blackhero utworzono 16 października 2009 utworzono 16 października 2009 Witam miałem konia trojańskiego po usunięciu którego straciłem jakieś pliki potrzebne do otwierania partycji teraz gdy klikam na jedną z nich wyskakuje mi okno z opisem "otwieranie za pomocą" i lista programów naciskam Internet Explorer wciskam ok i się otwiera dopiero. jak pozbyć się problemu bez formatowania partycji dysku? Z góry dziękuje za pomoc pozdrawiam
Psycholandia komentarz 16 października 2009 komentarz 16 października 2009 Daj loga z OTL: http://www.forumpc.pl/index.php?showtopic=104338 prawdopodobnie to infekcja.
blackhero komentarz 19 października 2009 Autor komentarz 19 października 2009 (edytowane) [log] OTL logfile created on: 2009-11-01 20:18:02 - Run 1 OTL by OldTimer - Version 3.0.21.0 Folder = C:\Documents and Settings\Marcin\Moje dokumenty\Pobieranie Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,94 Gb Total Physical Memory | 1,34 Gb Available Physical Memory | 69,41% Memory free 3,79 Gb Paging File | 3,31 Gb Available in Paging File | 87,54% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 48,83 Gb Total Space | 17,72 Gb Free Space | 36,30% Space Free | Partition Type: NTFS Drive D: | 58,59 Gb Total Space | 47,76 Gb Free Space | 81,50% Space Free | Partition Type: NTFS Drive E: | 62,50 Gb Total Space | 10,15 Gb Free Space | 16,25% Space Free | Partition Type: NTFS Drive F: | 62,95 Gb Total Space | 39,69 Gb Free Space | 63,04% Space Free | Partition Type: NTFS G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: Current User Name: Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off [/log] o to ci chodziło ?
krychu komentarz 19 października 2009 komentarz 19 października 2009 Otwórz dysk za pomocą opcji Eksportuj (prawym na dysk) jak się wbijesz daj w opcjach folderu żeby pokazało ukryte pliki ale także odznacz "ukryj chronione pliki systemu operacyjnego" potem daj OK. I jak na dysku zobaczysz plik Autorun to go wywal i uruchom ponownie kompa i powinno pomóc.
Psycholandia komentarz 19 października 2009 komentarz 19 października 2009 [quote]o to ci chodziło ? [/quote] O to, ale daj całego loga w tagi [b][log] [/ log][/b]
blackhero komentarz 19 października 2009 Autor komentarz 19 października 2009 jest kolejny problem jak biorę pokaż pliki ukryte i wciskam zastosuj zamykam okno i nic się nie pokazuje wracam do opcji folderów i widzę że wybrana opcja to nie pokazuj ukrytych plików nie mogę zmienić tej opcji cały czas wraca do opcji nie pokazuj
Psycholandia komentarz 19 października 2009 komentarz 19 października 2009 Daj loga z OTL: http://www.forumpc.pl/index.php?showtopic=104338 na 95% masz zawirusowany komputer
blackhero komentarz 19 października 2009 Autor komentarz 19 października 2009 [log]OTL logfile created on: 2009-11-01 21:43:14 - Run 2 OTL by OldTimer - Version 3.0.21.0 Folder = C:\Documents and Settings\Marcin\Moje dokumenty\Pobieranie Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,94 Gb Total Physical Memory | 1,43 Gb Available Physical Memory | 73,69% Memory free 3,79 Gb Paging File | 3,41 Gb Available in Paging File | 90,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 48,83 Gb Total Space | 17,69 Gb Free Space | 36,23% Space Free | Partition Type: NTFS Drive D: | 58,59 Gb Total Space | 47,76 Gb Free Space | 81,50% Space Free | Partition Type: NTFS Drive E: | 62,50 Gb Total Space | 10,15 Gb Free Space | 16,25% Space Free | Partition Type: NTFS Drive F: | 62,95 Gb Total Space | 39,69 Gb Free Space | 63,04% Space Free | Partition Type: NTFS G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: BOMBEL Current User Name: Marcin Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2009-11-01 21:43:05 | 00,521,216 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Marcin\Moje dokumenty\Pobieranie\OTL.exe PRC - [2009-08-24 21:23:38 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-08-14 07:08:20 | 18,702,336 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE PRC - [2009-07-25 04:23:12 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe PRC - [2009-07-25 04:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2008-11-26 18:18:51 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe PRC - [2008-11-26 18:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe PRC - [2008-11-26 18:16:23 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe PRC - [2008-11-26 18:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe PRC - [2008-11-24 20:44:18 | 00,869,888 | ---- | M] () -- C:\Program Files\ALLPlayer\ALLUpdate.exe PRC - [2008-11-03 11:45:46 | 01,332,480 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodag.exe PRC - [2008-11-03 11:45:04 | 02,540,800 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodtray.exe PRC - [2006-10-31 07:35:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe PRC - [2006-10-27 00:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe PRC - [2005-01-28 01:36:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe PRC - [2004-08-03 23:44:30 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\wmiprvse.exe PRC - [2004-08-03 23:44:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE PRC - [2003-07-05 07:23:52 | 00,049,214 | ---- | M] (Dassault Systemes) -- C:\Program Files\Catia\B12\intel_a\code\bin\CATSysDemon.exe [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found -- -- (Nero BackItUp Scheduler 4.0 [Auto | Stopped]) SRV - [2009-08-15 16:26:15 | 00,077,944 | ---- | M] (Autodesk) -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service [On_Demand | Stopped]) SRV - [2009-07-25 04:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running]) SRV - [2008-11-26 18:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running]) SRV - [2008-11-26 18:16:23 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running]) SRV - [2008-11-26 18:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running]) SRV - [2008-11-03 11:45:46 | 01,332,480 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodag.exe -- (O&O Defrag [Auto | Running]) SRV - [2008-07-18 13:13:20 | 00,053,760 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZipm12.dll -- (Pml Driver HPZ12 [Auto | Running]) SRV - [2008-07-18 13:13:20 | 00,044,032 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZinw12.dll -- (Net Driver HPZ12 [Auto | Running]) SRV - [2007-10-24 01:47:40 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) SRV - [2007-10-24 01:47:22 | 00,033,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped]) SRV - [2007-10-11 09:55:14 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped]) SRV - [2007-10-11 09:55:10 | 00,864,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped]) SRV - [2007-10-09 12:58:12 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped]) SRV - [2007-02-06 17:32:06 | 00,266,240 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService [On_Demand | Stopped]) SRV - [2007-01-15 17:14:38 | 00,774,144 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService [On_Demand | Stopped]) SRV - [2006-10-31 07:35:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running]) SRV - [2006-10-27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped]) SRV - [2006-10-26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped]) SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped]) SRV - [2005-01-28 01:36:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe -- (UMWdf [Auto | Running]) SRV - [2004-08-03 23:44:08 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running]) SRV - [2003-07-05 07:23:52 | 00,049,214 | ---- | M] (Dassault Systemes) -- C:\Program Files\Catia\B12\intel_a\code\bin\CATSysDemon.exe -- (BBDemon [Auto | Running]) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2009-08-18 10:32:00 | 05,884,416 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Running]) DRV - [2009-08-15 16:18:46 | 00,721,904 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running]) DRV - [2008-11-30 00:22:56 | 00,015,600 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\gdrv.sys -- (gdrv [On_Demand | Stopped]) DRV - [2008-11-26 18:18:18 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2 [Auto | Running]) DRV - [2008-11-26 18:17:36 | 00,111,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP [System | Running]) DRV - [2008-11-26 18:17:25 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\DRIVERS\aswFsBlk.sys -- (aswFsBlk [Auto | Running]) DRV - [2008-11-26 18:16:38 | 00,050,864 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi [System | Running]) DRV - [2008-11-26 18:16:29 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr [On_Demand | Running]) DRV - [2008-11-26 18:15:35 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4 [System | Running]) DRV - [2008-08-05 13:10:12 | 01,684,736 | ---- | M] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys -- (Ambfilt [On_Demand | Stopped]) DRV - [2007-03-08 00:51:00 | 00,043,528 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running]) DRV - [2006-11-27 16:33:54 | 00,019,968 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nvnetbus.sys -- (nvnetbus [On_Demand | Running]) DRV - [2006-11-27 16:33:50 | 00,058,368 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\NVENETFD.sys -- (NVENETFD [On_Demand | Running]) DRV - [2006-10-31 07:35:00 | 03,964,256 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running]) DRV - [2006-10-18 16:31:38 | 00,105,472 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata [Boot | Running]) DRV - [2006-06-18 23:51:32 | 00,043,520 | ---- | M] (Advanced Micro Devices) -- C:\WINDOWS\System32\DRIVERS\AmdK8.sys -- (AmdK8 [System | Running]) DRV - [2006-01-04 08:41:48 | 01,389,056 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys -- (Monfilt [On_Demand | Stopped]) DRV - [2005-01-07 16:07:18 | 00,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running]) DRV - [2004-07-17 10:36:38 | 00,027,440 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped]) DRV - [2003-12-08 10:53:48 | 00,053,600 | ---- | M] (THOMSON) -- C:\WINDOWS\System32\DRIVERS\alcan5wn.sys -- (alcan5wn [On_Demand | Stopped]) DRV - [2003-12-08 10:53:46 | 00,070,688 | ---- | M] (THOMSON) -- C:\WINDOWS\System32\DRIVERS\alcaudsl.sys -- (alcaudsl [On_Demand | Stopped]) DRV - [2001-08-18 00:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running]) DRV - [2001-07-03 02:02:24 | 00,021,288 | ---- | M] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTTUNER.SYS -- (BTTUNER [Auto | Running]) DRV - [2001-07-03 02:02:22 | 00,012,568 | ---- | M] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTXBAR.SYS -- (BTXBAR [Auto | Running]) DRV - [2001-07-03 02:02:20 | 00,291,768 | ---- | M] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BT848.SYS -- (BT848 [Auto | Running]) DRV - [1998-03-31 06:34:00 | 00,064,512 | ---- | M] () -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel [Auto | Running]) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\NEOSTR~1\SEARCH~1.DLL File not found IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.selectedEngine: "DAEMON Search" FF - prefs.js..browser.startup.homepage: "http://pl.start2.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:pl:official" FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.0.8.0552 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}:6.0.10 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.0.6 FF - prefs.js..extensions.enabledItems: zrzuta.eu@gmail.com:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15 FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3 FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2008-12-02 00:04:22 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-10-01 11:56:24 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-10-01 11:56:24 | 00,000,000 | ---D | M] [2009-10-01 11:56:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Extensions [2009-10-01 11:56:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2009-11-01 20:11:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions [2009-10-01 11:57:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8} [2009-08-15 16:20:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions\DTToolbar@toolbarnet.com [2009-09-22 21:19:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions\zrzuta.eu@gmail.com [2009-08-15 16:20:20 | 00,002,395 | ---- | M] () -- C:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\FireFox\Profiles\4g8rq6xi.default\searchplugins\daemon-search.xml [2009-11-01 20:11:04 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions [2009-10-01 11:56:24 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2008-12-02 00:04:30 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} [2009-01-19 22:41:34 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [2009-10-13 19:38:32 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} [2009-08-24 21:23:38 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll [2009-08-24 21:23:38 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll [2007-04-10 16:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2009-07-25 04:23:01 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll [2009-08-24 21:23:38 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll [2006-10-26 20:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2003-07-15 06:56:52 | 00,013,888 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL [2008-09-10 20:56:44 | 00,144,960 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2008-09-10 20:37:54 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll [2009-08-24 20:19:13 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2009-08-24 20:19:13 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2009-08-24 20:19:13 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml [2009-08-24 20:19:13 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2009-08-24 20:19:13 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2009-08-24 20:19:13 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2009-08-24 20:19:13 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: (742 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Programy\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [OODefragTray] C:\WINDOWS\System32\oodtray.exe (O&O Software GmbH) O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) O4 - HKCU..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe () O4 - HKCU..