Skocz do zawartości
Zamknięcie Forum PC LAB

Szanowny Użytkowniku,

Informujemy, że za 30 dni tj. 30 listopada 2024 r. serwis internetowy Forum PC LAB zostanie zamknięty.

Administrator Serwisu Forum PC LAB - Ringier Axel Springer Polska sp. z o.o. z siedzibą w Warszawie: wypowiada całość usług Serwisu Forum PC LAB z zachowaniem miesięcznego okresu wypowiedzenia.

Administrator Serwisu Forum PC LAB informuje, że:

  1. Z dniem 29 listopada 2024 r. zakończy się świadczenie wszystkich usług Serwisu Forum PC LAB. Ważną przyczyną uzasadniającą wypowiedzenie jest zamknięcie Serwisu Forum PC LAB
  2. Dotychczas zamowione przez Użytkownika usługi Serwisu Forum PC LAB będą świadczone w okresie wypowiedzenia tj. do dnia 29 listopada 2024 r.
  3. Po ogłoszeniu zamknięcia Serwisu Forum od dnia 30 października 2024 r. zakładanie nowych kont w serwisie Forum PC LAB nie będzie możliwe
  4. Wraz z zamknięciem Serwisu Forum PC LAB, tj. dnia 29 listopada 2024 r. nie będzie już dostępny katalog treści Forum PC LAB. Do tego czasu Użytkownicy Forum PC LAB mają dostęp do swoich treści w zakładce "Profil", gdzie mają możliwość ich skopiowania lub archiwizowania w formie screenshotów.
  5. Administrator danych osobowych Użytkowników - Ringier Axel Springer Polska sp. z o.o. z siedzibą w Warszawie zapewnia realizację praw podmiotów danych osobowych przez cały okres świadczenia usług Serwisu Forum PC LAB. Szczegółowe informacje znajdziesz w Polityce Prywatności

Administrator informuje, iż wraz z zamknięciem Serwisu Forum PC LAB, dane osobowe Użytkowników Serwisu Forum PC LAB zostaną trwale usunięte ze względu na brak podstawy ich dalszego przetwarzania. Proces trwałego usuwania danych z kopii zapasowych może przekroczyć termin zamknięcia Forum PC LAB o kilka miesięcy. Wyjątek może stanowić przetwarzanie danych użytkownika do czasu zakończenia toczących się postepowań.

Temat został przeniesiony do archiwum

Ten temat przebywa obecnie w archiwum. Dodawanie nowych odpowiedzi zostało zablokowane.

aka85

prośba o sprawdzenie logów

dodany przez aka85, w Internet, sieci i bezpieczeństwo

Rekomendowane odpowiedzi

aka85    0

aka85
Napisano

Witam, serdecznie. Nigdy nie korzystałem z forum w tej sprawie ale sądzę, że mam wirusy bardzo proszę o szybką pomoc:(

OTL

 

 

 

OTL logfile created on: 2010-12-29 22:35:10 - Run 1

OTL by OldTimer - Version 3.2.18.2 Folder = C:\D & S\Administrator\Menu Start\Narzędzia\Ochrona

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

 

1 023,00 Mb Total Physical Memory | 616,00 Mb Available Physical Memory | 60,00% Memory free

1,00 Gb Paging File | 1,00 Gb Available in Paging File | 78,00% Paging File free

Paging file location(s): C:\pagefile.sys 512 512 [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 10,19 Gb Total Space | 3,81 Gb Free Space | 37,36% Space Free | Partition Type: NTFS

Drive D: | 63,99 Gb Total Space | 11,17 Gb Free Space | 17,45% Space Free | Partition Type: NTFS

 

Computer Name: PC | User Name: Administrator | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

 

========== Processes (SafeList) ==========

 

PRC - [2010-12-29 19:00:44 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\D & S\Administrator\Menu Start\Narzędzia\Ochrona\OTL.exe

PRC - [2010-12-11 14:32:19 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2010-11-29 17:42:16 | 000,363,344 | ---- | M] (Malwarebytes Corporation) -- D:\Programy\Malwarebytes' Anti-Malware\mbamservice.exe

PRC - [2010-09-13 15:08:28 | 000,379,608 | R--- | M] (cFos Software GmbH) -- C:\cFosSpeed\spd.exe

