O9 - Extra Button: &Wirtualna klawiatura - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2010\\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: &Sprawdzanie adresów - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2010\\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: Zaznaczanie HP Smart - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\\Program Files\\HP\\Digital Imaging\\Smart Web Printing\\hpswp_BHO.dll (Hewlett-Packard Co.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5483.cab (Windows Live Safety Center Base Module)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1234982813625 (MUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\\System\\CCS\\Services\\Tcpip\\Parameters: DhcpNameServer = 212.244.115.20
O18 - Protocol\\Handler\\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\\Program Files\\Common Files\\Skype\\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (C:\\PROGRA~1\\KASPER~1\\KASPER~1\\mzvkbd3.dll) - C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 2010\\mzvkbd3.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\\WINDOWS\\explorer.exe (Microsoft Corporation)
O20 - Winlogon\\Notify\\igfxcui: DllName - igfxdev.dll - C:\\WINDOWS\\System32\\igfxdev.dll (Intel Corporation)
O20 - Winlogon\\Notify\\klogon: DllName - C:\\WINDOWS\\system32\\klogon.dll - C:\\WINDOWS\\system32\\klogon.dll (Kaspersky Lab)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2009-02-18 21:35:01 | 00,000,000 | ---- | M] () - C:\\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - comfile [open] -- \"%1\" %*
O35 - exefile [open] -- \"%1\" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2009-12-07 17:12:26 | 00,000,000 | RH-D | C] -- C:\\Documents and Settings\\User\\Recent
[2009-12-07 17:10:45 | 00,000,000 | ---D | C] -- C:\\_OTL
[2009-12-07 13:29:53 | 00,000,000 | ---D | C] -- C:\\Program Files\\SkanerOnline
[2009-12-07 12:23:01 | 00,067,761 | ---- | C] (GMER) -- C:\\WINDOWS\\System32\\drivers\\gmer.sys
[2009-12-07 11:47:51 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Dane aplikacji\\HPAppData
[2009-12-07 10:53:38 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\javaws.exe
[2009-12-07 10:53:38 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\javaw.exe
[2009-12-07 10:53:38 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\\WINDOWS\\System32\\java.exe
[2009-12-06 21:37:55 | 00,000,000 | ---D | C] -- C:\\backups
[2009-12-06 21:33:58 | 00,396,288 | ---- | C] (Trend Micro Inc.) -- C:\\HijackThis.exe
[2009-12-04 22:52:58 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Dane aplikacji\\IDM
[2009-12-04 22:52:53 | 00,000,000 | ---D | C] -- C:\\Program Files\\Internet Download Manager
[2009-12-04 22:37:01 | 00,000,000 | ---D | C] -- C:\\Program Files\\Kaspersky Lab
[2009-12-04 22:37:01 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\All Users\\Dane aplikacji\\Kaspersky Lab
[2009-12-04 22:36:44 | 00,315,408 | ---- | C] (Kaspersky Lab) -- C:\\WINDOWS\\System32\\drivers\\klif.sys
[2009-12-04 20:23:37 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\All Users\\Dane aplikacji\\Kaspersky Lab Setup Files
[2009-12-03 13:02:18 | 00,028,552 | ---- | C] (Panda Security, S.L.) -- C:\\WINDOWS\\System32\\drivers\\pavboot.sys
