24 Sty 2016, 04:20
25 Sty 2016, 18:45
Task: C:\WINDOWS\Tasks\At1.job => C:\DOCUME~1\ADMINI~1\DANEAP~1\PRICEF~1\UPDATE~1\UPDATE~1.EXE <==== UWAGA
Task: C:\WINDOWS\Tasks\EPUpdater.job => C:\DOCUME~1\ADMINI~1\DANEAP~1\BABSOL~1\Shared\BabMaint.exe <==== UWAGA
Task: C:\WINDOWS\Tasks\GoforFilesUpdate.job => C:\Program Files\GoforFiles\GFFUpdater.exehxxp:/www.goforfiles.com <==== UWAGA
C:\DOCUME~1\ADMINI~1\DANEAP~1\PRICEF~1
C:\DOCUME~1\ADMINI~1\DANEAP~1\BABSOL~1
C:\Program Files\GoforFiles
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [WinampAgent] => C:\Program Files\Winamp\winampa.exe [74752 2012-06-28] (Nullsoft, Inc.)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [570664 2008-06-19] (Nero AG)
HKLM\...\Run: [NBKeyScan] => C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2221352 2008-06-08] (Nero AG)
HKLM\...\Run: [Onet.pl AutoUpdate] => "C:\Program Files\Common Files\Onet.pl\NewAutoUpdate.exe" /updateexetsr
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKU\S-1-5-21-1292428093-746137067-839522115-500\...\Run: [ALLUpdate] => "D:\ALLPlayer\ALLUpdate.exe" "sleep"
HKU\S-1-5-21-1292428093-746137067-839522115-500\...\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [1840424 2008-06-24] (Nero AG)
HKU\S-1-5-21-1292428093-746137067-839522115-500\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
Startup: C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\OpenOffice.org 3.4.1.lnk [2013-06-14]
HKU\S-1-5-21-1292428093-746137067-839522115-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-search.com/?affID=119293&tt=gc_&babsrc=HP_ss&mntrId=A4BA243C2006C62C
SearchScopes: HKLM DefaultScope {40439b93-f815-4122-8073-d03bed94c303} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-shoutcast-chromesbox-en-us
SearchScopes: HKLM {40439b93-f815-4122-8073-d03bed94c303} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-shoutcast-chromesbox-en-us
SearchScopes: HKLM {E627DC4B-8C04-4234-A2D4-1D634EE01C41} URL = hxxp://fastestwebsearch.com/search?q={searchterms}
SearchScopes: HKU\S-1-5-21-1292428093-746137067-839522115-500 DefaultScope {40439b93-f815-4122-8073-d03bed94c303} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-shoutcast-chromesbox-en-us
SearchScopes: HKU\S-1-5-21-1292428093-746137067-839522115-500 {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.delta-search.com/?q={searchTerms}&affID=119293&tt=gc_&babsrc=SP_ss&mntrId=A4BA243C2006C62C
SearchScopes: HKU\S-1-5-21-1292428093-746137067-839522115-500 {40439b93-f815-4122-8073-d03bed94c303} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-shoutcast-chromesbox-en-us
SearchScopes: HKU\S-1-5-21-1292428093-746137067-839522115-500 {E627DC4B-8C04-4234-A2D4-1D634EE01C41} URL = hxxp://fastestwebsearch.com/search?q={searchterms}
FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\jivrhrba.Domyślny użytkownik\searchplugins\delta.xml [2013-06-02]
FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\jivrhrba.Domyślny użytkownik\searchplugins\searchgol.xml [2013-10-12]
FF Extension: Brak nazwy - C:\Program Files\Mozilla Firefox\extensions\[email protected] [2016-01-07] [Brak podpisu cyfrowego]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox => nie znaleziono
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => nie znaleziono
CHR HomePage: Default hxxp://www.delta-search.com/?affID=119293&tt=gc_&babsrc=HP_ss&mntrId=A4BA243C2006C62C
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx <nie znaleziono>
S3 WsDrvInst; "D:\Program Files\Wondershare\Dr.Fone for Android\DriverInstall.exe" [X]
U1 WS2IFSL; Brak ImagePath
S3 XPTWOPORT; system32\DRIVERS\XPTWOPORT.SYS [X]
U3 ffryqpob; \??\C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\ffryqpob.sys [X]
S3 clwvd6; system32\DRIVERS\clwvd6.sys [X]
U4 eamon; system32\DRIVERS\eamon.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 filtertdidriver; system32\drivers\ewfiltertdidriver.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_cdcecm; system32\DRIVERS\ew_jucdcecm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S4 IntelIde; Brak ImagePath
S3 RTL8192cu; system32\DRIVERS\RTL8192cu.sys [X]
S3 RTL8192su; system32\DRIVERS\RTL8192su.sys [X]
2016-01-23 10:52 - 2016-01-24 02:14 - 00000488 _____ C:\WINDOWS\Tasks\AdministratorForecastersJuliennesV2.job
EmptyTemp: