x-kom hosting

[Rozwiązany] Otwieranie partycji dysku

blackhero
utworzono
utworzono

Witam miałem konia trojańskiego po usunięciu którego straciłem jakieś pliki potrzebne do otwierania partycji teraz gdy klikam na jedną z nich wyskakuje mi okno z opisem "otwieranie za pomocą" i lista programów naciskam Internet Explorer wciskam ok i się otwiera dopiero. jak pozbyć się problemu bez formatowania partycji dysku?
Z góry dziękuje za pomoc pozdrawiam

Psycholandia
komentarz
komentarz

Daj loga z OTL: http://www.forumpc.pl/index.php?showtopic=104338 prawdopodobnie to infekcja.

blackhero
komentarz
komentarz (edytowane)

[log] OTL logfile created on: 2009-11-01 20:18:02 - Run 1
OTL by OldTimer - Version 3.0.21.0 Folder = C:\Documents and Settings\Marcin\Moje dokumenty\Pobieranie
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,94 Gb Total Physical Memory | 1,34 Gb Available Physical Memory | 69,41% Memory free
3,79 Gb Paging File | 3,31 Gb Available in Paging File | 87,54% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 17,72 Gb Free Space | 36,30% Space Free | Partition Type: NTFS
Drive D: | 58,59 Gb Total Space | 47,76 Gb Free Space | 81,50% Space Free | Partition Type: NTFS
Drive E: | 62,50 Gb Total Space | 10,15 Gb Free Space | 16,25% Space Free | Partition Type: NTFS
Drive F: | 62,95 Gb Total Space | 39,69 Gb Free Space | 63,04% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name:
Current User Name:
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off [/log]

o to ci chodziło ?

krychu
komentarz
komentarz

Otwórz dysk za pomocą opcji Eksportuj (prawym na dysk) jak się wbijesz daj w opcjach folderu żeby pokazało ukryte pliki ale także odznacz "ukryj chronione pliki systemu operacyjnego" potem daj OK. I jak na dysku zobaczysz plik Autorun to go wywal i uruchom ponownie kompa i powinno pomóc.

Psycholandia
komentarz
komentarz

[quote]o to ci chodziło ? [/quote]
O to, ale daj całego loga w tagi [b][log] [/ log][/b]

blackhero
komentarz
komentarz

jest kolejny problem jak biorę pokaż pliki ukryte i wciskam zastosuj zamykam okno i nic się nie pokazuje wracam do opcji folderów i widzę że wybrana opcja to nie pokazuj ukrytych plików nie mogę zmienić tej opcji cały czas wraca do opcji nie pokazuj :)

Psycholandia
komentarz
komentarz

Daj loga z OTL: http://www.forumpc.pl/index.php?showtopic=104338 na 95% masz zawirusowany komputer :)

blackhero
komentarz
komentarz

[log]OTL logfile created on: 2009-11-01 21:43:14 - Run 2
OTL by OldTimer - Version 3.0.21.0 Folder = C:\Documents and Settings\Marcin\Moje dokumenty\Pobieranie
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,94 Gb Total Physical Memory | 1,43 Gb Available Physical Memory | 73,69% Memory free
3,79 Gb Paging File | 3,41 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 17,69 Gb Free Space | 36,23% Space Free | Partition Type: NTFS
Drive D: | 58,59 Gb Total Space | 47,76 Gb Free Space | 81,50% Space Free | Partition Type: NTFS
Drive E: | 62,50 Gb Total Space | 10,15 Gb Free Space | 16,25% Space Free | Partition Type: NTFS
Drive F: | 62,95 Gb Total Space | 39,69 Gb Free Space | 63,04% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: BOMBEL
Current User Name: Marcin
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2009-11-01 21:43:05 | 00,521,216 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Marcin\Moje dokumenty\Pobieranie\OTL.exe
PRC - [2009-08-24 21:23:38 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-08-14 07:08:20 | 18,702,336 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2009-07-25 04:23:12 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009-07-25 04:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2008-11-26 18:18:51 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2008-11-26 18:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2008-11-26 18:16:23 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2008-11-26 18:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2008-11-24 20:44:18 | 00,869,888 | ---- | M] () -- C:\Program Files\ALLPlayer\ALLUpdate.exe
PRC - [2008-11-03 11:45:46 | 01,332,480 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodag.exe
PRC - [2008-11-03 11:45:04 | 02,540,800 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodtray.exe
PRC - [2006-10-31 07:35:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe
PRC - [2006-10-27 00:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2005-01-28 01:36:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe
PRC - [2004-08-03 23:44:30 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\wmiprvse.exe
PRC - [2004-08-03 23:44:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
PRC - [2003-07-05 07:23:52 | 00,049,214 | ---- | M] (Dassault Systemes) -- C:\Program Files\Catia\B12\intel_a\code\bin\CATSysDemon.exe