[2009-12-03 13:02:11 | 00,000,000 | ---D | C] -- C:\\Program Files\\Panda Security
[2009-12-02 21:00:05 | 00,000,000 | ---D | C] -- C:\\Program Files\\Unlocker
[2009-12-01 21:12:59 | 00,000,000 | ---D | C] -- C:\\Program Files\\PDF-Convert
[2009-12-01 21:12:56 | 00,000,000 | ---D | C] -- C:\\Program Files\\psconvert
[2009-12-01 21:12:56 | 00,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\psconv
[2009-12-01 09:19:39 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Dane aplikacji\\Uniblue
[2009-11-27 18:51:29 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Dane aplikacji\\URSoft
[2009-11-22 22:54:19 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Ustawienia lokalne\\Dane aplikacji\\ChemTable Software
[2009-11-22 22:53:45 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Dane aplikacji\\ChemTable Software
[2009-11-22 21:45:26 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Dane aplikacji\\Search Settings
[2009-11-22 21:45:20 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Dane aplikacji\\Dealio
[2009-11-22 21:43:40 | 00,000,000 | ---D | C] -- C:\\Program Files\\Search Settings
[2009-11-22 21:43:02 | 00,516,173 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\MSVCP60D.DLL
[2009-11-22 21:43:02 | 00,385,100 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\MSVCRTD.DLL
[2009-11-22 21:43:02 | 00,164,144 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\COMCT232.OCX
[2009-11-22 21:43:01 | 02,084,864 | ---- | C] (NCT Company Ltd.) -- C:\\WINDOWS\\System32\\AudDesign.dll
[2009-11-22 21:43:01 | 01,986,560 | ---- | C] (NCT Company Ltd.) -- C:\\WINDOWS\\System32\\AudFile.dll
[2009-11-22 21:43:01 | 01,212,416 | ---- | C] (NCT Company Ltd.) -- C:\\WINDOWS\\System32\\AudioInfos.dll
[2009-11-22 21:43:01 | 00,479,232 | ---- | C] (NCT Company Ltd.) -- C:\\WINDOWS\\System32\\AudioVisu.dll
[2009-11-22 21:43:01 | 00,458,752 | ---- | C] (NCT Company Ltd.) -- C:\\WINDOWS\\System32\\AudPlayer.dll
[2009-11-22 21:43:01 | 00,454,656 | ---- | C] (NCT Company Ltd.) -- C:\\WINDOWS\\System32\\AudioRecord.dll
[2009-11-22 21:43:01 | 00,417,792 | ---- | C] (NCT Company Ltd.) -- C:\\WINDOWS\\System32\\AudDisplay.dll
[2009-11-22 21:43:01 | 00,348,160 | ---- | C] (NCT Company Ltd.) -- C:\\WINDOWS\\System32\\WMAFile.dll
[2009-11-22 21:43:01 | 00,119,568 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\VB6FR.DLL
[2009-11-22 21:43:01 | 00,115,920 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\msinet.OCX
[2009-11-22 21:43:01 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\VB6STKIT.DLL
[2009-11-22 21:43:01 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\inetfr.DLL
[2009-11-22 21:43:00 | 00,662,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\MSCOMCT2.OCX
[2009-11-22 21:43:00 | 00,141,312 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\MSCMCFR.DLL
[2009-11-22 21:43:00 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\Mscc2fr.dll
[2009-11-22 21:43:00 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\CMDLGFR.DLL
[2009-11-22 21:43:00 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\TABCTFR.DLL
[2009-11-22 21:42:59 | 00,000,000 | ---D | C] -- C:\\Program Files\\Free Audio Pack
