otwierające się niechciane strony

22.02.2010
08:52
[1]
binkset [ Acacia Avenue ]
otwierające się niechciane strony

Od jakiegoś czasu otwierają się strony. Najczęściej jakieś portale randkowe, albo "jak schudnąć w 2 dni?". Do pewnego momentu dało się to znieść, ale później zaczęło mnie to dobijać.
Oto mój log (hijackthis)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:44:49, on 2010-02-22
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = googlepl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoftcomfwlink?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoftcomfwlink?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoftcomfwlink?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoftcomfwlink?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
R3 - URLSearchHook: (no name) - ‹57BCA5FA-5DBB-45a2-B558-1755C3F6253B› - (no file)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\Documents and Settings\O\uew.exe \s
O2 - BHO: AcroIEHelperStub - ‹18DF081C-E8AD-4283-A596-FA578C2EBDC3› - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadarcom IESiteBlocker.NavFilter - ‹3CA2F312-6F6E-4B53-A66E-4E65E497C8C0› - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - ‹53707962-6F74-2D53-2644-206D7942484F› - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Ask Toolbar BHO - ‹D4027C7F-154A-4066-A1AD-4243D8127440› - (no file)
O2 - BHO: IEPluginBHO - ‹F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D› - C:\Documents and Settings\O\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll
O3 - Toolbar: (no name) - ‹CCC7A320-B3CA-4199-B1A6-9F516DD69829› - (no file)
O3 - Toolbar: (no name) - ‹D4027C7F-154A-4066-A1AD-4243D8127440› - (no file)
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe auto
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: GameCam Updater.exe
O9 - Extra button: (no name) - ‹DFB852A3-47F8-48C4-A200-58CAB36FD2A2› - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - ‹DFB852A3-47F8-48C4-A200-58CAB36FD2A2› - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - ‹e2e2dd38-d088-4134-82b7-f2ba38496583› - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - ‹e2e2dd38-d088-4134-82b7-f2ba38496583› - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - ‹FB5F1910-F110-11d2-BB9E-00C04F795683› - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - ‹FB5F1910-F110-11d2-BB9E-00C04F795683› - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: ‹40F576AD-8680-4F9E-9490-99D069CD665F› - srtest-cdn.systemrequirementslabcom.s3.amazonawscombinsysreqlabdetect.cab
O16 - DPF: ‹784797A8-342D-4072-9486-03C8D0F2F0A1› (Battlefield Heroes Updater) - https:wwwbattlefieldheroescomstaticupdaterBFHUpdater_4.0.27.0.cab
O16 - DPF: ‹E2883E8F-472F-4FB0-9522-AC9BF37916A7› - platformdl.adobecomNOSgetPlusPlus1.6gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\‹F16F44B6-EF58-4233-B6C2-C93E7D05C978›: NameServer = 208.67.222.222,208.67.220.220
O18 - Protocol: linkscanner - ‹F274614C-63F8-47D5-A4D1-FBDDE494F8D1› - C:\Program Files\AVG\AVG9\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

--
End of file - 5476 bytes
22.02.2010
08:53
[2]
Szczeblo [ so rock ]

edit - nie ten wątek.
Wypowiedź została zmodyfikowana przez jej autora [2010-02-22 08:55:46]
22.02.2010
08:53
[3]
binkset [ Acacia Avenue ]

??
Edit: aha spoko :P
Wypowiedź została zmodyfikowana przez jej autora [2010-02-22 08:57:54]
22.02.2010
09:04
[4]
mirencjum [ operator kursora ]

Log wklej w okienko na tej stronie:

wwwhijackthis.de

i naciśnij analiza. Wartości które będą miały X, zaznacz w tym programiku który Ci wygenerował ten log i naciśnij Fix.


Spybot Search & Destroy

Bardzo dobry program do wyszukiwania i usuwania komponentów szpiegujących typu spyware, dialerów, keyloggerów itp. Zawiera więcej sygnatur...

Bardzo dobry program do wyszukiwania i usuwania komponentów szpiegujących typu spyware, dialerów, keyloggerów itp. Zawiera więcej sygnatur komponentów niż najpopularniejszy Ad-aware dzięki czemu jest skuteczniejszy w ich usuwaniu. Umożliwia archiwizację dokonanych zmian jeżeli przez pomyłkę usuniemy "dobry" komponent. Program wyposażony jest także w zneutralizowanego klienta Cydoor, który zastępuje oryginalny plik, dzięki czemu jego neutralizacja nie powoduje skutku w postaci zablokowania działania programu, który go zawierał. Na duże plusy programu należy zaliczyć interfejs w języku polskim oraz możliwość aktualizacji definicji komponentów przez Internet.