[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found -- -- (Nero BackItUp Scheduler 4.0 [Auto | Stopped])
SRV - [2009-08-15 16:26:15 | 00,077,944 | ---- | M] (Autodesk) -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service [On_Demand | Stopped])
SRV - [2009-07-25 04:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])
SRV - [2008-11-26 18:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])
SRV - [2008-11-26 18:16:23 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])
SRV - [2008-11-26 18:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])
SRV - [2008-11-03 11:45:46 | 01,332,480 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodag.exe -- (O&O Defrag [Auto | Running])
SRV - [2008-07-18 13:13:20 | 00,053,760 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZipm12.dll -- (Pml Driver HPZ12 [Auto | Running])
SRV - [2008-07-18 13:13:20 | 00,044,032 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZinw12.dll -- (Net Driver HPZ12 [Auto | Running])
SRV - [2007-10-24 01:47:40 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2007-10-24 01:47:22 | 00,033,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2007-10-11 09:55:14 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2007-10-11 09:55:10 | 00,864,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2007-10-09 12:58:12 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2007-02-06 17:32:06 | 00,266,240 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService [On_Demand | Stopped])
SRV - [2007-01-15 17:14:38 | 00,774,144 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService [On_Demand | Stopped])
SRV - [2006-10-31 07:35:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running])
SRV - [2006-10-27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])
SRV - [2006-10-26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [2005-01-28 01:36:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe -- (UMWdf [Auto | Running])
SRV - [2004-08-03 23:44:08 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2003-07-05 07:23:52 | 00,049,214 | ---- | M] (Dassault Systemes) -- C:\Program Files\Catia\B12\intel_a\code\bin\CATSysDemon.exe -- (BBDemon [Auto | Running])

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2009-08-18 10:32:00 | 05,884,416 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2009-08-15 16:18:46 | 00,721,904 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running])
DRV - [2008-11-30 00:22:56 | 00,015,600 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\gdrv.sys -- (gdrv [On_Demand | Stopped])
DRV - [2008-11-26 18:18:18 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2 [Auto | Running])
DRV - [2008-11-26 18:17:36 | 00,111,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP [System | Running])
DRV - [2008-11-26 18:17:25 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\DRIVERS\aswFsBlk.sys -- (aswFsBlk [Auto | Running])
DRV - [2008-11-26 18:16:38 | 00,050,864 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi [System | Running])
DRV - [2008-11-26 18:16:29 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr [On_Demand | Running])
DRV - [2008-11-26 18:15:35 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4 [System | Running])
DRV - [2008-08-05 13:10:12 | 01,684,736 | ---- | M] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys -- (Ambfilt [On_Demand | Stopped])
DRV - [2007-03-08 00:51:00 | 00,043,528 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2006-11-27 16:33:54 | 00,019,968 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nvnetbus.sys -- (nvnetbus [On_Demand | Running])
DRV - [2006-11-27 16:33:50 | 00,058,368 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\NVENETFD.sys -- (NVENETFD [On_Demand | Running])
DRV - [2006-10-31 07:35:00 | 03,964,256 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])
DRV - [2006-10-18 16:31:38 | 00,105,472 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata [Boot | Running])
DRV - [2006-06-18 23:51:32 | 00,043,520 | ---- | M] (Advanced Micro Devices) -- C:\WINDOWS\System32\DRIVERS\AmdK8.sys -- (AmdK8 [System | Running])
DRV - [2006-01-04 08:41:48 | 01,389,056 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys -- (Monfilt [On_Demand | Stopped])
DRV - [2005-01-07 16:07:18 | 00,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
DRV - [2004-07-17 10:36:38 | 00,027,440 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])
DRV - [2003-12-08 10:53:48 | 00,053,600 | ---- | M] (THOMSON) -- C:\WINDOWS\System32\DRIVERS\alcan5wn.sys -- (alcan5wn [On_Demand | Stopped])
DRV - [2003-12-08 10:53:46 | 00,070,688 | ---- | M] (THOMSON) -- C:\WINDOWS\System32\DRIVERS\alcaudsl.sys -- (alcaudsl [On_Demand | Stopped])
DRV - [2001-08-18 00:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2001-07-03 02:02:24 | 00,021,288 | ---- | M] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTTUNER.SYS -- (BTTUNER [Auto | Running])
DRV - [2001-07-03 02:02:22 | 00,012,568 | ---- | M] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTXBAR.SYS -- (BTXBAR [Auto | Running])
DRV - [2001-07-03 02:02:20 | 00,291,768 | ---- | M] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BT848.SYS -- (BT848 [Auto | Running])
DRV - [1998-03-31 06:34:00 | 00,064,512 | ---- | M] () -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel [Auto | Running])