[2009-11-22 11:26:11 | 00,000,000 | ---D | C] -- C:\\MP3
[2009-11-20 10:50:25 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Dane aplikacji\\BITS
[2009-11-20 10:50:05 | 00,000,000 | ---D | C] -- C:\\Program Files\\FlashGet Network
[2009-11-19 17:29:46 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Moje dokumenty\\Nowy Sącz
[2009-11-19 17:29:08 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Moje dokumenty\\Kresy
[2009-11-19 17:28:51 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Moje dokumenty\\Czechy
[2009-11-17 15:41:49 | 00,081,920 | ---- | C] (FishFactory - Paweł Wesołowski) -- C:\\Documents and Settings\\User\\Pulpit\\Przegladarka czcionek.exe
[2009-11-17 12:47:50 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Moje dokumenty\\Any Video Converter
[2009-11-17 12:47:31 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Dane aplikacji\\Any Video Converter
[2009-11-17 12:47:28 | 00,000,000 | ---D | C] -- C:\\Program Files\\Any Video Converter
[2009-11-17 12:34:53 | 00,000,000 | ---D | C] -- C:\\Program Files\\PhotoInstrument
[2009-11-17 09:58:50 | 00,000,000 | ---D | C] -- C:\\videooutput
[2009-11-16 21:10:01 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\User\\Ustawienia lokalne\\Dane aplikacji\\Ares
[2009-11-13 14:34:04 | 00,000,000 | ---D | C] -- C:\\Program Files\\Common Files\\Skype
[2009-11-11 18:19:45 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\All Users\\Dane aplikacji\\vsosdk
[2009-11-08 12:56:02 | 00,000,000 | ---D | C] -- C:\\Most
[2009-02-22 20:44:01 | 00,047,360 | ---- | C] (VSO Software) -- C:\\Documents and Settings\\User\\Dane aplikacji\\pcouffin.sys
[2009-02-02 18:06:50 | 00,018,120 | R--- | C] (   ) -- C:\\WINDOWS\\System32\\drivers\\gt680x.sys
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2009-12-07 17:18:00 | 00,001,036 | ---- | M] () -- C:\\WINDOWS\\tasks\\GoogleUpdateTaskMachineUA.job
[2009-12-07 17:12:20 | 00,000,006 | -H-- | M] () -- C:\\WINDOWS\\tasks\\SA.DAT
[2009-12-07 17:12:18 | 00,002,048 | --S- | M] () -- C:\\WINDOWS\\bootstat.dat
[2009-12-07 17:11:18 | 10,747,904 | ---- | M] () -- C:\\Documents and Settings\\User\\ntuser.dat
[2009-12-07 17:11:18 | 00,000,292 | -HS- | M] () -- C:\\Documents and Settings\\User\\ntuser.ini
[2009-12-07 16:00:54 | 00,002,267 | ---- | M] () -- C:\\Documents and Settings\\All Users\\Pulpit\\Skype.lnk
[2009-12-07 15:24:47 | 00,013,646 | ---- | M] () -- C:\\WINDOWS\\System32\\wpa.dbl
[2009-12-07 14:22:18 | 00,001,012 | ---- | M] () -- C:\\WINDOWS\\win.ini
[2009-12-07 14:22:18 | 00,000,227 | ---- | M] () -- C:\\WINDOWS\\system.ini
[2009-12-07 14:22:18 | 00,000,211 | -HS- | M] () -- C:\\boot.ini
[2009-12-07 13:17:19 | 00,002,539 | ---- | M] () -- C:\\Documents and Settings\\User\\Pulpit\\Word 2003.lnk
[2009-12-07 12:23:16 | 00,000,250 | ---- | M] () -- C:\\WINDOWS\\gmer.ini
[2009-12-07 12:23:01 | 00,565,311 | ---- | M] () -- C:\\WINDOWS\\gmer.dll
[2009-12-07 12:23:01 | 00,067,761 | ---- | M] (GMER) -- C:\\WINDOWS\\System32\\drivers\\gmer.sys
[2009-12-07 12:23:01 | 00,000,080 | ---- | M] () -- C:\\WINDOWS\\gmer_uninstall.cmd
[2009-12-07 11:12:33 | 00,000,069 | ---- | M] () -- C:\\WINDOWS\\NeroDigital.ini