wwwdobreprogramyplSpybot-Search-Destroy,Program,Windows,12546l

Masz zainstalowany program antywirusowy? Może przeskanować?

wwwdobreprogramyplSkanery-i-szczepionki-antywirusowe,Kategoria,Windows,66l

wwwdobreprogramyplNarzedzie-do-usuwania-zlosliwego-oprogramowania,Program,Windows,13181l
Wypowiedź została zmodyfikowana przez jej autora [2010-02-22 09:08:20]
22.02.2010
09:09
[5]
binkset [ Acacia Avenue ]

tak mam AVG Anti-Virus Free, Spybota też mam i Ad-Awara. Ale nic mi takiego nie wykrywało. Właśnie dlatego to było dla mnie dziwne
22.02.2010
09:12
[6]
mirencjum [ operator kursora ]

Nie kliknąłeś w jakieś okienko, by zainstalować coś? Takie coś jak Gameztar?

wwwsearchenginesplSamo-wyskakujaceniechciane-strony-t133205l
Wypowiedź została zmodyfikowana przez jej autora [2010-02-22 09:14:52]
22.02.2010
09:21
[7]
binkset [ Acacia Avenue ]

no to OTL.txt

OTL logfile created on: 2010-02-22 09:15:36 - Run 1
OTL by OldTimer - Version 3.1.30.1 Folder = C:\Documents and Settings\O\Pulpit
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 81,00% Memory free
5,00 Gb Paging File | 4,00 Gb Available in Paging File | 89,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 5,66 Gb Free Space | 29,00% Space Free | Partition Type: NTFS
Drive D: | 129,51 Gb Total Space | 88,70 Gb Free Space | 68,49% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC
Current User Name: O
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[color]

PRC - [2010-02-22 09:15:21 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\O\Pulpit\OTL.exe
PRC - [2010-02-21 19:14:23 | 000,190,160 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.exe
PRC - [2010-02-19 15:12:14 | 000,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-01-11 22:17:44 | 000,154,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2010-01-02 19:12:43 | 002,033,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2009-12-22 12:03:11 | 000,075,064 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
PRC - [2009-12-19 18:40:19 | 001,055,000 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2009-12-19 18:40:18 | 000,702,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2009-12-19 18:40:18 | 000,600,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2009-12-19 18:40:18 | 000,503,576 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2009-12-19 18:40:16 | 000,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2009-12-19 18:40:16 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2008-04-14 21:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


[color=#E56717]========== Modules (SafeList) ==========[color]

MOD - [2010-02-22 09:15:21 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\O\Pulpit\OTL.exe
MOD - [2006-05-03 21:53:54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\framedyn.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[color]

SRV - [2010-02-21 19:14:23 | 000,190,160 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PnkBstrB.exe -- (PnkBstrB)
SRV - [2010-01-14 14:57:04 | 001,181,328 | ---- | M] (Lavasoft) [Auto | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2010-01-11 22:17:44 | 000,154,216 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\system32\nvsvc32.exe -- (nvsvc)
SRV - [2009-12-22 12:03:11 | 000,075,064 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PnkBstrA.exe -- (PnkBstrA)
SRV - [2009-12-19 18:40:16 | 000,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2009-12-19 18:40:16 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2005-04-03 23:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)


[color=#E56717]========== Driver Services (SafeList) ==========[color]

DRV - [2010-02-21 19:14:51 | 000,139,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PnkBstrK.sys -- (PnkBstrK)
DRV - [2010-01-12 05:03:33 | 010,276,768 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009-12-19 18:40:32 | 000,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2009-12-19 18:40:31 | 000,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2009-12-19 18:40:19 | 000,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2009-12-02 14:19:06 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2009-11-03 12:39:04 | 005,940,736 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009-10-09 08:24:45 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-10-02 15:08:59 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009-04-28 21:20:06 | 000,044,944 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2008-08-05 13:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2008-04-13 21:09:18 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2008-04-13 21:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007-11-02 14:22:38 | 000,105,896 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s217unic.sys -- (s217unic) Sony Ericsson Device 217 USB Ethernet Emulation SEMC217 (WDM)
DRV - [2007-11-02 14:22:38 | 000,103,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s217mgmt.sys -- (s217mgmt) Sony Ericsson Device 217 USB WMC Device Management Drivers (WDM)
DRV - [2007-11-02 14:22:38 | 000,100,008 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s217obex.sys -- (s217obex)
DRV - [2007-11-02 14:22:38 | 000,024,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s217nd5.sys -- (s217nd5) Sony Ericsson Device 217 USB Ethernet Emulation SEMC217 (NDIS)
DRV - [2007-11-02 14:22:36 | 000,109,992 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s217mdm.sys -- (s217mdm)
DRV - [2007-11-02 14:22:36 | 000,083,496 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s217bus.sys -- (s217bus) Sony Ericsson Device 217 driver (WDM)
DRV - [2007-11-02 14:22:36 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s217mdfl.sys -- (s217mdfl)
DRV - [2007-05-02 10:11:18 | 000,109,704 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdm.sys -- (ss_mdm)
DRV - [2007-05-02 10:11:18 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdfl.sys -- (ss_mdfl)
DRV - [2007-05-02 10:11:16 | 000,083,592 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bus.sys -- (ss_bus) SAMSUNG Mobile USB Device 1.0 driver (WDM)
DRV - [2006-11-22 07:01:00 | 000,250,496 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2006-07-05 13:46:06 | 000,063,352 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01a.sys -- (sfdrv01a) StarForce Protection Environment Driver (version 1.x.a)
DRV - [2006-06-14 15:56:56 | 000,013,680 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2006-03-02 13:00:00 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2006-01-04 08:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