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\NEOSTR~1\SEARCH~1.DLL File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.selectedEngine: "DAEMON Search"
FF - prefs.js..browser.startup.homepage: "http://pl.start2.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:pl:official"
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.0.8.0552
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}:6.0.10
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.0.6
FF - prefs.js..extensions.enabledItems: zrzuta.eu@gmail.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3

FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2008-12-02 00:04:22 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-10-01 11:56:24 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-10-01 11:56:24 | 00,000,000 | ---D | M]

[2009-10-01 11:56:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Extensions
[2009-10-01 11:56:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009-11-01 20:11:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions
[2009-10-01 11:57:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}
[2009-08-15 16:20:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions\DTToolbar@toolbarnet.com
[2009-09-22 21:19:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions\zrzuta.eu@gmail.com
[2009-08-15 16:20:20 | 00,002,395 | ---- | M] () -- C:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\FireFox\Profiles\4g8rq6xi.default\searchplugins\daemon-search.xml
[2009-11-01 20:11:04 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009-10-01 11:56:24 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008-12-02 00:04:30 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
[2009-01-19 22:41:34 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
[2009-10-13 19:38:32 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2009-08-24 21:23:38 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009-08-24 21:23:38 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2007-04-10 16:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2009-07-25 04:23:01 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2009-08-24 21:23:38 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2006-10-26 20:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL
[2003-07-15 06:56:52 | 00,013,888 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL
[2008-09-10 20:56:44 | 00,144,960 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll
[2008-09-10 20:37:54 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll
[2009-08-24 20:19:13 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2009-08-24 20:19:13 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2009-08-24 20:19:13 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009-08-24 20:19:13 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2009-08-24 20:19:13 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2009-08-24 20:19:13 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2009-08-24 20:19:13 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (742 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Programy\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [OODefragTray] C:\WINDOWS\System32\oodtray.exe (O&O Software GmbH)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe ()
O4 - HKCU..\Run: [Prec] C:\Program Files\Prec\PrecStarter.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Programy\Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\PROGRA~1\Programy\Office\Office12\EXCEL.EXE File not found
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1 212.87.224.2 212.87.224.66
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008-11-28 15:42:30 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009-10-16 06:47:35 | 00,000,055 | RHS- | M] () - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009-10-16 06:47:37 | 00,000,055 | RHS- | M] () - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009-10-16 06:47:38 | 00,000,055 | RHS- | M] () - E:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009-10-16 06:47:39 | 00,000,055 | RHS- | M] () - F:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{2eaa00b0-b3fb-11de-a1ca-001d7d524319}\Shell\AutoRun\command - "" = I:\w9uxx92.exe -- File not found
O33 - MountPoints2\{2eaa00b0-b3fb-11de-a1ca-001d7d524319}\Shell\open\Command - "" = I:\w9uxx92.exe -- File not found
O33 - MountPoints2\{30176656-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe
O33 - MountPoints2\{30176656-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe
O33 - MountPoints2\{30176658-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe
O33 - MountPoints2\{30176658-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe
O33 - MountPoints2\{30176659-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe
O33 - MountPoints2\{30176659-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe
O33 - MountPoints2\{3017665a-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe
O33 - MountPoints2\{3017665a-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe
O33 - MountPoints2\{69e1f13d-b97f-11de-a1d2-001d7d524319}\Shell\AutoRun\command - "" = I:\s3ek.exe -- File not found
O33 - MountPoints2\{69e1f13d-b97f-11de-a1d2-001d7d524319}\Shell\open\Command - "" = I:\s3ek.exe -- File not found
O33 - MountPoints2\{69f0ab87-eca3-11dd-8c5b-001d7d524319}\Shell\AutoRun\command - "" = autorun\autorun.exe
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O34 - HKLM BootExecute: (OODBS) - C:\WINDOWS\System32\OODBS.exe (O&O Software GmbH)
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2009-10-08 06:26:14 | 00,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2009-10-07 13:50:49 | 00,000,000 | ---D | C] -- C:\Program Files\PixelView
[2009-11-01 20:15:10 | 00,000,000 | ---D | C] -- C:\_OTL
[2009-11-01 20:03:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Moje dokumenty\Pobieranie
[2009-10-15 12:37:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Pulpit\Nowy folder
[2009-10-13 19:38:31 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009-10-13 19:38:31 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009-10-13 19:38:31 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009-10-07 13:51:03 | 00,229,376 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\TSCTVWDM.DLL
[2009-10-07 13:51:03 | 00,070,656 | ---- | C] (Nogatech Ltd.) -- C:\WINDOWS\System32\NUVISION.AX
[2009-10-07 13:48:43 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NdisIP.sys
[2009-10-07 13:48:43 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2009-10-07 13:48:43 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\MSTEE.sys
[2009-10-07 13:48:43 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2009-10-07 13:48:42 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2009-10-07 13:48:42 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2009-10-07 13:48:42 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\StreamIP.sys
[2009-10-07 13:48:42 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2009-10-07 13:48:41 | 00,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\WSTCODEC.SYS
[2009-10-07 13:48:41 | 00,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2009-10-07 13:48:41 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\SLIP.sys
[2009-10-07 13:48:41 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2009-10-07 13:48:40 | 00,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NABTSFEC.sys
[2009-10-07 13:48:40 | 00,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2009-10-07 13:48:39 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\CCDECODE.sys
[2009-10-07 13:48:39 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2009-10-07 13:48:37 | 00,012,568 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTXBAR.SYS
[2009-10-07 13:48:26 | 00,021,288 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTTUNER.SYS
[2009-10-07 13:47:59 | 00,291,768 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BT848.SYS
[2009-10-07 13:47:58 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2009-10-07 13:47:58 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2009-10-07 13:47:58 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2009-10-07 13:47:58 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vidcap.ax
[2009-10-07 13:47:57 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2009-10-07 13:47:57 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2009-10-07 13:47:56 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2009-10-07 13:47:56 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2009-10-07 13:47:54 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2009-10-07 13:47:54 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2009-10-06 13:49:43 | 00,000,000 | ---D | C] -- C:\cosmosssssss