PRC - [2010-09-13 15:08:24 | 000,936,152 | R--- | M] (cFos Software GmbH) -- C:\cFosSpeed\cfosspeed.exe

PRC - [2010-05-10 23:21:13 | 002,815,408 | ---- | M] (Tonec Inc.) -- D:\Programy\Internet Download Manager\IDMan.exe

PRC - [2009-09-02 20:55:03 | 000,907,264 | ---- | M] () -- C:\WINDOWS\system32\notepad.exe

PRC - [2009-07-07 22:32:11 | 002,761,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

PRC - [2009-02-06 13:23:36 | 000,727,720 | ---- | M] (ESET) -- D:\Programy\Antywirusy i Firewall-e\NOD32\ekrn.exe

PRC - [2009-02-06 13:23:12 | 002,021,400 | ---- | M] (ESET) -- D:\Programy\Antywirusy i Firewall-e\NOD32\egui.exe

PRC - [2007-05-08 17:00:48 | 002,179,072 | ---- | M] (UASSOFT.COM) -- D:\Programy\Multimedia Mouse Driver\KMWDSrv.exe

 

 

========== Modules (SafeList) ==========

 

MOD - [2010-12-29 19:00:44 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\D & S\Administrator\Menu Start\Narzędzia\Ochrona\OTL.exe

MOD - [2009-03-26 16:35:39 | 000,034,224 | ---- | M] (Tonec Inc.) -- D:\Programy\Internet Download Manager\idmmkb.dll

 

 

========== Win32 Services (SafeList) ==========

 

SRV - File not found [Auto | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)

SRV - [2010-11-29 17:42:16 | 000,363,344 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- D:\Programy\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)

SRV - [2010-11-25 08:44:02 | 002,404,168 | ---- | M] (O&O Software GmbH) [Disabled | Stopped] -- D:\Programy\O&O Defrag Professional\oodag.exe -- (OODefragAgent)

SRV - [2010-09-13 15:08:28 | 000,379,608 | R--- | M] (cFos Software GmbH) [Auto | Running] -- C:\cFosSpeed\spd.exe -- (cFosSpeedS)

SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)

SRV - [2010-05-18 15:19:20 | 000,030,024 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)

SRV - [2009-02-06 13:27:06 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- D:\Programy\Antywirusy i Firewall-e\NOD32\EHttpSrv.exe -- (EhttpSrv)

SRV - [2009-02-06 13:23:36 | 000,727,720 | ---- | M] (ESET) [Auto | Running] -- D:\Programy\Antywirusy i Firewall-e\NOD32\ekrn.exe -- (ekrn)

SRV - [2008-04-15 13:00:00 | 000,003,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\System32\regedt32.exe -- (.EsetTrialReset)

SRV - [2007-05-08 17:00:48 | 002,179,072 | ---- | M] (UASSOFT.COM) [Auto | Running] -- D:\Programy\Multimedia Mouse Driver\KMWDSrv.exe -- (KMWDSERVICE)

 

 

========== Driver Services (SafeList) ==========

 

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys -- (Lavasoft Kernexplorer)

DRV - [2010-11-29 17:42:06 | 000,020,952 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)

DRV - [2010-09-23 10:11:28 | 000,298,784 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)

DRV - [2010-09-13 15:08:36 | 001,141,464 | ---- | M] (cFos Software GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cfosspeed.sys -- (cFosSpeed)

DRV - [2010-07-30 14:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)

DRV - [2010-07-30 14:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)

DRV - [2010-07-30 14:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)

DRV - [2010-07-30 14:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)

DRV - [2010-06-25 10:18:58 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)

DRV - [2010-04-07 18:43:58 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112)

DRV - [2009-02-06 13:24:24 | 000,093,336 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)

DRV - [2009-02-06 13:23:18 | 000,106,208 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)

DRV - [2009-02-06 13:19:52 | 000,113,448 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)

DRV - [2008-11-11 12:42:00 | 000,024,832 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbmodem.sys -- (USBModem)

DRV - [2008-11-11 12:41:00 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbdiag.sys -- (UsbDiag)

DRV - [2008-11-11 12:41:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbbus.sys -- (usbbus)

DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)

DRV - [2008-04-13 21:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)