[color=#E56717]========== Standard Registry (SafeList) ==========[color]


[color=#E56717]========== Internet Explorer ==========[color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = googlepl
IE - HKCU\..\URLSearchHook: ‹57BCA5FA-5DBB-45a2-B558-1755C3F6253B› - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[color]

FF - prefs.js..browser.search.defaultengine: "Askcom"
FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search"
FF - prefs.js..browser.search.defaulturl: "slirsredirect.search.aolcomslirs_httpsredir?sredir=2685&invocationType=tb50ffwinampie7&query="
FF - prefs.js..browser.search.order.1: "Askcom"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "wwwgooglepl"
FF - prefs.js..extensions.enabledItems: ‹8141440E-08F0-4339-9959-5C31C6A69F23›:4.2.0.5360
FF - prefs.js..extensions.enabledItems: ‹d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d›:1.1.3
FF - prefs.js..extensions.enabledItems: battlefieldheroespatcher@eacom:4.0.36.0
FF - prefs.js..extensions.enabledItems: ‹E63605FC-D583-4C81-867F-9457BDB3EA1B›:4.2.0.2150
FF - prefs.js..extensions.enabledItems: ‹0b38152b-1b20-484d-a11f-5e04a9b0661f›:5.6.11.2
FF - prefs.js..keyword.URL: "wwwgooglecomsearch?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q="


FF - HKLM\software\mozilla\Firefox\Extensions\\‹E63605FC-D583-4C81-867F-9457BDB3EA1B›: C:\Program Files\Web Search Operator\4.2.0.2150\FF [2010-01-08 23:49:03 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\‹8141440E-08F0-4339-9959-5C31C6A69F23›: C:\Program Files\Automated Content Enhancer\4.2.0.5360\FF [2010-01-08 23:49:22 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-02-19 17:21:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-02-19 15:12:19 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@esetcom: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

[2009-09-25 12:38:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\O\Dane aplikacji\Mozilla\Extensions
[2010-02-22 08:43:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\O\Dane aplikacji\Mozilla\Firefox\Profiles\cpx87lhu.default\extensions
[2009-10-02 16:58:08 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Documents and Settings\O\Dane aplikacji\Mozilla\Firefox\Profiles\cpx87lhu.default\extensions\‹0b38152b-1b20-484d-a11f-5e04a9b0661f›
[2010-01-12 11:54:38 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\O\Dane aplikacji\Mozilla\Firefox\Profiles\cpx87lhu.default\extensions\‹d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d›
[2010-02-03 14:27:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\O\Dane aplikacji\Mozilla\Firefox\Profiles\cpx87lhu.default\extensions\battlefieldheroespatcher@eacom
[2009-10-08 21:56:11 | 000,002,257 | ---- | M] () -- C:\Documents and Settings\O\Dane aplikacji\Mozilla\Firefox\Profiles\cpx87lhu.default\searchplugins\askcom.xml
[2009-10-09 08:27:16 | 000,002,399 | ---- | M] () -- C:\Documents and Settings\O\Dane aplikacji\Mozilla\Firefox\Profiles\cpx87lhu.default\searchplugins\daemon-search.xml
[2009-10-02 16:58:14 | 000,001,201 | ---- | M] () -- C:\Documents and Settings\O\Dane aplikacji\Mozilla\Firefox\Profiles\cpx87lhu.default\searchplugins\winamp-search.xml
[2010-01-12 11:26:19 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009-10-09 22:43:49 | 000,238,776 | ---- | M] (Pando Networks) -- C:\Program Files\Mozilla Firefox\plugins\npPandoWebInst.dll
[2009-12-22 04:48:34 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2009-12-22 04:48:34 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2009-12-22 04:48:34 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2009-12-22 04:48:34 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2009-12-22 04:48:34 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2009-12-22 04:48:34 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2006-03-02 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - ‹18DF081C-E8AD-4283-A596-FA578C2EBDC3› - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - ‹3CA2F312-6F6E-4B53-A66E-4E65E497C8C0› - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Spybot-S&D IE Protection) - ‹53707962-6F74-2D53-2644-206D7942484F› - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (IEPluginBHO Class) - ‹F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D› - C:\Documents and Settings\O\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - ‹32099AAC-C132-4136-9E9A-4E364A424E17› - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - ‹CCC7A320-B3CA-4199-B1A6-9F516DD69829› - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - ‹D4027C7F-154A-4066-A1AD-4243D8127440› - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - ‹D45817B8-3EAD-4D1D-8FCA-EC63A8E35DE2› - No CLSID value found.
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRemoteRecursiveEvents = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - ‹DFB852A3-47F8-48C4-A200-58CAB36FD2A2› - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: ‹40F576AD-8680-4F9E-9490-99D069CD665F› srtest-cdn.systemrequirementslabcom.s3.amazonawscombinsysreqlabdetect.cab (Reg Error: Key error.)
O16 - DPF: ‹784797A8-342D-4072-9486-03C8D0F2F0A1› https:wwwbattlefieldheroescomstaticupdaterBFHUpdater_4.0.27.0.cab (Battlefield Heroes Updater)
O16 - DPF: ‹E2883E8F-472F-4FB0-9522-AC9BF37916A7› platformdl.adobecomNOSgetPlusPlus1.6gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\linkscanner ‹F274614C-63F8-47D5-A4D1-FBDDE494F8D1› - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Documents and Settings\O\uew.exe \s) - File not found
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\O\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\O\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-09-25 10:36:26 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

[color=#E56717]========== FilesFolders - Created Within 30 Days ==========[color]

[2010-02-22 09:15:21 | 000,549,376 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\O\Pulpit\OTL.exe
[2010-02-22 08:44:35 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010-02-22 08:44:22 | 000,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\O\Pulpit\HJTInstall.exe
[2010-02-22 08:29:37 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\O\Recent
[2010-02-22 08:17:25 | 011,271,248 | ---- | C] (Nullsoft, Inc.) -- C:\Documents and Settings\O\Pulpit\winamp5572_full_emusic-7plus_pl-pl.exe
[2010-02-20 20:02:23 | 000,036,864 | ---- | C] (Stardock.Net, Inc) -- C:\WINDOWS\System32\wbsys.dll
[2010-02-20 20:02:21 | 000,000,000 | ---D | C] -- C:\Program Files\Stardock
[2010-02-20 12:55:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Logs
[2010-02-18 22:40:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\O\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files
[2010-02-18 22:34:19 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo
[2010-02-18 19:10:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\O\Dane aplikacji\Ubisoft
[2010-02-18 16:02:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\2DBoy
[2010-02-18 10:44:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\O\Dane aplikacji\Auslogics
[2010-02-18 10:44:49 | 000,000,000 | ---D | C] -- C:\Program Files\Auslogics
[2010-02-18 10:41:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ashampoo
[2010-02-18 10:15:37 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer
[2010-02-17 23:09:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Xfire
[2010-02-17 23:07:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\O\Dane aplikacji\Xfire
[2010-02-16 17:22:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\O\Ustawienia lokalne\Dane aplikacji\AliensVsPredator
[2010-02-16 17:09:57 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll
[2010-02-16 17:09:56 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll
[2010-02-16 17:09:55 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll
[2010-02-16 17:09:54 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll
[2010-02-16 17:09:53 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll
[2010-02-16 17:09:52 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll
[2010-02-16 17:09:51 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll
[2010-02-14 18:20:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\O\Moje dokumenty\Wolverine
[2010-02-14 18:19:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\64F6748976BB4CDDA236F954BE774B35.TMP
[2010-02-11 11:42:56 | 000,086,016 | ---- | C] (Beepa PL) -- C:\WINDOWS\System32\frapsvid.dll
[2010-02-10 15:20:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Solidshield
[2010-02-10 15:19:26 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_41.dll
[2010-02-10 15:19:26 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_41.dll
[2010-02-10 15:19:25 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_41.dll
[2010-02-10 15:19:24 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_4.dll
[2010-02-10 15:19:24 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_3.dll
[2010-02-10 15:19:22 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_4.dll
[2010-02-10 15:19:22 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_6.dll
[2010-02-01 20:30:40 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\O\IECompatCache
[2010-02-01 14:26:35 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache
[2010-01-23 23:46:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\O\Ustawienia lokalne\Dane aplikacji\Identities
[2010-01-23 20:21:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data
[2010-01-23 20:21:26 | 000,172,032 | ---- | C] (Jin Hui E-mail: jinhui@jcomsoftcom Web: wwwjcomsoftcom) -- C:\WINDOWS\System32\AniGIF.ocx
[2010-01-23 20:21:11 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedBit Video Downloader
[2010-01-20 14:56:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Mozilla
[2010-01-20 14:56:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Adobe
[2010-01-20 14:56:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Web Search Operator
[2010-01-20 14:56:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-01-20 14:56:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Automated Content Enhancer
[2010-01-20 14:56:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Mozilla
[2009-12-19 18:39:31 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2009-12-19 18:39:31 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2009-12-19 17:27:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[color]