\Run: [Prec] C:\Program Files\Prec\PrecStarter.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Programy\Office\OFFICE11\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\PROGRA~1\Programy\Office\Office12\EXCEL.EXE File not found O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1 212.87.224.2 212.87.224.66 O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp - No CLSID value found O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp - No CLSID value found O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-11-28 15:42:30 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009-10-16 06:47:35 | 00,000,055 | RHS- | M] () - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-10-16 06:47:37 | 00,000,055 | RHS- | M] () - D:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-10-16 06:47:38 | 00,000,055 | RHS- | M] () - E:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-10-16 06:47:39 | 00,000,055 | RHS- | M] () - F:\autorun.inf -- [ NTFS ] O33 - MountPoints2\{2eaa00b0-b3fb-11de-a1ca-001d7d524319}\Shell\AutoRun\command - "" = I:\w9uxx92.exe -- File not found O33 - MountPoints2\{2eaa00b0-b3fb-11de-a1ca-001d7d524319}\Shell\open\Command - "" = I:\w9uxx92.exe -- File not found O33 - MountPoints2\{30176656-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe O33 - MountPoints2\{30176656-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe O33 - MountPoints2\{30176658-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe O33 - MountPoints2\{30176658-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe O33 - MountPoints2\{30176659-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe O33 - MountPoints2\{30176659-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe O33 - MountPoints2\{3017665a-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe O33 - MountPoints2\{3017665a-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe O33 - MountPoints2\{69e1f13d-b97f-11de-a1d2-001d7d524319}\Shell\AutoRun\command - "" = I:\s3ek.exe -- File not found O33 - MountPoints2\{69e1f13d-b97f-11de-a1d2-001d7d524319}\Shell\open\Command - "" = I:\s3ek.exe -- File not found O33 - MountPoints2\{69f0ab87-eca3-11dd-8c5b-001d7d524319}\Shell\AutoRun\command - "" = autorun\autorun.exe O34 - HKLM BootExecute: (autocheck) - File not found O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation) O34 - HKLM BootExecute: (*) - File not found O34 - HKLM BootExecute: (OODBS) - C:\WINDOWS\System32\OODBS.exe (O&O Software GmbH) O35 - comfile [open] -- "%1" %* File not found O35 - exefile [open] -- "%1" %* File not found [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2009-10-08 06:26:14 | 00,000,000 | ---D | C] -- C:\Program Files\7-Zip [2009-10-07 13:50:49 | 00,000,000 | ---D | C] -- C:\Program Files\PixelView [2009-11-01 20:15:10 | 00,000,000 | ---D | C] -- C:\_OTL [2009-11-01 20:03:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Moje dokumenty\Pobieranie [2009-10-15 12:37:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Pulpit\Nowy folder [2009-10-13 19:38:31 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2009-10-13 19:38:31 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2009-10-13 19:38:31 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2009-10-07 13:51:03 | 00,229,376 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\TSCTVWDM.DLL [2009-10-07 13:51:03 | 00,070,656 | ---- | C] (Nogatech Ltd.) -- C:\WINDOWS\System32\NUVISION.AX [2009-10-07 13:48:43 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NdisIP.sys [2009-10-07 13:48:43 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys [2009-10-07 13:48:43 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\MSTEE.sys [2009-10-07 13:48:43 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys [2009-10-07 13:48:42 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax [2009-10-07 13:48:42 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax [2009-10-07 13:48:42 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\StreamIP.sys [2009-10-07 13:48:42 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys [2009-10-07 13:48:41 | 00,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\WSTCODEC.SYS [2009-10-07 13:48:41 | 00,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys [2009-10-07 13:48:41 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\SLIP.sys [2009-10-07 13:48:41 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys [2009-10-07 13:48:40 | 00,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NABTSFEC.sys [2009-10-07 13:48:40 | 00,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys [2009-10-07 13:48:39 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\CCDECODE.sys [2009-10-07 13:48:39 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys [2009-10-07 13:48:37 | 00,012,568 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTXBAR.SYS [2009-10-07 13:48:26 | 00,021,288 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTTUNER.SYS [2009-10-07 13:47:59 | 00,291,768 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BT848.SYS [2009-10-07 13:47:58 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax [2009-10-07 13:47:58 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax [2009-10-07 13:47:58 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2009-10-07 13:47:58 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vidcap.ax [2009-10-07 13:47:57 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax [2009-10-07 13:47:57 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax [2009-10-07 13:47:56 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll [2009-10-07 13:47:56 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll [2009-10-07 13:47:54 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax [2009-10-07 13:47:54 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax [2009-10-06 13:49:43 | 00,000,000 | ---D | C] -- C:\cosmosssssss [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [1 C:\WINDOWS\System32\*.tmp files] [3 C:\WINDOWS\*.tmp files] [2009-11-01 21:40:37 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2009-11-01 21:40:35 | 00,081,496 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2009-11-01 21:40:34 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2009-11-01 21:40:31 | 00,521,016 | ---- | M] () -- C:\WINDOWS\System32\oodbs.lor [2009-11-01 21:22:19 | 00,001,130 | ---- | M] () -- C:\WINDOWS\tsctv.ini [2009-11-01 21:22:19 | 00,000,140 | ---- | M] () -- C:\WINDOWS\IFOLDER.INI [2009-11-01 21:22:15 | 00,000,240 | ---- | M] () -- C:\WINDOWS\TSCTNDBG.INI [2009-11-01 21:21:26 | 00,016,065 | ---- | M] () -- C:\WINDOWS\Tsctvfm.ini [2009-11-01 20:40:32 | 00,000,621 | ---- | M] () -- C:\WINDOWS\hpbafd.ini [2009-11-01 17:31:38 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2009-10-30 17:09:15 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2009-10-16 06:52:46 | 00,011,274 | ---- | M] () -- C:\Documents and Settings\Marcin\Moje dokumenty\2009-10-16.hrf [2009-10-16 06:47:35 | 00,000,055 | RHS- | M] () -- C:\autorun.inf [2009-10-15 20:32:19 | 00,203,264 | ---- | M] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-10-13 19:29:11 | 00,130,560 | ---- | M] () -- C:\CAPTURE.AVI [2009-10-08 06:50:10 | 61,378,9696 | ---- | M] () -- C:\Documents and Settings\Marcin\Moje dokumenty\TempImage.nrg [2009-10-07 13:53:15 | 00,009,858 | ---- | M] () -- C:\WINDOWS\TSCTVDIV.INI [2009-10-07 13:53:15 | 00,000,804 | ---- | M] () -- C:\WINDOWS\TSCTVDIV.BIN [2009-10-07 13:53:15 | 00,000,037 | ---- | M] () -- C:\WINDOWS\GRAPPLER.INI [2009-10-07 13:53:15 | 00,000,025 | ---- | M] () -- C:\WINDOWS\TSCFM.INI [2009-10-07 13:51:04 | 00,000,688 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\Telewizja.lnk [2009-10-05 20:22:18 | 00,002,193 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk [color=#E56717]========== Files - No Company Name ==========[/color] [2009-10-17 10:48:58 | 00,000,240 | ---- | C] () -- C:\WINDOWS\TSCTNDBG.INI [2009-10-16 06:52:46 | 00,011,274 | ---- | C] () -- C:\Documents and Settings\Marcin\Moje dokumenty\2009-10-16.hrf [2009-10-15 16:39:46 | 00,000,055 | RHS- | C] () -- C:\autorun.inf [2009-10-08 06:50:10 | 61,378,9696 | ---- | C] () -- C:\Documents and Settings\Marcin\Moje dokumenty\TempImage.nrg [2009-10-07 14:13:48 | 00,000,688 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\Telewizja.lnk [2009-10-07 14:00:15 | 00,130,560 | ---- | C] () -- C:\CAPTURE.AVI [2009-10-07 13:53:15 | 00,009,858 | ---- | C] () -- C:\WINDOWS\TSCTVDIV.INI [2009-10-07 13:53:15 | 00,000,804 | ---- | C] () -- C:\WINDOWS\TSCTVDIV.BIN [2009-10-07 13:53:15 | 00,000,037 | ---- | C] () -- C:\WINDOWS\GRAPPLER.INI [2009-10-07 13:53:15 | 00,000,025 | ---- | C] () -- C:\WINDOWS\TSCFM.INI [2009-10-07 13:52:11 | 00,000,140 | ---- | C] () -- C:\WINDOWS\IFOLDER.INI [2009-10-07 13:50:50 | 00,018,455 | ---- | C] () -- C:\WINDOWS\TSCTVMSG.INI [2009-10-07 13:50:50 | 00,016,065 | ---- | C] () -- C:\WINDOWS\Tsctvfm.ini [2009-10-07 13:50:50 | 00,004,128 | ---- | C] () -- C:\WINDOWS\Tvcard.ini [2009-10-07 13:50:29 | 00,001,130 | ---- | C] () -- C:\WINDOWS\tsctv.ini [2009-08-04 18:39:16 | 00,000,166 | ---- | C] () -- C:\Documents and Settings\Marcin\Dane aplikacji\default.rss [2009-08-01 16:12:47 | 00,000,029 | ---- | C] () -- C:\WINDOWS\Irremote.ini [2009-07-06 20:34:21 | 00,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll [2009-02-12 21:08:04 | 00,000,621 | ---- | C] () -- C:\WINDOWS\hpbafd.ini [2009-02-12 18:57:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\HPMProp.INI [2009-02-05 10:50:09 | 00,000,000 | ---- | C] () -- C:\WINDOWS\OODCNT.INI [2009-01-14 16:33:08 | 00,064,512 | ---- | C] () -- C:\WINDOWS\System32\drivers\SENTINEL.SYS [2009-01-14 16:33:08 | 00,042,496 | ---- | C] () -- C:\WINDOWS\System32\SNTI386.DLL [2009-01-14 16:33:08 | 00,017,408 | ---- | C] () -- C:\WINDOWS\System32\RNBOVDD.DLL [2008-12-03 20:51:31 | 00,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008-12-02 20:14:34 | 00,138,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2008-12-02 19:41:40 | 00,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2008-12-01 21:08:03 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2008-12-01 21:08:02 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2008-12-01 21:08:00 | 00,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2008-12-01 21:08:00 | 00,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2008-12-01 21:07:59 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008-12-01 21:07:57 | 00,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2008-12-01 21:07:57 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2008-12-01 20:34:27 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2008-12-01 20:10:24 | 00,000,131 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2008-11-28 23:28:33 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini [2008-11-28 22:48:10 | 00,203,264 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-11-28 15:53:47 | 01,576,790 | -H-- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\IconCache.db [2008-11-28 15:47:56 | 00,102,520 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2008-11-28 15:46:20 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Marcin\Dane aplikacji\desktop.ini [2006-10-31 07:35:00 | 01,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2006-10-31 07:35:00 | 01,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2006-10-31 07:35:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2006-10-31 07:35:00 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2006-10-31 07:35:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2006-10-31 07:35:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2006-10-31 07:35:00 | 00,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [2004-08-03 23:44:00 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2004-07-17 10:36:38 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2001-07-22 01:16:20 | 00,000,552 | ---- | C] () -- C:\WINDOWS\win.ini [2001-07-22 01:15:52 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini < End of report > [/log]
Psycholandia komentarz 19 października 2009 komentarz 19 października 2009 W okienko OTL wklej poniższy skrypt i klik na Run Fix: [code]:Processes explorer.exe :OTL O4 - HKCU..\Run: [Prec] C:\Program Files\Prec\PrecStarter.exe File not found O32 - AutoRun File - [2009-10-16 06:47:35 | 00,000,055 | RHS- | M] () - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-10-16 06:47:37 | 00,000,055 | RHS- | M] () - D:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-10-16 06:47:38 | 00,000,055 | RHS- | M] () - E:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-10-16 06:47:39 | 00,000,055 | RHS- | M] () - F:\autorun.inf -- [ NTFS ] O33 - MountPoints2\{30176656-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe O33 - MountPoints2\{30176656-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe O33 - MountPoints2\{30176658-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe O33 - MountPoints2\{30176658-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe O33 - MountPoints2\{30176659-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe O33 - MountPoints2\{30176659-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe O33 - MountPoints2\{3017665a-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe O33 - MountPoints2\{3017665a-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe O33 - MountPoints2\{69f0ab87-eca3-11dd-8c5b-001d7d524319}\Shell\AutoRun\command - "" = autorun\autorun.exe :Files C:\autorun.inf D:\autorun.inf E:\autorun.inf F:\autorun.inf :Commands [emptytemp] [start explorer] [Reboot][/code] Otwórz notatnik tekstowy i wklej do niego poniższy tekst: [code]Windows Registry Editor Version 5.00 [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2] [/code] Zapisz jako->Wybierz [b]Wszystkie pliki[/b]->wpisz [b]Fix.reg[/b]->Następnie kliknij na zapisany plik i uruchom komputer ponownie.
blackhero komentarz 19 października 2009 Autor komentarz 19 października 2009 wkleiłem to do programu wcisnąłem Run fix ale wyskoczył błąd i nic się nie działo wcisnąłem jeszcze raz run fix wyskoczył komunikat że musi zrestartować komputer wcisnąłem ok komp wystartował od nowa i naprawiło się otwieranie partycji gorzej z plikami ukrytymi nadal się sama obcja zmienia a co z tym plikiem Fix.reg dodać go do rejestru i gdzie go wkleić (zapisać)?