DRV - [2004-10-29 15:50:00 | 002,826,944 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)

DRV - [2004-05-14 16:24:10 | 000,622,172 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)

DRV - [2004-02-24 04:08:52 | 000,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)

DRV - [2004-01-19 14:37:16 | 000,034,387 | ---- | M] (Generic) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\StMp3Rec.sys -- (StMp3Rec)

 

 

========== Standard Registry (SafeList) ==========

 

 

========== Internet Explorer ==========

 

 

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\altavista, = http://www.altavista.com/q?q=%s

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\dictionary, = http://dictionary.reference.com/search?q=%s

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\ebay, = http://search.ebay.com/%s

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\google, = http://www.google.com/search?q=%s

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\grep, = http://www.google.com/search?q=%s

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\hotmail, = http://www.hotmail.com

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\money, = http://moneycentral.msn.com/investor/common/findsymbol.asp?optType=&Company=%s

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\msdn, = http://search.microsoft.com/default.asp?qu=%s&boolean=ALL&nq=NEW&so=RECCNT&p=1&ig=01&ig=03&ig=04&ig=05&ig=06&i=00&i=01&i=02&i=03&i=04&i=05&i=06&i=07&i=08&i=09&i=10&i=11&i=12&i=13&i=14&i=15&i=16&i=17&i=18&i=19&i=20&i=21&i=22&i=23&i=24&i=25&i=26&i=27&i=28&i=29&i=30&i=31&i=32&i=33&i=34&i=35&i=36&i=37&i=38&i=39&i=40&i=41&siteid=us/dev

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\msn, = http://search.msn.com/results.aspx?FORM=SMCRT&q=%s

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\slashdot, = http://www.slashdot.com

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\wikipedia, = http://en.wikipedia.org/w/wiki.phtml?title=%s

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\yahoo, = http://search.yahoo.com/bin/search?p=%s

IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\yahoomail, = http://mail.yahoo.com

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

========== FireFox ==========

 

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..extensions.enabledItems: mozilla_cc@internetdownloadmanager.com:6.4

FF - prefs.js..extensions.enabledItems: {B042753D-F57E-4e8e-A01B-7379A6D4CEFB}:1.18

FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.2

FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.2.0185

 

 

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-12-18 12:57:38 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-12-11 14:32:26 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: D:\Programy\Antywirusy i Firewall-e\NOD32\Mozilla Thunderbird [2010-10-23 21:44:30 | 000,000,000 | ---D | M]

 

[2010-08-14 16:51:41 | 000,000,000 | ---D | M] (No name found) -- C:\D & S\Administrator\Dane aplikacji\Mozilla\Extensions

[2010-05-13 23:39:35 | 000,000,000 | ---D | M] (No name found) -- C:\D & S\Administrator\Dane aplikacji\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}

[2010-08-14 16:51:41 | 000,000,000 | ---D | M] (No name found) -- C:\D & S\Administrator\Dane aplikacji\Mozilla\Extensions\mozswing@mozswing.org

[2010-12-29 18:54:41 | 000,000,000 | ---D | M] (No name found) -- C:\D & S\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\wr0ldszv.default\extensions

[2010-12-22 23:49:29 | 000,000,000 | ---D | M] (Firefox Sync) -- C:\D & S\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\wr0ldszv.default\extensions\{340c2bbc-ce74-4362-90b5-7c26312808ef}

[2010-05-16 13:29:14 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\D & S\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\wr0ldszv.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}

[2010-12-10 11:42:30 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\D & S\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\wr0ldszv.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}

[2010-06-25 10:19:14 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\D & S\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\wr0ldszv.default\extensions\DTToolbar@toolbarnet.com

[2010-06-25 10:19:09 | 000,002,055 | ---- | M] () -- C:\D & S\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\wr0ldszv.default\searchplugins\daemon-search.xml

[2010-05-08 12:50:23 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

[2010-05-10 23:20:22 | 000,000,000 | ---D | M] (IDM CC) -- C:\D & S\ADMINISTRATOR\DANE APLIKACJI\IDM\IDMMZCC3

[2010-04-25 20:06:41 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF

[2010-07-05 15:11:19 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml

[2010-07-05 15:11:19 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml

[2010-07-05 15:11:19 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml

[2010-07-05 15:11:19 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml

[2010-07-05 15:11:19 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml

[2010-07-05 15:11:19 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

 

O1 HOSTS File: ([2008-04-15 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - D:\Programy\Internet Download Manager\IDMIECC.dll (Tonec Inc.)