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[1 C:\WINDOWS\System32\*.tmp files]
[3 C:\WINDOWS\*.tmp files]
[2009-11-01 21:40:37 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009-11-01 21:40:35 | 00,081,496 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2009-11-01 21:40:34 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009-11-01 21:40:31 | 00,521,016 | ---- | M] () -- C:\WINDOWS\System32\oodbs.lor
[2009-11-01 21:22:19 | 00,001,130 | ---- | M] () -- C:\WINDOWS\tsctv.ini
[2009-11-01 21:22:19 | 00,000,140 | ---- | M] () -- C:\WINDOWS\IFOLDER.INI
[2009-11-01 21:22:15 | 00,000,240 | ---- | M] () -- C:\WINDOWS\TSCTNDBG.INI
[2009-11-01 21:21:26 | 00,016,065 | ---- | M] () -- C:\WINDOWS\Tsctvfm.ini
[2009-11-01 20:40:32 | 00,000,621 | ---- | M] () -- C:\WINDOWS\hpbafd.ini
[2009-11-01 17:31:38 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009-10-30 17:09:15 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009-10-16 06:52:46 | 00,011,274 | ---- | M] () -- C:\Documents and Settings\Marcin\Moje dokumenty\2009-10-16.hrf
[2009-10-16 06:47:35 | 00,000,055 | RHS- | M] () -- C:\autorun.inf
[2009-10-15 20:32:19 | 00,203,264 | ---- | M] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-10-13 19:29:11 | 00,130,560 | ---- | M] () -- C:\CAPTURE.AVI
[2009-10-08 06:50:10 | 61,378,9696 | ---- | M] () -- C:\Documents and Settings\Marcin\Moje dokumenty\TempImage.nrg
[2009-10-07 13:53:15 | 00,009,858 | ---- | M] () -- C:\WINDOWS\TSCTVDIV.INI
[2009-10-07 13:53:15 | 00,000,804 | ---- | M] () -- C:\WINDOWS\TSCTVDIV.BIN
[2009-10-07 13:53:15 | 00,000,037 | ---- | M] () -- C:\WINDOWS\GRAPPLER.INI
[2009-10-07 13:53:15 | 00,000,025 | ---- | M] () -- C:\WINDOWS\TSCFM.INI
[2009-10-07 13:51:04 | 00,000,688 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\Telewizja.lnk
[2009-10-05 20:22:18 | 00,002,193 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk

[color=#E56717]========== Files - No Company Name ==========[/color]
[2009-10-17 10:48:58 | 00,000,240 | ---- | C] () -- C:\WINDOWS\TSCTNDBG.INI
[2009-10-16 06:52:46 | 00,011,274 | ---- | C] () -- C:\Documents and Settings\Marcin\Moje dokumenty\2009-10-16.hrf
[2009-10-15 16:39:46 | 00,000,055 | RHS- | C] () -- C:\autorun.inf
[2009-10-08 06:50:10 | 61,378,9696 | ---- | C] () -- C:\Documents and Settings\Marcin\Moje dokumenty\TempImage.nrg
[2009-10-07 14:13:48 | 00,000,688 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\Telewizja.lnk
[2009-10-07 14:00:15 | 00,130,560 | ---- | C] () -- C:\CAPTURE.AVI
[2009-10-07 13:53:15 | 00,009,858 | ---- | C] () -- C:\WINDOWS\TSCTVDIV.INI
[2009-10-07 13:53:15 | 00,000,804 | ---- | C] () -- C:\WINDOWS\TSCTVDIV.BIN
[2009-10-07 13:53:15 | 00,000,037 | ---- | C] () -- C:\WINDOWS\GRAPPLER.INI
[2009-10-07 13:53:15 | 00,000,025 | ---- | C] () -- C:\WINDOWS\TSCFM.INI
[2009-10-07 13:52:11 | 00,000,140 | ---- | C] () -- C:\WINDOWS\IFOLDER.INI
[2009-10-07 13:50:50 | 00,018,455 | ---- | C] () -- C:\WINDOWS\TSCTVMSG.INI
[2009-10-07 13:50:50 | 00,016,065 | ---- | C] () -- C:\WINDOWS\Tsctvfm.ini