[2010-02-22 09:15:21 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\O\Pulpit\OTL.exe
[2010-02-22 08:44:36 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\O\Pulpit\HijackThis.lnk
[2010-02-22 08:44:23 | 000,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\O\Pulpit\HJTInstall.exe
[2010-02-22 08:44:22 | 004,456,448 | -H-- | M] () -- C:\Documents and Settings\O\NTUSER.DAT
[2010-02-22 08:36:24 | 056,071,489 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010-02-22 08:33:34 | 000,000,477 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-02-22 08:33:34 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-02-22 08:33:34 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2010-02-22 08:33:23 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010-02-22 08:33:23 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Daily 4).job
[2010-02-22 08:33:23 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Daily 3).job
[2010-02-22 08:33:23 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Daily 2).job
[2010-02-22 08:33:23 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Daily 1).job
[2010-02-22 08:32:40 | 000,272,156 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010-02-22 08:32:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-02-22 08:32:09 | 3489,189,888 | -HS- | M] () -- C:\hiberfil.sys
[2010-02-22 08:29:39 | 004,269,614 | -H-- | M] () -- C:\Documents and Settings\O\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-02-22 08:17:56 | 011,271,248 | ---- | M] (Nullsoft, Inc.) -- C:\Documents and Settings\O\Pulpit\winamp5572_full_emusic-7plus_pl-pl.exe
[2010-02-21 19:14:51 | 000,139,456 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010-02-21 19:14:23 | 000,190,160 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2010-02-21 19:14:23 | 000,190,160 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2010-02-21 12:18:24 | 000,102,912 | ---- | M] () -- C:\Documents and Settings\O\Moje dokumenty\Plane montage.veg
[2010-02-21 12:11:27 | 000,102,912 | ---- | M] () -- C:\Documents and Settings\O\Moje dokumenty\Plane montage.veg.bak
[2010-02-21 11:33:00 | 000,033,280 | ---- | M] () -- C:\Documents and Settings\O\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-02-20 20:04:28 | 003,932,214 | ---- | M] () -- C:\WINDOWS\Xbox360-Full.bmp
[2010-02-20 20:03:53 | 003,932,214 | ---- | M] () -- C:\WINDOWS\Xbox360-Black.bmp
[2010-02-20 20:03:25 | 003,932,214 | ---- | M] () -- C:\WINDOWS\Xbox360-wall.bmp
[2010-02-18 23:12:49 | 000,002,660 | ---- | M] () -- C:\Documents and Settings\O\Moje dokumenty\Register Vegas Pro
[2010-02-18 23:07:35 | 000,002,576 | ---- | M] () -- C:\Documents and Settings\O\Moje dokumenty\Register Vegas Movie Studio
[2010-02-18 22:55:58 | 000,002,656 | ---- | M] () -- C:\Documents and Settings\O\Moje dokumenty\Register Vegas Movie Studio Platinum
[2010-02-18 17:02:48 | 000,391,484 | ---- | M] () -- C:\Documents and Settings\O\Moje dokumenty\cc_20100218_170230.reg
[2010-02-18 15:53:05 | 000,000,385 | ---- | M] () -- C:\Documents and Settings\O\Pulpit\World of Goo.lnk
[2010-02-18 10:59:51 | 000,000,122 | ---- | M] () -- C:\Documents and Settings\O\Pulpit\Battlefield Heroes.url
[2010-02-16 18:15:23 | 000,152,892 | ---- | M] () -- C:\Documents and Settings\O\Pulpit\7759.jpg
[2010-02-14 18:19:44 | 000,000,876 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\X-Men Origins - Wolverine(TM).lnk
[2010-02-14 17:56:04 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-02-11 11:42:56 | 000,086,016 | ---- | M] (Beepa PL) -- C:\WINDOWS\System32\frapsvid.dll
[2010-02-11 04:19:56 | 000,041,872 | ---- | M] () -- C:\WINDOWS\System32\xfcodec.dll
[2010-02-01 20:21:50 | 000,018,560 | ---- | M] () -- C:\Documents and Settings\O\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-02-01 20:20:45 | 000,120,544 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-01-23 20:21:26 | 000,172,032 | ---- | M] (Jin Hui E-mail: jinhui@jcomsoftcom Web: wwwjcomsoftcom) -- C:\WINDOWS\System32\AniGIF.ocx
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[color]