O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

O4 - HKLM..\Run: [cFosTASKTR] C:\WINDOWS\BOX_cFosTASK.exe ()

O4 - HKLM..\Run: [egui] D:\Programy\Antywirusy i Firewall-e\NOD32\egui.exe (ESET)

O4 - HKLM..\Run: [FirefoxUltimateOptimizer] C:\TMP\Rar$EX02.328\Firefox Ultimate Optimizer.exe (felipEx [http://felipex.net])

O4 - Startup: C:\D & S\All Users\Menu Start\Programy\Autostart\AutorunsDisabled [2010-04-26 10:24:55 | 000,000,000 | -H-D | M]

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeAnimation = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupScriptSync = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetHood = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoManageMyComputerVerb = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserNameInStartMenu = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartmenuLogoff = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCommonGroups = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinterTabs = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAddPrinter = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinters = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetworkConnections = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileMenu = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarCustomize = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeAnimation = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeKeyboardNavigationIndicators = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoThemesTab = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: MemCheckBoxInRunDlg = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1

O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)

O8 - Extra context menu item: Ściągnij przez IDM - D:\Programy\Internet Download Manager\IEExt.htm ()

O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - D:\Programy\Internet Download Manager\IEGetAll.htm ()

O8 - Extra context menu item: Ściągnij zawartość wideo FLV przez IDM - D:\Programy\Internet Download Manager\IEGetVL.htm ()

O13 - gopher Prefix: missing

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab (Java Plug-in 1.6.0_19)

O16 - DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab (Java Plug-in 1.6.0_19)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab (Java Plug-in 1.6.0_19)

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O24 - Desktop WallPaper: C:\D & S\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\D & S\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2010-04-25 19:54:46 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O34 - HKLM BootExecute: (OODBS) - C:\WINDOWS\System32\OODBS.exe (O&O Software GmbH)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

 

========== Files/Folders - Created Within 30 Days ==========

 

[2010-12-29 22:35:00 | 000,000,000 | RH-D | C] -- C:\D & S\Administrator\Recent

[2010-12-29 22:15:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT

[2010-12-29 22:14:33 | 000,000,000 | ---D | C] -- C:\Qoobox

[2010-12-29 20:16:27 | 000,000,000 | ---D | C] -- C:\D & S\Administrator\DoctorWeb

[2010-12-29 20:02:57 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2010-12-29 20:02:53 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2010-12-29 19:29:56 | 000,000,000 | ---D | C] -- C:\D & S\Administrator\Dane aplikacji\Malwarebytes

[2010-12-29 19:29:38 | 000,000,000 | ---D | C] -- C:\D & S\All Users\Dane aplikacji\Malwarebytes

[2010-12-29 15:26:12 | 000,000,000 | ---D | C] -- C:\D & S\Administrator\Dane aplikacji\GHISLER

[2010-12-29 13:41:47 | 000,000,000 | ---D | C] -- C:\Program Files\e-zasoby

[2010-12-20 20:20:11 | 000,000,000 | ---D | C] -- C:\D & S\LocalService\Ustawienia lokalne\Dane aplikacji\ESET

[2010-12-20 00:56:43 | 000,000,000 | ---D | C] -- C:\D & S\Administrator\Moje dokumenty\RM Electro House Vol.16 (2010)

[2010-12-20 00:56:11 | 000,000,000 | ---D | C] -- C:\D & S\Administrator\Moje dokumenty\O&O Defrag Professional 12.0.197 [PL] [Keygen]

[2010-12-20 00:55:11 | 000,000,000 | ---D | C] -- C:\D & S\Administrator\Moje dokumenty\VA - New Music House 10.06.2009

[2010-12-19 23:24:02 | 000,892,928 | ---- | C] (Free Software Foundation) -- C:\WINDOWS\System32\iconv.dll

[2010-12-19 19:25:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oodag

[2010-12-19 18:45:25 | 000,000,000 | ---D | C] -- C:\D & S\Administrator\Ustawienia lokalne\Dane aplikacji\Downloaded Installations

[2010-12-19 01:40:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DiskTrix

[2010-12-07 22:36:20 | 000,000,000 | ---D | C] -- C:\D & S\Administrator\Ustawienia lokalne\Dane aplikacji\Electronic Arts

[2010-12-07 00:07:47 | 000,000,000 | ---D | C] -- C:\ProgramData

[2010-12-07 00:07:47 | 000,000,000 | ---D | C] -- C:\D & S\All Users\Dane aplikacji\Electronic Arts

[2010-12-06 23:54:35 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts

[2010-12-06 23:32:21 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft WSE

[2010-12-05 18:01:35 | 000,000,000 | ---D | C] -- C:\D & S\Administrator\Moje dokumenty\Xilisoft Corporation

[2010-12-05 18:01:29 | 000,000,000 | ---D | C] -- C:\D & S\Administrator\Application Data

[2010-12-05 17:55:36 | 000,000,000 | ---D | C] -- C:\D & S\All Users\Dane aplikacji\PC Suite

[2010-12-05 02:21:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works

[2010-12-05 02:20:16 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio

[2010-12-05 02:20:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER

[2010-12-05 02:19:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET

[2010-12-05 02:16:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW

[2010-12-05 02:16:00 | 000,000,000 | ---D | C] -- C:\D & S\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft Help

[2010-12-05 02:15:49 | 000,000,000 | ---D | C] -- C:\Microsoft Office

[2010-12-05 02:15:48 | 000,000,000 | ---D | C] -- C:\D & S\All Users\Dane aplikacji\Microsoft Help

[2010-12-05 02:15:13 | 000,000,000 | RH-D | C] -- C:\MSOCache

[2010-12-05 01:03:46 | 000,000,000 | ---D | C] -- C:\D & S\Administrator\Moje dokumenty\cs

[2010-12-05 01:03:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nokia

[2010-12-05 01:01:58 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys

[2010-12-05 01:00:21 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerfltj.sys

[2010-12-05 01:00:19 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerflt.sys

[2010-12-05 01:00:16 | 000,023,040 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys

[2010-12-05 01:00:12 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfcoinstaller01009.dll

[2010-12-05 01:00:12 | 000,604,160 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcocls.dll

[2010-12-05 01:00:12 | 000,111,104 | ---- | C] (Nokia) -- C:\WINDOWS\System32\ccdcmbwu.dll

[2010-12-05 01:00:12 | 000,018,048 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmb.sys

 

========== Files - Modified Within 30 Days ==========

 

[2010-12-29 21:05:02 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2010-12-29 21:04:57 | 000,196,829 | ---- | M] () -- C:\WINDOWS\System32\oodbs.lor

[2010-12-29 21:02:59 | 000,000,211 | -HS- | M] () -- C:\boot.ini

[2010-12-29 20:59:01 | 000,023,050 | ---- | M] () -- C:\WINDOWS\System32\Notepad.ini

[2010-12-29 19:35:20 | 000,000,095 | ---- | M] () -- C:\WINDOWS\winamp.ini

[2010-12-29 18:49:05 | 000,662,006 | ---- | M] () -- C:\D & S\Administrator\Pulpit\optymalizacaj.docx

[2010-12-29 18:49:04 | 000,124,098 | ---- | M] () -- C:\D & S\Administrator\Pulpit\uruchumione programy.docx

[2010-12-29 18:20:27 | 000,077,724 | ---- | M] () -- C:\D & S\Administrator\Pulpit\mozilla config.docx

[2010-12-29 16:41:43 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini

[2010-12-29 13:41:02 | 000,000,012 | ---- | M] () -- C:\e-zasoby.bak

[2010-12-28 17:09:40 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2010-12-24 11:20:11 | 000,054,272 | ---- | M] () -- C:\D & S\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2010-12-20 00:51:07 | 000,002,195 | ---- | M] () -- C:\D & S\All Users\Pulpit\O&O Defrag.lnk

[2010-12-19 23:20:34 | 000,002,681 | ---- | M] () -- C:\WINDOWS\VPlayer.INI

[2010-12-19 23:20:32 | 000,000,097 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl

[2010-12-18 19:23:14 | 000,229,748 | ---- | M] () -- C:\D & S\Administrator\Pulpit\prezentacja.docx

