UA: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5
UA: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5 Comodo_Dragon/19.1.0.0
:OTL
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\SBREdrv.sys -- (SBRE)
DRV - File not found [File_System | Disabled | Running] -- C:\Windows\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - File not found [Kernel | On_Demand | Stopped] -- F:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\TBPANEL.SYS -- (Cardex)
IE - HKU\S-1-5-21-189015336-2362467449-2568019083-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 10 36 01 84 DD 2D CD 01 [binary data]
IE - HKU\S-1-5-21-189015336-2362467449-2568019083-1000\..\SearchScopes\{DFA1DCF4-73C4-499C-96E9-F1AC5B7019D8}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3072253
IE - HKU\S-1-5-21-189015336-2362467449-2568019083-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 190.0.57.98:8080
IE - HKU\S-1-5-21-189015336-2362467449-2568019083-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 10 36 01 84 DD 2D CD 01 [binary data]
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
O4 - HKU\S-1-5-21-189015336-2362467449-2568019083-1000..\Run: [DTlite] C:\Users\dom\AppData\Roaming\Microsoft\DTlite.exe ( )
O4 - HKU\S-1-5-21-189015336-2362467449-2568019083-1000..\Run: [Java] C:\Users\dom\AppData\Roaming\Microsoft\jusched.exe File not found
O4 - HKU\S-1-5-21-189015336-2362467449-2568019083-1003..\Run: [GAINWARD] C:\Program Files\EXPERTool\TBPanel.exe /A File not found
[2012-05-21 18:09:13 | 000,000,000 | ---D | C] -- C:\Users\dom\AppData\Local\dxhr
[2012-05-21 18:08:37 | 000,000,000 | ---D | C] -- C:\Users\dom\Documents\ALI213
[2012-05-21 18:06:57 | 000,000,000 | ---D | C] -- C:\Users\dom\AppData\Local\28050
[2012-06-01 00:28:00 | 000,001,050 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-189015336-2362467449-2568019083-1000UA.job
[2012-05-30 09:28:00 | 000,000,998 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-189015336-2362467449-2568019083-1000Core.job
[2012-05-27 15:02:09 | 044,040,192 | ---- | M] () -- C:\Users\dom\AppData\Local\update.exe
[2012-05-27 15:02:08 | 046,137,344 | ---- | M] () -- C:\Users\dom\AppData\Local\jusched.exe
[2012-05-27 15:02:08 | 045,088,768 | ---- | M] ( ) -- C:\Users\dom\AppData\Local\DTlite.exe
[2012-05-27 15:02:08 | 000,001,917 | ---- | M] () -- C:\Users\dom\AppData\Local\localstore.rdf
[2012-05-27 15:02:08 | 000,000,226 | ---- | M] () -- C:\Users\dom\AppData\Local\Setup.dat
[2012-05-27 15:02:07 | 018,874,368 | ---- | M] () -- C:\Users\dom\AppData\Local\data1.cab
[2012-05-27 15:02:07 | 000,927,072 | ---- | M] (DivX, LLC) -- C:\Users\dom\AppData\Local\Codecs.exe
[2012-05-27 15:01:08 | 000,000,000 | ---- | M] () -- C:\Users\dom\AppData\Local\patterns.ini
DRV - [2011-04-05 17:35:20 | 000,221,784 | ---- | M] (Sunbelt Software, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\SbFw.sys -- (SbFw)
DRV - [2011-04-05 17:35:20 | 000,094,040 | ---- | M] (Sunbelt Software, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sbhips.sys -- (sbhips)
DRV - [2011-04-05 17:35:20 | 000,078,936 | ---- | M] (Sunbelt Software, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\sbtis.sys -- (SbTis)
DRV - [2011-02-08 09:14:22 | 000,069,208 | ---- | M] (Sunbelt Software, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SbFwIm.sys -- (SBFWIMCLMP)
DRV - [2011-02-08 09:14:22 | 000,069,208 | ---- | M] (Sunbelt Software, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\SbFwIm.sys -- (SBFWIMCL)
:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DivXUpdate"=-
:Commands
[clearallrestorepoints]
[emptytemp]
UA: Mozilla/5.0 (Windows; U; Windows NT 5.1; pl; rv:1.9.2.28) Gecko/20120306 Firefox/3.6.28 (.NET CLR 3.5.30729)
UA: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5 Comodo_Dragon/19.1.0.0
UA: Opera/9.80 (Windows NT 6.1; WOW64; U; pl) Presto/2.10.229 Version/11.64
UA: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5 Comodo_Dragon/19.1.0.0
UA: Opera/9.80 (Windows NT 6.1; WOW64; U; pl) Presto/2.10.229 Version/11.64
UA: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5
UA: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.52 Safari/536.5 Comodo_Dragon/19.1.0.0
Zarejestrowani użytkownicy: Bing [Bot]