[2009-10-07 13:50:50 | 00,004,128 | ---- | C] () -- C:\WINDOWS\Tvcard.ini
[2009-10-07 13:50:29 | 00,001,130 | ---- | C] () -- C:\WINDOWS\tsctv.ini
[2009-08-04 18:39:16 | 00,000,166 | ---- | C] () -- C:\Documents and Settings\Marcin\Dane aplikacji\default.rss
[2009-08-01 16:12:47 | 00,000,029 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2009-07-06 20:34:21 | 00,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll
[2009-02-12 21:08:04 | 00,000,621 | ---- | C] () -- C:\WINDOWS\hpbafd.ini
[2009-02-12 18:57:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\HPMProp.INI
[2009-02-05 10:50:09 | 00,000,000 | ---- | C] () -- C:\WINDOWS\OODCNT.INI
[2009-01-14 16:33:08 | 00,064,512 | ---- | C] () -- C:\WINDOWS\System32\drivers\SENTINEL.SYS
[2009-01-14 16:33:08 | 00,042,496 | ---- | C] () -- C:\WINDOWS\System32\SNTI386.DLL
[2009-01-14 16:33:08 | 00,017,408 | ---- | C] () -- C:\WINDOWS\System32\RNBOVDD.DLL
[2008-12-03 20:51:31 | 00,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008-12-02 20:14:34 | 00,138,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2008-12-02 19:41:40 | 00,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008-12-01 21:08:03 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2008-12-01 21:08:02 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2008-12-01 21:08:00 | 00,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008-12-01 21:08:00 | 00,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008-12-01 21:07:59 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008-12-01 21:07:57 | 00,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008-12-01 21:07:57 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2008-12-01 20:34:27 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008-12-01 20:10:24 | 00,000,131 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2008-11-28 23:28:33 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
[2008-11-28 22:48:10 | 00,203,264 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-11-28 15:53:47 | 01,576,790 | -H-- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2008-11-28 15:47:56 | 00,102,520 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2008-11-28 15:46:20 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Marcin\Dane aplikacji\desktop.ini
[2006-10-31 07:35:00 | 01,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006-10-31 07:35:00 | 01,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006-10-31 07:35:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006-10-31 07:35:00 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006-10-31 07:35:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006-10-31 07:35:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006-10-31 07:35:00 | 00,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2004-08-03 23:44:00 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004-07-17 10:36:38 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2001-07-22 01:16:20 | 00,000,552 | ---- | C] () -- C:\WINDOWS\win.ini
[2001-07-22 01:15:52 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
< End of report >
[/log]