[2010-12-18 02:55:00 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job

[2010-12-16 18:55:58 | 000,000,651 | ---- | M] () -- C:\D & S\Administrator\Pulpit\Sniper Elite.lnk

[2010-12-11 11:35:29 | 000,017,145 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml

[2010-12-06 23:55:05 | 000,023,050 | ---- | M] () -- C:\WINDOWS\Notepad.ini

[2010-12-05 17:44:45 | 000,505,568 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat

[2010-12-05 17:44:45 | 000,446,940 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2010-12-05 17:44:45 | 000,090,414 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat

[2010-12-05 17:44:45 | 000,073,180 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2010-12-05 14:12:10 | 000,185,816 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

 

========== Files Created - No Company Name ==========

 

[2010-12-29 18:46:17 | 000,662,006 | ---- | C] () -- C:\D & S\Administrator\Pulpit\optymalizacaj.docx

[2010-12-29 18:36:36 | 000,124,098 | ---- | C] () -- C:\D & S\Administrator\Pulpit\uruchumione programy.docx

[2010-12-29 18:10:31 | 000,077,724 | ---- | C] () -- C:\D & S\Administrator\Pulpit\mozilla config.docx

[2010-12-29 15:26:13 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF

[2010-12-29 15:26:13 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF

[2010-12-29 15:26:13 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF

[2010-12-29 15:26:13 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF

[2010-12-29 15:26:13 | 000,000,545 | ---- | C] () -- C:\WINDOWS\NOCLOSE.PIF

[2010-12-29 15:26:13 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF

[2010-12-29 15:26:13 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF

[2010-12-29 13:41:02 | 000,000,012 | ---- | C] () -- C:\e-zasoby.bak

[2010-12-19 23:24:02 | 000,795,648 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll

[2010-12-19 23:24:02 | 000,675,840 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax

[2010-12-19 18:46:51 | 000,002,195 | ---- | C] () -- C:\D & S\All Users\Pulpit\O&O Defrag.lnk

[2010-12-18 18:13:31 | 000,229,748 | ---- | C] () -- C:\D & S\Administrator\Pulpit\prezentacja.docx

[2010-12-16 18:55:58 | 000,000,651 | ---- | C] () -- C:\D & S\Administrator\Pulpit\Sniper Elite.lnk

[2010-11-14 14:05:22 | 000,000,023 | ---- | C] () -- C:\WINDOWS\wininit.ini

[2010-07-31 00:08:39 | 000,002,681 | ---- | C] () -- C:\WINDOWS\VPlayer.INI

[2010-07-23 22:23:24 | 000,053,760 | ---- | C] () -- C:\WINDOWS\System32\gac.dll

[2010-07-23 22:23:24 | 000,003,584 | ---- | C] () -- C:\WINDOWS\System32\klipxm32.dll

[2010-06-25 10:18:58 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys

[2010-05-29 22:11:38 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll

[2010-05-26 11:36:07 | 000,000,095 | ---- | C] () -- C:\WINDOWS\winamp.ini

[2010-05-13 11:27:16 | 000,004,086 | ---- | C] () -- C:\D & S\Administrator\Dane aplikacji\ex_log.txt

[2010-05-09 19:04:31 | 000,000,121 | ---- | C] () -- C:\D & S\Administrator\Ustawienia lokalne\Dane aplikacji\fusioncache.dat

[2010-04-27 22:42:01 | 000,054,272 | ---- | C] () -- C:\D & S\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2010-04-27 22:41:47 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini

[2010-04-26 08:58:36 | 000,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI

[2010-04-25 21:55:36 | 000,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll

[2010-04-25 21:55:35 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini

[2010-04-25 21:55:26 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll

[2010-04-25 21:55:25 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll

[2010-04-25 21:55:11 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll

[2010-04-25 21:45:17 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2010-04-25 21:19:17 | 000,000,000 | ---- | C] () -- C:\WINDOWS\WB.ini

[2010-04-25 20:53:17 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini

[2010-04-25 20:53:13 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll

[2010-04-25 20:02:10 | 000,002,272 | ---- | C] () -- C:\D & S\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat

[2010-04-07 18:41:40 | 000,058,792 | ---- | C] () -- C:\WINDOWS\System32\wbload.dll