[2009-12-06 23:02:34 | 00,000,047 | ---- | M] () -- C:\\WINDOWS\\wininit.ini
[2009-12-06 21:33:58 | 00,396,288 | ---- | M] (Trend Micro Inc.) -- C:\\HijackThis.exe
[2009-12-06 21:33:58 | 00,001,093 | ---- | M] () -- C:\\Documents and Settings\\User\\Pulpit\\HijackThis.lnk
[2009-12-05 13:24:26 | 00,000,000 | ---- | M] () -- C:\\Documents and Settings\\User\\YLYL
[2009-12-04 22:49:11 | 00,315,408 | ---- | M] (Kaspersky Lab) -- C:\\WINDOWS\\System32\\drivers\\klif.sys
[2009-12-04 22:38:04 | 00,108,059 | ---- | M] () -- C:\\WINDOWS\\System32\\drivers\\klin.dat
[2009-12-04 22:38:04 | 00,095,259 | ---- | M] () -- C:\\WINDOWS\\System32\\drivers\\klick.dat
[2009-12-03 20:52:09 | 00,074,752 | ---- | M] () -- C:\\Documents and Settings\\User\\Ustawienia lokalne\\Dane aplikacji\\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-12-03 11:47:30 | 00,185,856 | ---- | M] () -- C:\\Zrzut.doc
[2009-12-03 09:18:00 | 00,001,032 | ---- | M] () -- C:\\WINDOWS\\tasks\\GoogleUpdateTaskMachineCore.job
[2009-12-02 16:29:23 | 00,075,839 | ---- | M] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\123.jpg
[2009-12-02 16:29:06 | 00,075,839 | ---- | M] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\11.jpg
[2009-12-02 16:28:51 | 00,075,839 | ---- | M] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\22.jpg
[2009-12-02 16:28:29 | 00,075,839 | ---- | M] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\23.jpg
[2009-12-02 16:28:14 | 00,075,839 | ---- | M] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\1.jpg
[2009-12-02 16:27:56 | 00,075,839 | ---- | M] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\prawdziwek -.jpg
[2009-12-02 16:27:42 | 00,472,374 | ---- | M] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\prawdziwek -.bmp
[2009-12-02 13:32:14 | 00,013,030 | ---- | M] () -- C:\\PDOXUSRS.NET
[2009-12-01 21:15:00 | 01,227,482 | ---- | M] () -- C:\\wilno005.tif
[2009-12-01 21:14:25 | 01,227,482 | ---- | M] () -- C:\\wilno001.tif
[2009-12-01 21:14:00 | 00,001,024 | ---- | M] () -- C:\\Documents and Settings\\All Users\\Dane aplikacji\\imgpdf2.dll
[2009-12-01 21:13:02 | 00,000,722 | ---- | M] () -- C:\\Documents and Settings\\User\\Pulpit\\PDF to Image Converter.lnk
[2009-12-01 21:12:57 | 00,000,164 | ---- | M] () -- C:\\WINDOWS\\System32\\psconv.ini
[2009-12-01 20:32:39 | 74,973,339 | ---- | M] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\Image.nrg
[2009-12-01 12:52:35 | 00,159,134 | ---- | M] () -- C:\\Zrzut02.psd
[2009-12-01 09:00:47 | 00,445,062 | ---- | M] () -- C:\\Zrzut01.psd
[2009-11-30 23:16:50 | 00,000,004 | ---- | M] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\avdrn.dat
[2009-11-30 23:16:11 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\svchost.exe
[2009-11-27 19:04:07 | 00,000,023 | -HS- | M] () -- C:\\WINDOWS\\System32\\cffaf_d.dll
[2009-11-27 19:04:07 | 00,000,023 | ---- | M] () -- C:\\WINDOWS\\System32\\eabcdbad6_d.ocx
[2009-11-27 18:39:55 | 00,001,548 | ---- | M] () -- C:\\Documents and Settings\\User\\Pulpit\\CCleaner.lnk
[2009-11-24 22:19:50 | 00,000,103 | ---- | M] () -- C:\\WINDOWS\\pro.INI
[2009-11-24 21:52:09 | 10,568,461 | ---- | M] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\Czerwinski.flv