[2010-02-22 08:44:36 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\O\Pulpit\HijackThis.lnk
[2010-02-20 20:04:28 | 003,932,214 | ---- | C] () -- C:\WINDOWS\Xbox360-Full.bmp
[2010-02-20 20:03:53 | 003,932,214 | ---- | C] () -- C:\WINDOWS\Xbox360-Black.bmp
[2010-02-20 20:03:25 | 003,932,214 | ---- | C] () -- C:\WINDOWS\Xbox360-wall.bmp
[2010-02-20 13:50:11 | 000,000,122 | ---- | C] () -- C:\Documents and Settings\O\Pulpit\Battlefield Heroes.url
[2010-02-18 23:49:30 | 000,102,912 | ---- | C] () -- C:\Documents and Settings\O\Moje dokumenty\Plane montage.veg.bak
[2010-02-18 23:49:30 | 000,102,912 | ---- | C] () -- C:\Documents and Settings\O\Moje dokumenty\Plane montage.veg
[2010-02-18 23:07:35 | 000,002,576 | ---- | C] () -- C:\Documents and Settings\O\Moje dokumenty\Register Vegas Movie Studio
[2010-02-18 22:42:57 | 000,002,660 | ---- | C] () -- C:\Documents and Settings\O\Moje dokumenty\Register Vegas Pro
[2010-02-18 17:02:33 | 000,391,484 | ---- | C] () -- C:\Documents and Settings\O\Moje dokumenty\cc_20100218_170230.reg
[2010-02-18 15:53:05 | 000,000,385 | ---- | C] () -- C:\Documents and Settings\O\Pulpit\World of Goo.lnk
[2010-02-16 18:15:23 | 000,152,892 | ---- | C] () -- C:\Documents and Settings\O\Pulpit\7759.jpg
[2010-02-14 18:19:44 | 000,000,876 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\X-Men Origins - Wolverine(TM).lnk
[2010-02-11 04:19:56 | 000,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2010-01-07 20:15:58 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2010-01-07 20:15:58 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2010-01-07 20:15:57 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2009-11-16 17:57:07 | 000,000,126 | ---- | C] () -- C:\Documents and Settings\O\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2009-11-16 16:24:30 | 000,000,305 | ---- | C] () -- C:\WINDOWS\game.ini
[2009-11-15 16:35:12 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2009-11-15 15:31:31 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2009-11-09 10:35:30 | 000,000,056 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2009-10-22 17:20:32 | 000,139,456 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009-10-22 17:20:31 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\O\Dane aplikacji\PnkBstrK.sys
[2009-10-09 08:24:45 | 000,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009-10-02 15:10:04 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt
[2009-10-02 15:02:24 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2009-09-25 13:17:40 | 000,033,280 | ---- | C] () -- C:\Documents and Settings\O\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-09-25 12:41:24 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009-09-25 12:41:24 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2009-09-25 12:41:22 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2009-09-25 12:41:22 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009-09-25 12:41:21 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009-09-25 12:41:20 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

[color=#E56717]========== Alternate Data Streams ==========[color]

@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:05EE1EEF
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:888AFB86
< End of report >





i Extras.txt




OTL Extras logfile created on: 2010-02-22 09:15:36 - Run 1
OTL by OldTimer - Version 3.1.30.1 Folder = C:\Documents and Settings\O\Pulpit
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 81,00% Memory free
5,00 Gb Paging File | 4,00 Gb Available in Paging File | 89,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 5,66 Gb Free Space | 29,00% Space Free | Partition Type: NTFS
Drive D: | 129,51 Gb Total Space | 88,70 Gb Free Space | 68,49% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC
Current User Name: O
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Extra Registry (SafeList) ==========[color]


[color=#E56717]========== File Associations ==========[color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
l [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
l [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [compress] -- D:\KGB Archiver\kgb_arch_compress.exe "%1\"
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Odkurz tutaj] -- C:\Program Files\Odkurzacz\odkurzacz.exe %1 (Franmo Software)
Folder [open] -- %SystemRoot%\Explorer.exe idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe e,idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\‹871C5380-42A0-1069-A2EA-08002B30309D› [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DoNotAllowExceptions" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DoNotAllowExceptions" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"57366:TCP" = 57366:TCP:*:Enabled:Pando Media Booster
"57366:UDP" = 57366:UDP:*:Enabled:Pando Media Booster
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