[2009-09-02 20:54:12 | 000,023,050 | ---- | C] () -- C:\WINDOWS\System32\Notepad.ini

[2009-09-02 20:54:12 | 000,023,050 | ---- | C] () -- C:\WINDOWS\Notepad.ini

 

< End of report >

 

hijackthis

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 22:35:57, on 2010-12-29

Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

D:\Programy\Antywirusy i Firewall-e\NOD32\egui.exe

C:\cFosSpeed\spd.exe

D:\Programy\Antywirusy i Firewall-e\NOD32\ekrn.exe

C:\cFosSpeed\cfosspeed.exe

D:\Programy\Multimedia Mouse Driver\KMWDSrv.exe

D:\Programy\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files\Mozilla Firefox\firefox.exe

D:\Programy\Internet Download Manager\IDMan.exe

C:\WINDOWS\system32\taskmgr.exe

C:\WINDOWS\system32\NOTEPAD.EXE

C:\D & S\Administrator\Menu Start\Narzędzia\Ochrona\OTL.exe

C:\Program Files\Tools\Hijack This.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza

O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - D:\Programy\Internet Download Manager\IDMIECC.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O3 - Toolbar: QT Breadcrumbs Address Bar - {af83e43c-dd2b-4787-826b-31b17dee52ed} - mscoree.dll (file missing)

O3 - Toolbar: QT TabBar - {d2bf470e-ed1c-487f-a333-2bd8835eb6ce} - mscoree.dll (file missing)

O3 - Toolbar: QT Tab Standard Buttons - {D2BF470E-ED1C-487F-A666-2BD8835EB6CE} - mscoree.dll (file missing)

O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll

O4 - HKLM\..\Run: [egui] "D:\Programy\Antywirusy i Firewall-e\NOD32\egui.exe" /hide /waitservice

O4 - HKLM\..\Run: [cFosTASKTR] C:\WINDOWS\BOX_cFosTASK.exe

O4 - HKLM\..\Run: [FirefoxUltimateOptimizer] "C:\TMP\Rar$EX02.328\Firefox Ultimate Optimizer.exe"

O4 - HKUS\S-1-5-20\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'USŁUGA SIECIOWA')

O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA SIECIOWA')

O4 - HKUS\S-1-5-18\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')

O4 - Global Startup: AutorunsDisabled

O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://D:\Programy\MICROS~1\Office10\EXCEL.EXE/3000

O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\MICROS~1\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Ściągnij przez IDM - D:\Programy\Internet Download Manager\IEExt.htm

O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - D:\Programy\Internet Download Manager\IEGetAll.htm

O8 - Extra context menu item: Ściągnij zawartość wideo FLV przez IDM - D:\Programy\Internet Download Manager\IEGetVL.htm

O9 - Extra button: (no name) - {85e1f530-48f4-11d9-9629-08ff2ffc9f67} - (no file)

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O13 - Gopher Prefix:

O17 - HKLM\System\CCS\Services\Tcpip\..\{26AE669B-16D9-4837-991F-88E8D3E98C4B}: NameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{26AE669B-16D9-4837-991F-88E8D3E98C4B}: NameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{26AE669B-16D9-4837-991F-88E8D3E98C4B}: NameServer = 192.168.1.1

O23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C:\cFosSpeed\spd.exe

O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - D:\Programy\Antywirusy i Firewall-e\NOD32\EHttpSrv.exe

O23 - Service: ESET Service (ekrn) - ESET - D:\Programy\Antywirusy i Firewall-e\NOD32\ekrn.exe

O23 - Service: Keyboard And Mouse Communication Service (KMWDSERVICE) - UASSOFT.COM - D:\Programy\Multimedia Mouse Driver\KMWDSrv.exe

O23 - Service: MBAMService - Malwarebytes Corporation - D:\Programy\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: ServiceLayer - Nokia - C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe

 

--

End of file - 5814 bytes

Udostępnij tę odpowiedź

Odnośnik do odpowiedzi
Udostępnij na innych stronach
Przejdź do listy tematów

  • Ostatnio przeglądający   0 użytkowników

    Brak zarejestrowanych użytkowników przeglądających tę stronę.

×
×
  • Dodaj nową pozycję...