[2009-11-24 20:45:06 | 00,159,363 | ---- | M] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\9 (110).jpg
[2009-11-24 15:12:22 | 00,171,035 | ---- | M] () -- C:\\pth_NS_040_20091124_pomnik.pdf
[2009-11-22 22:58:24 | 47,185,920 | ---- | M] () -- C:\\Documents and Settings\\User\\ntuser.dat_RODefarg.tmp.bak
[2009-11-22 22:58:18 | 03,188,178 | -H-- | M] () -- C:\\Documents and Settings\\User\\Ustawienia lokalne\\Dane aplikacji\\IconCache.db
[2009-11-22 22:57:31 | 00,020,576 | ---- | M] () -- C:\\WINDOWS\\System32\\RODefargBin.dat
[2009-11-22 21:43:06 | 00,000,918 | ---- | M] () -- C:\\Documents and Settings\\User\\Pulpit\\Easy Audio Cutter.lnk
[2009-11-22 21:43:04 | 00,000,902 | ---- | M] () -- C:\\Documents and Settings\\User\\Pulpit\\Free CD Ripper.lnk
[2009-11-22 21:43:04 | 00,000,900 | ---- | M] () -- C:\\Documents and Settings\\User\\Pulpit\\Free Mp3 Wma Converter.lnk
[2009-11-22 20:12:05 | 02,066,432 | ---- | M] () -- C:\\Watykan.ppt
[2009-11-18 18:23:35 | 00,219,136 | ---- | M] () -- C:\\powiklana_po_grypie.pps
[2009-11-18 09:37:30 | 00,001,044 | ---- | M] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\vso_ts_preview.xml
[2009-11-17 20:44:24 | 00,522,621 | ---- | M] () -- C:\\Roman Chruściel.jpg
[2009-11-17 20:38:47 | 00,077,752 | ---- | M] () -- C:\\Documents and Settings\\User\\Ustawienia lokalne\\Dane aplikacji\\GDIPFONTCACHEV1.DAT
[2009-11-17 19:06:55 | 00,282,128 | ---- | M] () -- C:\\WINDOWS\\System32\\FNTCACHE.DAT
[2009-11-17 12:47:35 | 00,000,715 | ---- | M] () -- C:\\Documents and Settings\\User\\Pulpit\\Any Video Converter.lnk
[2009-11-17 12:38:52 | 00,000,766 | ---- | M] () -- C:\\Documents and Settings\\User\\Pulpit\\PhotoInstrument.exe.lnk
[2009-11-17 11:56:15 | 00,045,592 | ---- | M] () -- C:\\Ja02.jpg
[2009-11-17 11:49:32 | 00,036,218 | ---- | M] () -- C:\\Ja01.jpg
[2009-11-17 10:51:12 | 00,081,920 | ---- | M] (FishFactory - Paweł Wesołowski) -- C:\\Documents and Settings\\User\\Pulpit\\Przegladarka czcionek.exe
[2009-11-16 17:57:27 | 00,000,129 | ---- | M] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\default.rss
[2009-11-16 14:48:20 | 00,087,608 | ---- | M] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\inst.exe
[2009-11-16 14:48:20 | 00,047,360 | ---- | M] (VSO Software) -- C:\\Documents and Settings\\User\\Dane aplikacji\\pcouffin.sys
[2009-11-16 14:48:20 | 00,007,887 | ---- | M] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\pcouffin.cat
[2009-11-16 14:48:20 | 00,001,144 | ---- | M] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\pcouffin.inf
[2009-11-14 19:50:38 | 00,030,374 | ---- | M] () -- C:\\wzorowy_uczen.jpeg
[2009-11-14 19:18:38 | 00,001,813 | ---- | M] () -- C:\\Documents and Settings\\All Users\\Pulpit\\Google Chrome.lnk
[2009-11-13 21:47:04 | 00,000,766 | ---- | M] () -- C:\\Documents and Settings\\User\\Pulpit\\wmplayer.exe.lnk
[2009-11-10 15:31:19 | 00,375,226 | ---- | M] () -- C:\\Znowu do pracy.gif
[2009-11-10 14:20:36 | 00,023,040 | ---- | M] () -- C:\\Modlitwa wiernych.doc
[2009-11-08 15:21:52 | 00,000,065 | ---- | M] () -- C:\\WINDOWS\\ZZSW.INI
[2009-11-08 13:46:05 | 00,000,757 | ---- | M] () -- C:\\Documents and Settings\\User\\Pulpit\\TatryPWN.exe.lnk