[color=#E56717]========== Authorized Applications List ==========[color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"D:\Combat Arms\CombatArms.exe" = D:\Combat Arms\CombatArms.exe:*Enabled:CombatArms.exe -- File not found
"D:\Combat Arms\Engine.exe" = D:\Combat Arms\Engine.exe:*Enabled:Engine.exe -- File not found
"D:\Combat Arms EU\CombatArms.exe" = D:\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe -- File not found
"D:\Combat Arms EU\Engine.exe" = D:\Combat Arms EU\Engine.exe:*Enabled:Engine.exe -- File not found

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Nowe Gadu-Gadu\gg.exe" = C:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Enabled:Nowe Gadu-Gadu -- File not found
"D:\Kolekcja Klasyki\Splinter Cell Chaos Theory\Versus\System\SCCT_Versus.ex" = D:\Kolekcja Klasyki\Splinter Cell Chaos Theory\Versus\System\SCCT_Versus.ex:*:Enabled:SCCT_Versus -- File not found
"D:\Techland\Chrome SpecForce\SpecForce.exe" = D:\Techland\Chrome SpecForce\SpecForce.exe:*:Disabled:SpecForce -- File not found
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- File not found
"C:\Documents and Settings\All Users\Dane aplikacji\NexonUS\NGM\NGM.exe" = C:\Documents and Settings\All Users\Dane aplikacji\NexonUS\NGM\NGM.exe:*:Enabled:Nexon Game Manager -- (Nexon)
"D:\Combat Arms\CombatArms.exe" = D:\Combat Arms\CombatArms.exe:*Enabled:CombatArms.exe -- File not found
"D:\Combat Arms\Engine.exe" = D:\Combat Arms\Engine.exe:*Enabled:Engine.exe -- File not found
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()
"D:\Free Running\FreeRunning.exe" = D:\Free Running\FreeRunning.exe:*:Disabled:FreeRunning -- File not found
"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe" = [String data over 1000 bytes]
"C:\Documents and Settings\All Users\Dane aplikacji\NexonEU\NGM\NGM.exe" = C:\Documents and Settings\All Users\Dane aplikacji\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager -- (Nexon)
"D:\Combat Arms EU\CombatArms.exe" = D:\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe -- File not found
"D:\Combat Arms EU\Engine.exe" = D:\Combat Arms EU\Engine.exe:*Enabled:Engine.exe -- File not found
"D:\Combat Arms EU\NMService.exe" = D:\Combat Arms EU\NMService.exe:*:Enabled:Nexon Messenger Core -- File not found
"D:\Midway Home Entertainment\BlackSite Area 51\Binaries\Blacksite.exe" = D:\Midway Home Entertainment\BlackSite Area 51\Binaries\Blacksite.exe:*:Enabled:Blacksite -- File not found
"C:\Program Files\Electronic Arts\EADM\Core.exe" = C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager -- (Electronic Arts)
"C:\Program Files\AVG\AVG9\avgemc.exe" = C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.)
"C:\Documents and Settings\O\uew.exe" = C:\Documents and Settings\O\uew.exe:*:Enabled:ENABLE -- File not found
"C:\WINDOWS\system32\quhxeuq.exe" = C:\WINDOWS\system32\quhxeuq.exe:*:Enabled:ENABLE -- File not found
"D:\Metin2_PL\metin2client.bin" = D:\Metin2_PL\metin2client.bin:*:Enabled:metin2client -- File not found
"D:\Activision\X-Men Origins - Wolverine(TM)\Binaries\Wolverine.exe" = D:\Activision\X-Men Origins - Wolverine(TM)\Binaries\Wolverine.exe:*:Enabled:X-Men Origins - Wolverine -- (Raven Software)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- File not found
"C:\Program Files\Steam\steamapps\common\aliens vs predator demo\AvP.exe" = C:\Program Files\Steam\steamapps\common\aliens vs predator demo\AvP.exe:*:Enabled:Aliens vs Predator Demo -- File not found
"D:\Xfire\Xfire.exe" = D:\Xfire\Xfire.exe:*:Enabled:Xfire -- File not found