Psycholandia
komentarz
komentarz

W okienko OTL wklej poniższy skrypt i klik na Run Fix:

[code]:Processes
explorer.exe

:OTL
O4 - HKCU..\Run: [Prec] C:\Program Files\Prec\PrecStarter.exe File not found
O32 - AutoRun File - [2009-10-16 06:47:35 | 00,000,055 | RHS- | M] () - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009-10-16 06:47:37 | 00,000,055 | RHS- | M] () - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009-10-16 06:47:38 | 00,000,055 | RHS- | M] () - E:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009-10-16 06:47:39 | 00,000,055 | RHS- | M] () - F:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{30176656-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe
O33 - MountPoints2\{30176656-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe
O33 - MountPoints2\{30176658-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe
O33 - MountPoints2\{30176658-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe
O33 - MountPoints2\{30176659-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe
O33 - MountPoints2\{30176659-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe
O33 - MountPoints2\{3017665a-bd99-11dd-b57c-806d6172696f}\Shell\AutoRun\command - "" = s3ek.exe
O33 - MountPoints2\{3017665a-bd99-11dd-b57c-806d6172696f}\Shell\open\Command - "" = s3ek.exe
O33 - MountPoints2\{69f0ab87-eca3-11dd-8c5b-001d7d524319}\Shell\AutoRun\command - "" = autorun\autorun.exe

:Files
C:\autorun.inf
D:\autorun.inf
E:\autorun.inf
F:\autorun.inf

:Commands
[emptytemp]
[start explorer]
[Reboot][/code]

Otwórz notatnik tekstowy i wklej do niego poniższy tekst: [code]Windows Registry Editor Version 5.00

[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2]
[/code]
Zapisz jako->Wybierz [b]Wszystkie pliki[/b]->wpisz [b]Fix.reg[/b]->Następnie kliknij na zapisany plik i uruchom komputer ponownie.

blackhero
komentarz
komentarz

wkleiłem to do programu wcisnąłem Run fix ale wyskoczył błąd i nic się nie działo wcisnąłem jeszcze raz run fix wyskoczył komunikat że musi zrestartować komputer wcisnąłem ok komp wystartował od nowa i naprawiło się otwieranie partycji gorzej z plikami ukrytymi nadal się sama obcja zmienia a co z tym plikiem Fix.reg dodać go do rejestru i gdzie go wkleić (zapisać)?

