Anonim / 4 lata, 10 miesięcy temu | Download | Plaintext | Odpowiedz |

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
All processes killed
========== OTL ==========
Service xhunter1 stopped successfully!
Service xhunter1 deleted successfully!
File C:\WINDOWS\xhunter1.sys not found.
Service XDva396 stopped successfully!
Service XDva396 deleted successfully!
File C:\WINDOWS\system32\XDva396.sys not found.
Service XDva393 stopped successfully!
Service XDva393 deleted successfully!
File C:\WINDOWS\system32\XDva393.sys not found.
Service XDva392 stopped successfully!
Service XDva392 deleted successfully!
File C:\WINDOWS\system32\XDva392.sys not found.
Service XDva391 stopped successfully!
Service XDva391 deleted successfully!
File C:\WINDOWS\system32\XDva391.sys not found.
Service XDva387 stopped successfully!
Service XDva387 deleted successfully!
File C:\WINDOWS\system32\XDva387.sys not found.
Service XDva386 stopped successfully!
Service XDva386 deleted successfully!
File C:\WINDOWS\system32\XDva386.sys not found.
Service XDva385 stopped successfully!
Service XDva385 deleted successfully!
File C:\WINDOWS\system32\XDva385.sys not found.
Service XDva375 stopped successfully!
Service XDva375 deleted successfully!
File C:\WINDOWS\system32\XDva375.sys not found.
Service XDva365 stopped successfully!
Service XDva365 deleted successfully!
File C:\WINDOWS\system32\XDva365.sys not found.
Service XDva349 stopped successfully!
Service XDva349 deleted successfully!
File C:\WINDOWS\system32\XDva349.sys not found.
Service XDva332 stopped successfully!
Service XDva332 deleted successfully!
File C:\WINDOWS\system32\XDva332.sys not found.
Service XDva319 stopped successfully!
Service XDva319 deleted successfully!
File C:\WINDOWS\system32\XDva319.sys not found.
Service vtany stopped successfully!
Service vtany deleted successfully!
File C:\WINDOWS\vtany.sys not found.
Service VcommMgr stopped successfully!
Service VcommMgr deleted successfully!
File System32\Drivers\VcommMgr.sys not found.
Service VComm stopped successfully!
Service VComm deleted successfully!
File system32\DRIVERS\VComm.sys not found.
Service GMSIPCI stopped successfully!
Service GMSIPCI deleted successfully!
File E:\INSTALL\GMSIPCI.SYS not found.
Service GarenaPEngine stopped successfully!
Service GarenaPEngine deleted successfully!
File C:\DOCUME~1\RAFA~1\USTAWI~1\Temp\PWD7C9.tmp not found.
Service extrem.sys stopped successfully!
Service extrem.sys deleted successfully!
File C:\DOCUME~1\RAFA~1\USTAWI~1\Temp\extrem.sys not found.
Service EagleXNt stopped successfully!
Service EagleXNt deleted successfully!
File C:\WINDOWS\system32\drivers\EagleXNt.sys not found.
Service EagleNT stopped successfully!
Service EagleNT deleted successfully!
File C:\WINDOWS\system32\drivers\EagleNT.sys not found.
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\ComboFix\catchme.sys not found.
Service BTHidMgr stopped successfully!
Service BTHidMgr deleted successfully!
File System32\Drivers\BTHidMgr.sys not found.
Service BTHidEnum stopped successfully!
Service BTHidEnum deleted successfully!
File system32\DRIVERS\vbtenum.sys not found.
Service Btcsrusb stopped successfully!
Service Btcsrusb deleted successfully!
File System32\Drivers\btcusb.sys not found.
Service BT stopped successfully!
Service BT deleted successfully!
File system32\DRIVERS\btnetdrv.sys not found.
Service BlueletSCOAudio stopped successfully!
Service BlueletSCOAudio deleted successfully!
File system32\DRIVERS\BlueletSCOAudio.sys not found.
Service BlueletAudio stopped successfully!
Service BlueletAudio deleted successfully!
File system32\DRIVERS\blueletaudio.sys not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_USERS\S-1-5-21-220523388-823518204-839522115-1003\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{5E5AB302-7F65-44CD-8211-C1D4CAACCEA3} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5E5AB302-7F65-44CD-8211-C1D4CAACCEA3}\ not found.
Registry value HKEY_USERS\S-1-5-21-220523388-823518204-839522115-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{00000000-5736-4205-0008-781CD0E19F00} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000000-5736-4205-0008-781CD0E19F00}\ not found.
Registry value HKEY_USERS\S-1-5-21-220523388-823518204-839522115-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_USERS\S-1-5-21-220523388-823518204-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge deleted successfully.
C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\qcoxskxy.exe moved successfully.
C:\Documents and Settings\Rafał\Menu Start\Programy\Autostart\qcoxskxy.exe moved successfully.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
C:\WINDOWS\Downloaded Program Files\gp.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LogonInit\ deleted successfully.
C:\Program Files\Common Files\logonInit.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit:C:\Program Files\ldfrIiBL\qcoxskxy.exe deleted successfully.
C:\Program Files\ldfrIiBL\qcoxskxy.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\docume~1\alluse~1\daneap~1\browser manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.dll deleted successfully.
I:\autorun.inf moved successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9461901f-fe1b-11de-97f9-4d6564696130}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9461901f-fe1b-11de-97f9-4d6564696130}\ not found.
File I:\qhbfqx.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9461901f-fe1b-11de-97f9-4d6564696130}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9461901f-fe1b-11de-97f9-4d6564696130}\ not found.
File I:\qhbfqx.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{94619020-fe1b-11de-97f9-4d6564696130}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{94619020-fe1b-11de-97f9-4d6564696130}\ not found.
C:\Documents and Settings\Rafał\wgsdgsdgdsgsd.exe moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\dsgsdgdsgdsgw.pad moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\dsgsdgdsgdsgw.js moved successfully.
C:\Documents and Settings\Rafał\Menu Start\Programy\Autostart\runctf.lnk moved successfully.
C:\Program Files\Common Files\userInit.dll moved successfully.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Winmgmt\Parameters\\"ServiceDll"|hex(2):"%SystemRoot%\system32\wbem\WMIsvc.dll" /E : value set successfully!
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
[EMPTYTEMP]
 
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 71246 bytes
 
User: All Users
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 58264 bytes
 
User: LocalService
->Temp folder emptied: 82513 bytes
->Temporary Internet Files folder emptied: 32902 bytes
 
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 194302 bytes
 
User: PC-9
 
User: Rafasaves
 
User: Rafał
->Temp folder emptied: 211575564 bytes
->Temporary Internet Files folder emptied: 45674384 bytes
->Java cache emptied: 8233500 bytes
->FireFox cache emptied: 472064882 bytes
->Flash cache emptied: 71385 bytes
 
User: Rafa
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2490505 bytes
%systemroot%\System32 .tmp files removed: 784932 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 297021 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 707,00 mb
 
 
OTL by OldTimer - Version 3.2.69.0 log created on 01112013_194808

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...