Psycholandia komentarz 19 października 2009 komentarz 19 października 2009 fix.reg dodaj tylko do rejestru i skasuj plik wejdź w Dysk C, narzędzia, opcje folderów, widok i zaznacz: nie pokazuj ukrytych plików i folderów uruchom OTL i kliknij na CleanUP
blackhero komentarz 19 października 2009 Autor komentarz 19 października 2009 zrobiłem uruchomił się od nowa
Psycholandia komentarz 19 października 2009 komentarz 19 października 2009 Tak miało być. Problemu już nie masz, prawda?
blackhero komentarz 19 października 2009 Autor komentarz 19 października 2009 dyski się otwierają czyli jeden problem z głowy ale nadal jest problem z tymi plikami jak wezmę pokaż to się nie pokazują opcja sama się zmienia ale to już mniejszy problem osobiście mi to nie przeszkadza
Psycholandia komentarz 19 października 2009 komentarz 19 października 2009 Nie rozumiem o czym mówisz, możesz opisać jaśniej? Może jakiś screen z przedstawionym problemem?
blackhero komentarz 19 października 2009 Autor komentarz 19 października 2009 (edytowane) w opcje folderów -> widok masz do wyboru 1 nie pokazuj ukrytych plików i folderów 2 pokaż ukryte pliki i foldery zaznaczam opcje 2 wciskam zastosuj i klikam ok okno znika ukryte pliki nie pokazują się wracam do opcji folderów-> widok i jest zaznaczona opcja 1 o tak w kółko jednym zadaniem nie mogę wyświetlić ukrytych plików.
Psycholandia komentarz 19 października 2009 komentarz 19 października 2009 czyli mimo przestawiania na [b]nie pokazuj ukrytych plików i folderów [/b] wraca/przestawia się sama opcja [b]pokaż ukryte pliki i foldery [/b]?
blackhero komentarz 19 października 2009 Autor komentarz 19 października 2009 odwrotnie mimo przestawiania na [b]pokaż ukryte pliki i foldery[/b] wraca/przestawia się sama opcja na [b]nie pokazuj ukrytych plików i folderów[/b]nie da się wyświetlić ukrytych plików.
Psycholandia komentarz 19 października 2009 komentarz 19 października 2009 http://www.sendspace.com/file/9o6he6 --> pobierz, klik 2 razy, wprowadź do rejestru zaznacz tam też:[b] "Pokaż ukryte pliki i foldery"[/b] i odznacz [b]"Ukryj chronione pliki systemu operacyjnego"[/b] i reset, zobacz czy zadziała
blackhero komentarz 19 października 2009 Autor komentarz 19 października 2009 po włączeni się komputera pliki ukryte były widoczne wszedłem do opcji folderów widok i żadna z opcji nie była zaznaczona, wziąłem nacisnąłem na pokaż ukryte pliki zastosuj i pliki ukryte znikły problem się powtarza
Psycholandia komentarz 19 października 2009 komentarz 19 października 2009 Daj jeszcze raz nowego loga z OTL.
blackhero komentarz 19 października 2009 Autor komentarz 19 października 2009 [log]OTL logfile created on: 2009-11-02 01:08:46 - Run 3 OTL by OldTimer - Version 3.0.21.0 Folder = C:\Documents and Settings\Marcin\Pulpit\OTL Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,94 Gb Total Physical Memory | 1,45 Gb Available Physical Memory | 74,82% Memory free 3,79 Gb Paging File | 3,39 Gb Available in Paging File | 89,52% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 48,83 Gb Total Space | 24,21 Gb Free Space | 49,58% Space Free | Partition Type: NTFS Drive D: | 58,59 Gb Total Space | 47,76 Gb Free Space | 81,50% Space Free | Partition Type: NTFS Drive E: | 62,50 Gb Total Space | 10,15 Gb Free Space | 16,25% Space Free | Partition Type: NTFS Drive F: | 62,95 Gb Total Space | 39,69 Gb Free Space | 63,04% Space Free | Partition Type: NTFS G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: BOMBEL Current User Name: Marcin Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2009-11-02 01:07:00 | 00,521,216 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Marcin\Pulpit\OTL\OTL.exe PRC - [2009-08-24 21:23:38 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-08-14 07:08:20 | 18,702,336 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE PRC - [2009-07-25 04:23:12 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe PRC - [2009-07-25 04:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2008-11-26 18:18:51 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe PRC - [2008-11-26 18:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe PRC - [2008-11-26 18:16:23 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe PRC - [2008-11-26 18:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe PRC - [2008-11-03 11:45:46 | 01,332,480 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodag.exe PRC - [2008-11-03 11:45:04 | 02,540,800 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodtray.exe PRC - [2006-10-31 07:35:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe PRC - [2006-10-27 00:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe PRC - [2005-01-28 01:36:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe PRC - [2004-08-03 23:44:30 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\wmiprvse.exe PRC - [2004-08-03 23:44:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE PRC - [2003-07-05 07:23:52 | 00,049,214 | ---- | M] (Dassault Systemes) -- C:\Program Files\Catia\B12\intel_a\code\bin\CATSysDemon.exe [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found -- -- (Nero BackItUp Scheduler 4.0 [Auto | Stopped]) SRV - [2009-08-15 16:26:15 | 00,077,944 | ---- | M] (Autodesk) -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service [On_Demand | Stopped]) SRV - [2009-07-25 04:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running]) SRV - [2008-11-26 18:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running]) SRV - [2008-11-26 18:16:23 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running]) SRV - [2008-11-26 18:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running]) SRV - [2008-11-03 11:45:46 | 01,332,480 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodag.exe -- (O&O Defrag [Auto | Running]) SRV - [2008-07-18 13:13:20 | 00,053,760 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZipm12.dll -- (Pml Driver HPZ12 [Auto | Running]) SRV - [2008-07-18 13:13:20 | 00,044,032 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZinw12.dll -- (Net Driver HPZ12 [Auto | Running]) SRV - [2007-10-24 01:47:40 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) SRV - [2007-10-24 01:47:22 | 00,033,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped]) SRV - [2007-10-11 09:55:14 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped]) SRV - [2007-10-11 09:55:10 | 00,864,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped]) SRV - [2007-10-09 12:58:12 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped]) SRV - [2007-02-06 17:32:06 | 00,266,240 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService [On_Demand | Stopped]) SRV - [2007-01-15 17:14:38 | 00,774,144 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService [On_Demand | Stopped]) SRV - [2006-10-31 07:35:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running]) SRV - [2006-10-27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped]) SRV - [2006-10-26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped]) SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped]) SRV - [2005-01-28 01:36:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe -- (UMWdf [Auto | Running]) SRV - [2004-08-03 23:44:08 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running]) SRV - [2003-07-05 07:23:52 | 00,049,214 | ---- | M] (Dassault Systemes) -- C:\Program Files\Catia\B12\intel_a\code\bin\CATSysDemon.exe -- (BBDemon [Auto | Running]) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2009-08-18 10:32:00 | 05,884,416 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Running]) DRV - [2009-08-15 16:18:46 | 00,721,904 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running]) DRV - [2008-11-30 00:22:56 | 00,015,600 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\gdrv.sys -- (gdrv [On_Demand | Stopped]) DRV - [2008-11-26 18:18:18 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2 [Auto | Running]) DRV - [2008-11-26 18:17:36 | 00,111,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP [System | Running]) DRV - [2008-11-26 18:17:25 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\DRIVERS\aswFsBlk.sys -- (aswFsBlk [Auto | Running]) DRV - [2008-11-26 18:16:38 | 00,050,864 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi [System | Running]) DRV - [2008-11-26 18:16:29 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr [On_Demand | Running]) DRV - [2008-11-26 18:15:35 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4 [System | Running]) DRV - [2008-08-05 13:10:12 | 01,684,736 | ---- | M] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys -- (Ambfilt [On_Demand | Stopped]) DRV - [2007-03-08 00:51:00 | 00,043,528 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running]) DRV - [2006-11-27 16:33:54 | 00,019,968 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nvnetbus.sys -- (nvnetbus [On_Demand | Running]) DRV - [2006-11-27 16:33:50 | 00,058,368 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\NVENETFD.sys -- (NVENETFD [On_Demand | Running]) DRV - [2006-10-31 07:35:00 | 03,964,256 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running]) DRV - [2006-10-18 16:31:38 | 00,105,472 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata [Boot | Running]) DRV - [2006-06-18 23:51:32 | 00,043,520 | ---- | M] (Advanced Micro Devices) -- C:\WINDOWS\System32\DRIVERS\AmdK8.sys -- (AmdK8 [System | Running]) DRV - [2006-01-04 08:41:48 | 01,389,056 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys -- (Monfilt [On_Demand | Stopped]) DRV - [2005-01-07 16:07:18 | 00,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running]) DRV - [2004-07-17 10:36:38 | 00,027,440 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped]) DRV - [2003-12-08 10:53:48 | 00,053,600 | ---- | M] (THOMSON) -- C:\WINDOWS\System32\DRIVERS\alcan5wn.sys -- (alcan5wn [On_Demand | Stopped]) DRV - [2003-12-08 10:53:46 | 00,070,688 | ---- | M] (THOMSON) -- C:\WINDOWS\System32\DRIVERS\alcaudsl.sys -- (alcaudsl [On_Demand | Stopped]) DRV - [2001-08-18 00:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running]) DRV - [2001-07-03 02:02:24 | 00,021,288 | ---- | M] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTTUNER.SYS -- (BTTUNER [Auto | Running]) DRV - [2001-07-03 02:02:22 | 00,012,568 | ---- | M] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTXBAR.SYS -- (BTXBAR [Auto | Running]) DRV - [2001-07-03 02:02:20 | 00,291,768 | ---- | M] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BT848.SYS -- (BT848 [Auto | Running]) DRV - [1998-03-31 06:34:00 | 00,064,512 | ---- | M] () -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel [Auto | Running]) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm IE - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\NEOSTR~1\SEARCH~1.DLL File not found IE - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\S-1-5-21-1757981266-1336601894-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.selectedEngine: "DAEMON Search" FF - prefs.js..browser.startup.homepage: "http://pl.start2.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:pl:official" FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.0.8.0552 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}:6.0.10 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.0.6 FF - prefs.js..extensions.enabledItems: zrzuta.eu@gmail.com:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15 FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3 FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2008-12-02 00:04:22 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-10-01 11:56:24 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-10-01 11:56:24 | 00,000,000 | ---D | M] [2009-10-01 11:56:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Extensions [2009-10-01 11:56:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2009-11-01 20:11:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions [2009-10-01 11:57:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8} [2009-08-15 16:20:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions\DTToolbar@toolbarnet.com [2009-09-22 21:19:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions\zrzuta.eu@gmail.com [2009-08-15 16:20:20 | 00,002,395 | ---- | M] () -- C:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\FireFox\Profiles\4g8rq6xi.default\searchplugins\daemon-search.xml [2009-11-01 20:11:04 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions [2009-10-01 11:56:24 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2008-12-02 00:04:30 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} [2009-01-19 22:41:34 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [2009-10-13 19:38:32 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} [2009-08-24 21:23:38 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll [2009-08-24 21:23:38 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll [2007-04-10 16:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2009-07-25 04:23:01 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll [2009-08-24 21:23:38 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll [2006-10-26 20:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2003-07-15 06:56:52 | 00,013,888 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL [2008-09-10 20:56:44 | 00,144,960 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2008-09-10 20:37:54 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll [2009-08-24 20:19:13 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2009-08-24 20:19:13 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2009-08-24 20:19:13 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml [2009-08-24 20:19:13 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2009-08-24 20:19:13 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2009-08-24 20:19:13 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2009-08-24 20:19:13 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: (742 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Programy\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [OODefragTray] C:\WINDOWS\System32\oodtray.exe (O&O Software GmbH) O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) O4 - HKU\S-1-5-21-1757981266-1336601894-839522115-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Programy\Office\OFFICE11\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\PROGRA~1\Programy\Office\Office12\EXCEL.EXE File not found O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1 212.87.224.2 212.87.224.66 O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp - No CLSID value found O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp - No CLSID value found O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-11-28 15:42:30 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{2eaa00b0-b3fb-11de-a1ca-001d7d524319}\Shell\AutoRun\command - "" = I:\w9uxx92.exe -- File not