Psycholandia
komentarz
komentarz

fix.reg dodaj tylko do rejestru i skasuj plik
wejdź w Dysk C, narzędzia, opcje folderów, widok i zaznacz: nie pokazuj ukrytych plików i folderów
uruchom OTL i kliknij na CleanUP

blackhero
komentarz
komentarz

zrobiłem uruchomił się od nowa

Psycholandia
komentarz
komentarz

Tak miało być. Problemu już nie masz, prawda?

blackhero
komentarz
komentarz

dyski się otwierają czyli jeden problem z głowy ale nadal jest problem z tymi plikami jak wezmę pokaż to się nie pokazują opcja sama się zmienia ale to już mniejszy problem osobiście mi to nie przeszkadza

Psycholandia
komentarz
komentarz

Nie rozumiem o czym mówisz, możesz opisać jaśniej? Może jakiś screen z przedstawionym problemem?

blackhero
komentarz
komentarz (edytowane)

w opcje folderów -> widok masz do wyboru
1 nie pokazuj ukrytych plików i folderów
2 pokaż ukryte pliki i foldery

zaznaczam opcje 2 wciskam zastosuj i klikam ok okno znika ukryte pliki nie pokazują się
wracam do opcji folderów-> widok i jest zaznaczona opcja 1 o tak w kółko
jednym zadaniem nie mogę wyświetlić ukrytych plików.

Psycholandia
komentarz
komentarz

czyli mimo przestawiania na [b]nie pokazuj ukrytych plików i folderów [/b] wraca/przestawia się sama opcja [b]pokaż ukryte pliki i foldery [/b]?

blackhero
komentarz
komentarz

odwrotnie mimo przestawiania na [b]pokaż ukryte pliki i foldery[/b] wraca/przestawia się sama opcja na [b]nie pokazuj ukrytych plików i folderów[/b]

nie da się wyświetlić ukrytych plików.

Psycholandia
komentarz
komentarz

http://www.sendspace.com/file/9o6he6 --> pobierz, klik 2 razy, wprowadź do rejestru
zaznacz tam też:[b] "Pokaż ukryte pliki i foldery"[/b] i odznacz [b]"Ukryj chronione pliki systemu operacyjnego"[/b]
i reset, zobacz czy zadziała

blackhero
komentarz
komentarz

po włączeni się komputera pliki ukryte były widoczne wszedłem do opcji folderów widok i żadna z opcji nie była zaznaczona, wziąłem nacisnąłem na pokaż ukryte pliki zastosuj i pliki ukryte znikły problem się powtarza

Psycholandia
komentarz
komentarz

Daj jeszcze raz nowego loga z OTL.

blackhero
komentarz
komentarz

[log]OTL logfile created on: 2009-11-02 01:08:46 - Run 3
OTL by OldTimer - Version 3.0.21.0 Folder = C:\Documents and Settings\Marcin\Pulpit\OTL
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,94 Gb Total Physical Memory | 1,45 Gb Available Physical Memory | 74,82% Memory free
3,79 Gb Paging File | 3,39 Gb Available in Paging File | 89,52% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 24,21 Gb Free Space | 49,58% Space Free | Partition Type: NTFS
Drive D: | 58,59 Gb Total Space | 47,76 Gb Free Space | 81,50% Space Free | Partition Type: NTFS
Drive E: | 62,50 Gb Total Space | 10,15 Gb Free Space | 16,25% Space Free | Partition Type: NTFS
Drive F: | 62,95 Gb Total Space | 39,69 Gb Free Space | 63,04% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: BOMBEL
Current User Name: Marcin
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2009-11-02 01:07:00 | 00,521,216 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Marcin\Pulpit\OTL\OTL.exe
PRC - [2009-08-24 21:23:38 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-08-14 07:08:20 | 18,702,336 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2009-07-25 04:23:12 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009-07-25 04:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2008-11-26 18:18:51 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2008-11-26 18:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2008-11-26 18:16:23 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2008-11-26 18:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2008-11-03 11:45:46 | 01,332,480 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodag.exe
PRC - [2008-11-03 11:45:04 | 02,540,800 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodtray.exe
PRC - [2006-10-31 07:35:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe
PRC - [2006-10-27 00:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2005-01-28 01:36:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe
PRC - [2004-08-03 23:44:30 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\wmiprvse.exe
PRC - [2004-08-03 23:44:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
PRC - [2003-07-05 07:23:52 | 00,049,214 | ---- | M] (Dassault Systemes) -- C:\Program Files\Catia\B12\intel_a\code\bin\CATSysDemon.exe