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"‹00203668-8170-44A0-BE44-B632FA4D780F›" = Adobe AIR
"‹1CD0C3C5-809D-4CFC-904A-1B67C6243637›" = Debugging Tools for Windows (x86)
"‹2FFE93F0-BB72-4E52-8761-354D1AAA9387›" = Sony Ericsson PC Suite 4.010.00
"‹350C9415-3D7C-4EE8-BAA9-00BCB3D54227›" = WebFldrs XP
"‹64CB2553-C109-4132-AA51-1F421B515FD1›" = Microsoft .NET Framework 1.1 Polish Language Pack
"‹6D3A42EA-DFD9-4E8A-A9DC-3DE9B162BEDD›" = Sony Vegas Movie Studio 8.0
"‹7299052b-02a4-4627-81f2-1818da5d550d›" = Microsoft Visual C++ 2005 Redistributable
"‹76E41F43-59D2-4F30-BA42-9A762EE1E8DE›" = Avanquest update
"‹77DCDCE3-2DED-62F3-8154-05E745472D07›" = Acrobatcom
"‹7F0B94C6-828C-4EDE-A86B-ECF4D792B68D›" = Activision(R)
"‹837b34e3-7c30-493c-8f6a-2b0f04e2912c›" = Microsoft Visual C++ 2005 Redistributable
"‹8DC910CD-8EE3-4ffc-A4EB-9B02701059C4›" = Battlefield Heroes
"‹9600B88C-BE14-4BEA-A529-F5F312900BA3›" = Samsung PC Studio 3
"‹97E038E1-41AD-4C93-BCDC-6A2394AEE352›" = Vegas Movie Studio Platinum 9.0
"‹9A25302D-30C0-39D9-BD6F-21E6EC160475›" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"‹A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7›" = Microsoft .NET Framework 3.0 Service Pack 2
"‹AC76BA86-7AD7-1045-7B44-A92000000001›" = Adobe Reader 9.2 - Polish
"‹B4092C6D-E886-4CB2-BA68-FE5A88D31DE6›_is1" = Spybot - Search & Destroy
"‹BAF78226-3200-4DB4-BE33-4D922A799840›" = Windows Presentation Foundation
"‹C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F›" = Microsoft .NET Framework 2.0 Service Pack 2
"‹C4A4722E-79F9-417C-BD72-8D359A090C97›" = Samsung PC Studio 3
"‹C950420B-4182-49EA-850A-A6A2ABF06C6B›" = Marvell Miniport Driver
"‹CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1›" = Microsoft .NET Framework 1.1
"‹CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9›" = Microsoft .NET Framework 3.5 SP1
"‹DC785DB7-D389-48C3-B146-96FE99BF4E2B›" = Vegas Pro 9.0
"‹DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF›" = Ad-Aware
"‹DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7›_is1" = Auslogics Disk Defrag
"‹E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6›" = NVIDIA PhysX
"‹EBA29752-DDD2-4B62-B2E3-9841F92A3E3A›" = Samsung PC Studio 3 USB Driver Installer
"‹F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC›" = Realtek High Definition Audio Driver
"‹FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4›" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Pakiet sterowników systemu Windows - MobileTop (sshpmdm) Modem (02232007 2.5.0.0)
"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Pakiet sterowników systemu Windows - MobileTop (sshpusb) USB (02232007 2.5.0.0)
"Ad-Aware" = Ad-Aware
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AVG9Uninstall" = AVG Free 9.0
"CCleaner" = CCleaner
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobatcom
"EADM" = EA Download Manager
"Fraps" = Fraps (remove only)
"Gadu-Gadu 10" = Gadu-Gadu 10
"HijackThis" = HijackThis 2.0.2
"ie8" = Windows Internet Explorer 8
"InstallShield_&
Wypowiedź została zmodyfikowana przez jej autora [2010-02-22 09:23:54]
22.02.2010
09:29
[8]
binkset [ Acacia Avenue ]

a i raz coś kliknąłem zaczęło mi się coś samo instalować. Nie dało się tego wyłączyć. Było to dla mnie podejrzane więc szybko zresetowałem kompa, bo nie mogłem inaczej tego wyłączyć. Nawet Ctrl+Alt+Delete nie działało
Wypowiedź została zmodyfikowana przez jej autora [2010-02-22 09:30:12]
22.02.2010
09:33
[9]
maczu [ Generał ]

ściągnij program combofix, tylko zapisz go pod jakąś dziwną nazwą (np 1f9cX7.exe) i uruchom. wyczyści ci kompa na 99%
edit: wyczyści z wirusów itp. oczywiście :)
Wypowiedź została zmodyfikowana przez jej autora [2010-02-22 09:33:38]
22.02.2010
09:38
[10]
binkset [ Acacia Avenue ]

tak tylko przeczytałem, że trzeba go bardzo ostrożnie używać, bo jak nie to po kompie, ja nie chę tak ryzykować
22.02.2010
10:30
[11]
maczu [ Generał ]

czy ja wiem? najwyżej formata strzelisz. ja używałem już go wiele razy na kilku różnych komputerach (nowych, starych, wolnych, szybkich) i za każdym razem było ok. Ale faktycznie, już przy uruchomieniu programu masz info, że robisz to na własną odpowiedzialność. Ja go polecam mimo tego
wątek: otwierające się niechciane strony
© 2000-2014 GRY-OnLine S.A. game guide