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2009-12-07 12:23:16 | 00,000,250 | ---- | C] () -- C:\\WINDOWS\\gmer.ini
[2009-12-07 12:23:01 | 00,573,440 | ---- | C] () -- C:\\WINDOWS\\gmer.exe
[2009-12-07 12:23:01 | 00,565,311 | ---- | C] () -- C:\\WINDOWS\\gmer.dll
[2009-12-07 12:23:01 | 00,000,080 | ---- | C] () -- C:\\WINDOWS\\gmer_uninstall.cmd
[2009-12-06 23:02:34 | 00,000,047 | ---- | C] () -- C:\\WINDOWS\\wininit.ini
[2009-12-06 21:33:58 | 00,001,093 | ---- | C] () -- C:\\Documents and Settings\\User\\Pulpit\\HijackThis.lnk
[2009-12-05 13:24:26 | 00,000,000 | ---- | C] () -- C:\\Documents and Settings\\User\\YLYL
[2009-12-04 22:38:04 | 00,108,059 | ---- | C] () -- C:\\WINDOWS\\System32\\drivers\\klin.dat
[2009-12-04 22:38:04 | 00,095,259 | ---- | C] () -- C:\\WINDOWS\\System32\\drivers\\klick.dat
[2009-12-03 11:47:30 | 00,185,856 | ---- | C] () -- C:\\Zrzut.doc
[2009-12-02 16:29:23 | 00,075,839 | ---- | C] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\123.jpg
[2009-12-02 16:29:06 | 00,075,839 | ---- | C] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\11.jpg
[2009-12-02 16:28:51 | 00,075,839 | ---- | C] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\22.jpg
[2009-12-02 16:28:29 | 00,075,839 | ---- | C] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\23.jpg
[2009-12-02 16:28:14 | 00,075,839 | ---- | C] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\1.jpg
[2009-12-02 16:27:40 | 00,472,374 | ---- | C] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\prawdziwek -.bmp
[2009-12-02 16:27:27 | 00,075,839 | ---- | C] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\prawdziwek -.jpg
[2009-12-02 13:26:23 | 00,013,030 | ---- | C] () -- C:\\PDOXUSRS.NET
[2009-12-01 21:15:00 | 01,227,482 | ---- | C] () -- C:\\wilno005.tif
[2009-12-01 21:14:24 | 01,227,482 | ---- | C] () -- C:\\wilno001.tif
[2009-12-01 21:13:13 | 00,001,024 | ---- | C] () -- C:\\Documents and Settings\\All Users\\Dane aplikacji\\imgpdf2.dll
[2009-12-01 21:13:02 | 00,000,722 | ---- | C] () -- C:\\Documents and Settings\\User\\Pulpit\\PDF to Image Converter.lnk
[2009-12-01 21:12:57 | 00,000,164 | ---- | C] () -- C:\\WINDOWS\\System32\\psconv.ini
[2009-12-01 20:27:11 | 74,973,339 | ---- | C] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\Image.nrg
[2009-12-01 12:52:35 | 00,159,134 | ---- | C] () -- C:\\Zrzut02.psd
[2009-12-01 09:00:47 | 00,445,062 | ---- | C] () -- C:\\Zrzut01.psd
[2009-11-30 23:16:50 | 00,000,004 | ---- | C] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\avdrn.dat
[2009-11-30 23:16:42 | 00,000,004 | ---- | C] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\wiaservg.log
[2009-11-27 19:04:07 | 00,000,023 | -HS- | C] () -- C:\\WINDOWS\\System32\\cffaf_d.dll
[2009-11-27 19:04:07 | 00,000,023 | ---- | C] () -- C:\\WINDOWS\\System32\\eabcdbad6_d.ocx
[2009-11-24 22:19:50 | 00,000,103 | ---- | C] () -- C:\\WINDOWS\\pro.INI
[2009-11-24 21:52:08 | 10,568,461 | ---- | C] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\Czerwinski.flv
[2009-11-24 20:45:04 | 00,159,363 | ---- | C] () -- C:\\Documents and Settings\\User\\Moje dokumenty\\9 (110).jpg
[2009-11-24 15:12:22 | 00,171,035 | ---- | C] () -- C:\\pth_NS_040_20091124_pomnik.pdf