found O33 - MountPoints2\{2eaa00b0-b3fb-11de-a1ca-001d7d524319}\Shell\open\Command - "" = I:\w9uxx92.exe -- File not found O33 - MountPoints2\{69e1f13d-b97f-11de-a1d2-001d7d524319}\Shell\AutoRun\command - "" = I:\s3ek.exe -- File not found O33 - MountPoints2\{69e1f13d-b97f-11de-a1d2-001d7d524319}\Shell\open\Command - "" = I:\s3ek.exe -- File not found O34 - HKLM BootExecute: (autocheck) - File not found O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation) O34 - HKLM BootExecute: (*) - File not found O34 - HKLM BootExecute: (OODBS) - C:\WINDOWS\System32\OODBS.exe (O&O Software GmbH) O35 - comfile [open] -- "%1" %* File not found O35 - exefile [open] -- "%1" %* File not found [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2009-10-08 06:26:14 | 00,000,000 | ---D | C] -- C:\Program Files\7-Zip [2009-10-07 13:50:49 | 00,000,000 | ---D | C] -- C:\Program Files\PixelView [2009-11-01 23:53:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Pulpit\OTL [2009-11-01 20:03:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Moje dokumenty\Pobieranie [2009-10-15 12:37:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Pulpit\Nowy folder [2009-10-07 13:51:03 | 00,229,376 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\TSCTVWDM.DLL [2009-10-07 13:51:03 | 00,070,656 | ---- | C] (Nogatech Ltd.) -- C:\WINDOWS\System32\NUVISION.AX [2009-10-07 13:48:43 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NdisIP.sys [2009-10-07 13:48:43 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys [2009-10-07 13:48:43 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\MSTEE.sys [2009-10-07 13:48:43 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys [2009-10-07 13:48:42 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax [2009-10-07 13:48:42 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax [2009-10-07 13:48:42 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\StreamIP.sys [2009-10-07 13:48:42 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys [2009-10-07 13:48:41 | 00,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\WSTCODEC.SYS [2009-10-07 13:48:41 | 00,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys [2009-10-07 13:48:41 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\SLIP.sys [2009-10-07 13:48:41 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys [2009-10-07 13:48:40 | 00,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NABTSFEC.sys [2009-10-07 13:48:40 | 00,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys [2009-10-07 13:48:39 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\CCDECODE.sys [2009-10-07 13:48:39 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys [2009-10-07 13:48:37 | 00,012,568 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTXBAR.SYS [2009-10-07 13:48:26 | 00,021,288 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTTUNER.SYS [2009-10-07 13:47:59 | 00,291,768 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BT848.SYS [2009-10-07 13:47:58 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax [2009-10-07 13:47:58 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax [2009-10-07 13:47:58 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2009-10-07 13:47:58 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vidcap.ax [2009-10-07 13:47:57 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax [2009-10-07 13:47:57 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax [2009-10-07 13:47:56 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll [2009-10-07 13:47:56 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll [2009-10-07 13:47:54 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax [2009-10-07 13:47:54 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax [2009-10-06 13:49:43 | 00,000,000 | ---D | C] -- C:\cosmosssssss [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2009-11-02 00:58:43 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2009-11-02 00:58:42 | 00,081,496 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2009-11-02 00:58:40 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2009-11-02 00:58:38 | 00,533,786 | ---- | M] () -- C:\WINDOWS\System32\oodbs.lor [2009-11-01 23:47:08 | 00,204,800 | ---- | M] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-11-01 21:53:19 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2009-11-01 21:22:19 | 00,001,130 | ---- | M] () -- C:\WINDOWS\tsctv.ini [2009-11-01 21:22:19 | 00,000,140 | ---- | M] () -- C:\WINDOWS\IFOLDER.INI [2009-11-01 21:22:15 | 00,000,240 | ---- | M] () -- C:\WINDOWS\TSCTNDBG.INI [2009-11-01 21:21:26 | 00,016,065 | ---- | M] () -- C:\WINDOWS\Tsctvfm.ini [2009-11-01 20:40:32 | 00,000,621 | ---- | M] () -- C:\WINDOWS\hpbafd.ini [2009-11-01 17:31:38 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2009-10-16 06:52:46 | 00,011,274 | ---- | M] () -- C:\Documents and Settings\Marcin\Moje dokumenty\2009-10-16.hrf [2009-10-13 19:29:11 | 00,130,560 | ---- | M] () -- C:\CAPTURE.AVI [2009-10-08 06:50:10 | 61,378,9696 | ---- | M] () -- C:\Documents and Settings\Marcin\Moje dokumenty\TempImage.nrg [2009-10-07 13:53:15 | 00,009,858 | ---- | M] () -- C:\WINDOWS\TSCTVDIV.INI [2009-10-07 13:53:15 | 00,000,804 | ---- | M] () -- C:\WINDOWS\TSCTVDIV.BIN [2009-10-07 13:53:15 | 00,000,037 | ---- | M] () -- C:\WINDOWS\GRAPPLER.INI [2009-10-07 13:53:15 | 00,000,025 | ---- | M] () -- C:\WINDOWS\TSCFM.INI [2009-10-07 13:51:04 | 00,000,688 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\Telewizja.lnk [2009-10-05 20:22:18 | 00,002,193 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk [color=#E56717]========== Files - No Company Name ==========[/color] [2009-10-17 10:48:58 | 00,000,240 | ---- | C] () -- C:\WINDOWS\TSCTNDBG.INI [2009-10-16 06:52:46 | 00,011,274 | ---- | C] () -- C:\Documents and Settings\Marcin\Moje dokumenty\2009-10-16.hrf [2009-10-08 06:50:10 | 61,378,9696 | ---- | C] () -- C:\Documents and Settings\Marcin\Moje dokumenty\TempImage.nrg [2009-10-07 14:13:48 | 00,000,688 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\Telewizja.lnk [2009-10-07 14:00:15 | 00,130,560 | ---- | C] () -- C:\CAPTURE.AVI [2009-10-07 13:53:15 | 00,009,858 | ---- | C] () -- C:\WINDOWS\TSCTVDIV.INI [2009-10-07 13:53:15 | 00,000,804 | ---- | C] () -- C:\WINDOWS\TSCTVDIV.BIN [2009-10-07 13:53:15 | 00,000,037 | ---- | C] () -- C:\WINDOWS\GRAPPLER.INI [2009-10-07 13:53:15 | 00,000,025 | ---- | C] () -- C:\WINDOWS\TSCFM.INI [2009-10-07 13:52:11 | 00,000,140 | ---- | C] () -- C:\WINDOWS\IFOLDER.INI [2009-10-07 13:50:50 | 00,018,455 | ---- | C] () -- C:\WINDOWS\TSCTVMSG.INI [2009-10-07 13:50:50 | 00,016,065 | ---- | C] () -- C:\WINDOWS\Tsctvfm.ini [2009-10-07 13:50:50 | 00,004,128 | ---- | C] () -- C:\WINDOWS\Tvcard.ini [2009-10-07 13:50:29 | 00,001,130 | ---- | C] () -- C:\WINDOWS\tsctv.ini [2009-08-04 18:39:16 | 00,000,166 | ---- | C] () -- C:\Documents and Settings\Marcin\Dane aplikacji\default.rss [2009-08-01 16:12:47 | 00,000,029 | ---- | C] () -- C:\WINDOWS\Irremote.ini [2009-07-06 20:34:21 | 00,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll [2009-02-12 21:08:04 | 00,000,621 | ---- | C] () -- C:\WINDOWS\hpbafd.ini [2009-02-12 18:57:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\HPMProp.INI [2009-02-05 10:50:09 | 00,000,000 | ---- | C] () -- C:\WINDOWS\OODCNT.INI [2009-01-14 16:33:08 | 00,064,512 | ---- | C] () -- C:\WINDOWS\System32\drivers\SENTINEL.SYS [2009-01-14 16:33:08 | 00,042,496 | ---- | C] () -- C:\WINDOWS\System32\SNTI386.DLL [2009-01-14 16:33:08 | 00,017,408 | ---- | C] () -- C:\WINDOWS\System32\RNBOVDD.DLL [2008-12-03 20:51:31 | 00,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008-12-02 20:14:34 | 00,138,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2008-12-02 19:41:40 | 00,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2008-12-01 21:08:03 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2008-12-01 21:08:02 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2008-12-01 21:08:00 | 00,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2008-12-01 21:08:00 | 00,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2008-12-01 21:07:59 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008-12-01 21:07:57 | 00,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2008-12-01 21:07:57 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2008-12-01 20:34:27 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2008-12-01 20:10:24 | 00,000,131 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2008-11-28 23:28:33 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini [2008-11-28 22:48:10 | 00,204,800 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-11-28 15:53:47 | 01,576,790 | -H-- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\IconCache.db [2008-11-28 15:47:56 | 00,102,520 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2008-11-28 15:46:20 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Marcin\Dane aplikacji\desktop.ini [2006-10-31 07:35:00 | 01,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2006-10-31 07:35:00 | 01,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2006-10-31 07:35:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2006-10-31 07:35:00 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2006-10-31 07:35:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2006-10-31 07:35:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2006-10-31 07:35:00 | 00,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [2004-08-03 23:44:00 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2004-07-17 10:36:38 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2001-07-22 01:16:20 | 00,000,552 | ---- | C] () -- C:\WINDOWS\win.ini [2001-07-22 01:15:52 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini [color=#E56717]========== LOP Check ==========[/color] [2008-11-28 23:28:33 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji [2009-10-15 12:42:41 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji [2009-08-04 21:26:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ACD Systems [2008-12-01 20:18:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk [2009-03-04 09:43:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2009-03-10 00:11:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DassaultSystemes [2009-10-01 09:03:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2009-02-12 19:18:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters [2008-11-28 23:28:33 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Default User\Dane aplikacji [2008-11-28 15:45:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji [2009-10-15 12:42:41 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji [2009-08-04 21:27:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\ACD Systems [2008-11-28 23:07:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Ahead [2009-08-15 16:23:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Autodesk [2009-03-04 09:43:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\DAEMON Tools [2009-08-15 16:21:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\DAEMON Tools Lite [2009-03-04 09:43:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\DAEMON Tools Pro [2009-03-10 00:21:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\DassaultSystemes [2009-03-04 10:07:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Desktopicon [2008-12-01 21:01:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Gadu-Gadu [2009-10-15 14:34:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\ipla [2008-12-02 20:08:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Leadertech [2008-12-09 19:59:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Mathsoft [2009-03-25 13:59:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Nowe Gadu-Gadu [2009-05-07 15:46:44 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\SecuROM [2009-05-04 14:47:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\teamspeak2 [2008-11-28 15:44:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji [2001-07-22 01:17:50 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini [2009-11-02 00:58:43 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT [color=#E56717]========== Purity Check ==========[/color] < End of report > [/log]
Psycholandia komentarz 19 października 2009 komentarz 19 października 2009 W okienko OTL wklej poniższy skrypt i klik na Run Fix: [code] :Processes explorer.exe :OTL O33 - MountPoints2\{2eaa00b0-b3fb-11de-a1ca-001d7d524319}\Shell\AutoRun\command - "" = I:\w9uxx92.exe -- File not found O33 - MountPoints2\{2eaa00b0-b3fb-11de-a1ca-001d7d524319}\Shell\open\Command - "" = I:\w9uxx92.exe -- File not found O33 - MountPoints2\{69e1f13d-b97f-11de-a1d2-001d7d524319}\Shell\AutoRun\command - "" = I:\s3ek.exe -- File not found O33 - MountPoints2\{69e1f13d-b97f-11de-a1d2-001d7d524319}\Shell\open\Command - "" = I:\s3ek.exe -- File not found :Commands [emptytemp] [start explorer] [Reboot][/code] Otwórz notatnik tekstowy i wklej do niego poniższy tekst: [code]Windows Registry Editor Version 5.00 [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2] [/code] Zapisz jako->Wybierz [b]Wszystkie pliki[/b]->wpisz [b]Fix.reg[/b]->Następnie kliknij na zapisany plik i uruchom komputer ponownie. Wykonaj: http://support.microsoft.com/kb/310405/pl Przeskanuj komputer tym: [url="http://www.programosy.pl/program,malwarebytes-anti-malware.html"]Malware[/url] usuń wszystko co znajdzie i daj loga po kasowaniu (loga z Malware) Uruchom OTL i CleanUP.
blackhero komentarz 19 października 2009 Autor komentarz 19 października 2009 przywracanie systemu zrobić przed skanowaniem[log]Malwarebytes' Anti-Malware 1.41 Wersja bazy definicji: 2991 Windows 5.1.2600 Dodatek Service Pack 2 2009-11-02 01:47:48 mbam-log-2009-11-02 (01-47-48).txt Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|F:\|) Przeskanowane obiekty: 207068 Upłynęło: 21 minute(s), 50 second(s) Zainfekowane procesy w pamięci: 0 Zainfekowane moduły pamięci: 0 Zainfekowane klucze rejestru: 0 Zainfekowane wartości rejestru: 0 Zainfekowane pliki rejestru: 4 Zainfekowane foldery: 0 Zainfekowane pliki: 1 Zainfekowane procesy w pamięci: (Nie wykryto groźnych plików) Zainfekowane moduły pamięci: (Nie wykryto groźnych plików) Zainfekowane klucze rejestru: (Nie wykryto groźnych plików) Zainfekowane wartości rejestru: (Nie wykryto groźnych plików) Zainfekowane pliki rejestru: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL\CheckedValue (Hijack.System.Hidden) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully. Zainfekowane foldery: (Nie wykryto groźnych plików) Zainfekowane pliki: C:\Documents and Settings\Marcin\Dane aplikacji\Desktopicon\eBayShortcuts.exe (Adware.ADON) -> Quarantined and deleted successfully. [/log]bardzo serdecznie dziękuje ci za pomoc nie wiem jak ja ci się odwdzięczę wszystko jest ok
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.