[2009-11-22 22:53:45 | 00,020,576 | ---- | C] () -- C:\\WINDOWS\\System32\\RODefargBin.dat
[2009-11-22 21:43:06 | 00,000,918 | ---- | C] () -- C:\\Documents and Settings\\User\\Pulpit\\Easy Audio Cutter.lnk
[2009-11-22 21:43:04 | 00,000,902 | ---- | C] () -- C:\\Documents and Settings\\User\\Pulpit\\Free CD Ripper.lnk
[2009-11-22 21:43:04 | 00,000,900 | ---- | C] () -- C:\\Documents and Settings\\User\\Pulpit\\Free Mp3 Wma Converter.lnk
[2009-11-22 21:43:01 | 00,116,296 | ---- | C] () -- C:\\WINDOWS\\System32\\NCTWMAProfiles.prx
[2009-11-22 21:42:59 | 00,484,352 | ---- | C] () -- C:\\WINDOWS\\System32\\lame_enc.dll
[2009-11-22 20:03:42 | 02,066,432 | ---- | C] () -- C:\\Watykan.ppt
[2009-11-18 18:23:35 | 00,219,136 | ---- | C] () -- C:\\powiklana_po_grypie.pps
[2009-11-17 20:44:21 | 00,522,621 | ---- | C] () -- C:\\Roman Chruściel.jpg
[2009-11-17 12:47:35 | 00,000,715 | ---- | C] () -- C:\\Documents and Settings\\User\\Pulpit\\Any Video Converter.lnk
[2009-11-17 12:38:18 | 00,000,766 | ---- | C] () -- C:\\Documents and Settings\\User\\Pulpit\\PhotoInstrument.exe.lnk
[2009-11-17 11:56:15 | 00,045,592 | ---- | C] () -- C:\\Ja02.jpg
[2009-11-17 11:49:32 | 00,036,218 | ---- | C] () -- C:\\Ja01.jpg
[2009-11-14 19:50:37 | 00,030,374 | ---- | C] () -- C:\\wzorowy_uczen.jpeg
[2009-11-13 21:46:39 | 00,000,766 | ---- | C] () -- C:\\Documents and Settings\\User\\Pulpit\\wmplayer.exe.lnk
[2009-11-13 14:34:07 | 00,002,267 | ---- | C] () -- C:\\Documents and Settings\\All Users\\Pulpit\\Skype.lnk
[2009-11-10 15:31:19 | 00,375,226 | ---- | C] () -- C:\\Znowu do pracy.gif
[2009-11-10 14:20:36 | 00,023,040 | ---- | C] () -- C:\\Modlitwa wiernych.doc
[2009-11-08 15:21:52 | 00,000,065 | ---- | C] () -- C:\\WINDOWS\\ZZSW.INI
[2009-11-08 13:45:27 | 00,000,757 | ---- | C] () -- C:\\Documents and Settings\\User\\Pulpit\\TatryPWN.exe.lnk
[2009-11-04 21:41:00 | 00,000,129 | ---- | C] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\default.rss
[2009-06-11 19:23:01 | 00,125,440 | ---- | C] () -- C:\\WINDOWS\\System32\\WnASPI32.dll
[2009-06-11 19:23:01 | 00,000,050 | ---- | C] () -- C:\\WINDOWS\\System32\\version.ini
[2009-05-08 11:57:37 | 00,001,618 | ---- | C] () -- C:\\Documents and Settings\\All Users\\Dane aplikacji\\hpzinstall.log
[2009-04-16 14:54:23 | 00,001,104 | ---- | C] () -- C:\\WINDOWS\\bestplayer.ini
[2009-04-07 11:52:31 | 00,000,034 | ---- | C] () -- C:\\WINDOWS\\RECOGN40.INI
[2009-03-08 18:18:42 | 00,000,038 | ---- | C] () -- C:\\WINDOWS\\AviSplitter.INI
[2009-02-24 17:19:09 | 00,000,547 | ---- | C] () -- C:\\WINDOWS\\System32\\ff_vfw.dll.manifest
[2009-02-24 17:19:08 | 00,057,344 | ---- | C] () -- C:\\WINDOWS\\System32\\ff_vfw.dll
[2009-02-22 20:44:11 | 00,001,044 | ---- | C] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\vso_ts_preview.xml
[2009-02-22 20:44:04 | 00,000,033 | ---- | C] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\pcouffin.log
[2009-02-22 20:44:01 | 00,087,608 | ---- | C] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\inst.exe
[2009-02-22 20:44:01 | 00,007,887 | ---- | C] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\pcouffin.cat
[2009-02-22 20:44:01 | 00,001,144 | ---- | C] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\pcouffin.inf
[2009-02-07 20:56:00 | 00,004,767 | ---- | C] () -- C:\\WINDOWS\\Irremote.ini
[2009-02-04 11:23:03 | 00,000,619 | ---- | C] () -- C:\\Documents and Settings\\User\\Dane aplikacji\\PrimoPDFSet.xml
[2009-02-04 11:21:02 | 00,176,235 | ---- | C] () -- C:\\WINDOWS\\System32\\Primomonnt.dll
[2009-02-03 20:45:34 | 00,000,064 | ---- | C] () -- C:\\WINDOWS\\AVerText.ini
[2009-02-03 12:38:41 | 00,189,952 | ---- | C] () -- C:\\WINDOWS\\Qcard32.dll
[2009-02-03 11:24:03 | 00,000,000 | ---- | C] () -- C:\\WINDOWS\\ui.INI
[2009-02-02 21:20:38 | 00,210,944 | ---- | C] () -- C:\\WINDOWS\\System32\\MSVCRT10.DLL
[2009-02-02 21:20:34 | 00,000,139 | ---- | C] () -- C:\\WINDOWS\\KPCMS.INI
[2009-02-02 18:41:36 | 00,112,688 | ---- | C] () -- C:\\WINDOWS\\System32\\shw32.dll
[2009-02-02 17:57:03 | 00,000,452 | ---- | C] () -- C:\\WINDOWS\\lexstat.ini
[2009-02-02 17:33:24 | 00,005,606 | ---- | C] () -- C:\\WINDOWS\\System32\\stci.dll
[2009-02-01 22:33:02 | 00,000,069 | ---- | C] () -- C:\\WINDOWS\\NeroDigital.ini
[2009-02-01 22:32:04 | 00,168,448 | ---- | C] () -- C:\\WINDOWS\\System32\\unrar.dll
[2009-02-01 22:32:03 | 00,795,648 | ---- | C] () -- C:\\WINDOWS\\System32\\xvidcore.dll
[2009-02-01 22:32:03 | 00,130,048 | ---- | C] () -- C:\\WINDOWS\\System32\\xvidvfw.dll
[2009-02-01 22:32:02 | 03,596,288 | ---- | C] () -- C:\\WINDOWS\\System32\\qt-dx331.dll
[2009-02-01 22:02:45 | 00,000,421 | ---- | C] () -- C:\\WINDOWS\\ODBC.INI
[2009-02-01 21:54:33 | 00,003,072 | ---- | C] () -- C:\\WINDOWS\\System32\\34CoInstaller.dll
[2009-02-01 21:53:33 | 00,049,152 | R--- | C] () -- C:\\WINDOWS\\System32\\AVerIO.dll
[2009-02-01 21:53:33 | 00,003,456 | R--- | C] () -- C:\\WINDOWS\\System32\\AVerIO.sys
[2009-02-01 21:53:27 | 00,262,144 | R--- | C] () -- C:\\WINDOWS\\System32\\sptlib01.dll
[2009-02-01 21:53:27 | 00,249,856 | R--- | C] () -- C:\\WINDOWS\\System32\\sptlib02.dll
[2009-02-01 21:44:12 | 00,003,027 | ---- | C] () -- C:\\WINDOWS\\wincmd.ini
[2009-02-01 21:36:24 | 00,147,456 | R--- | C] () -- C:\\WINDOWS\\System32\\igfxCoIn_v4864.dll
[2009-02-01 21:32:03 | 00,074,752 | ---- | C] () -- C:\\Documents and Settings\\User\\Ustawienia lokalne\\Dane aplikacji\\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-04-14 23:50:46 | 00,363,520 | ---- | C] () -- C:\\WINDOWS\\System32\\psisdecd.dll
[2008-03-26 10:11:06 | 00,002,045 | -H-- | C] () -- C:\\WINDOWS\\System32\\whlb32g.dll
[2004-09-01 10:42:18 | 00,138,396 | ---- | C] () -- C:\\WINDOWS\\System32\\drivers\\Pfc027.sys
[2004-09-01 10:42:16 | 00,011,170 | ---- | C] () -- C:\\WINDOWS\\System32\\PA207USD.DLL
[2003-04-08 11:40:22 | 00,005,679 | ---- | C] () -- C:\\WINDOWS\\System32\\OUTLPERF.INI
[2002-03-21 15:39:02 | 00,073,728 | ---- | C] () -- C:\\WINDOWS\\System32\\UNACEV2.DLL
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 97 bytes -> C:\\Documents and Settings\\All Users\\Dane aplikacji\\TEMP:B3D74A13
@Alternate Data Stream - 112 bytes -> C:\\Documents and Settings\\All Users\\Dane aplikacji\\TEMP:DFC5A2B2
< End of report >
 
Wygenerowano w 0.312s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!

Copyright © 2007 - 2010 wklejto.pl Wszelkie prawa zastrzezone