[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found -- -- (Nero BackItUp Scheduler 4.0 [Auto | Stopped])
SRV - [2009-08-15 16:26:15 | 00,077,944 | ---- | M] (Autodesk) -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service [On_Demand | Stopped])
SRV - [2009-07-25 04:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])
SRV - [2008-11-26 18:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])
SRV - [2008-11-26 18:16:23 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])
SRV - [2008-11-26 18:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])
SRV - [2008-11-03 11:45:46 | 01,332,480 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodag.exe -- (O&O Defrag [Auto | Running])
SRV - [2008-07-18 13:13:20 | 00,053,760 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZipm12.dll -- (Pml Driver HPZ12 [Auto | Running])
SRV - [2008-07-18 13:13:20 | 00,044,032 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZinw12.dll -- (Net Driver HPZ12 [Auto | Running])
SRV - [2007-10-24 01:47:40 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2007-10-24 01:47:22 | 00,033,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2007-10-11 09:55:14 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2007-10-11 09:55:10 | 00,864,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2007-10-09 12:58:12 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2007-02-06 17:32:06 | 00,266,240 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService [On_Demand | Stopped])
SRV - [2007-01-15 17:14:38 | 00,774,144 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService [On_Demand | Stopped])
SRV - [2006-10-31 07:35:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running])
SRV - [2006-10-27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])
SRV - [2006-10-26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [2005-01-28 01:36:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe -- (UMWdf [Auto | Running])
SRV - [2004-08-03 23:44:08 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2003-07-05 07:23:52 | 00,049,214 | ---- | M] (Dassault Systemes) -- C:\Program Files\Catia\B12\intel_a\code\bin\CATSysDemon.exe -- (BBDemon [Auto | Running])

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2009-08-18 10:32:00 | 05,884,416 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2009-08-15 16:18:46 | 00,721,904 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running])
DRV - [2008-11-30 00:22:56 | 00,015,600 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\gdrv.sys -- (gdrv [On_Demand | Stopped])
DRV - [2008-11-26 18:18:18 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2 [Auto | Running])
DRV - [2008-11-26 18:17:36 | 00,111,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP [System | Running])
DRV - [2008-11-26 18:17:25 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\DRIVERS\aswFsBlk.sys -- (aswFsBlk [Auto | Running])
DRV - [2008-11-26 18:16:38 | 00,050,864 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi [System | Running])
DRV - [2008-11-26 18:16:29 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr [On_Demand | Running])
DRV - [2008-11-26 18:15:35 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4 [System | Running])
DRV - [2008-08-05 13:10:12 | 01,684,736 | ---- | M] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys -- (Ambfilt [On_Demand | Stopped])
DRV - [2007-03-08 00:51:00 | 00,043,528 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2006-11-27 16:33:54 | 00,019,968 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nvnetbus.sys -- (nvnetbus [On_Demand | Running])
DRV - [2006-11-27 16:33:50 | 00,058,368 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\NVENETFD.sys -- (NVENETFD [On_Demand | Running])
DRV - [2006-10-31 07:35:00 | 03,964,256 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])
DRV - [2006-10-18 16:31:38 | 00,105,472 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata [Boot | Running])
DRV - [2006-06-18 23:51:32 | 00,043,520 | ---- | M] (Advanced Micro Devices) -- C:\WINDOWS\System32\DRIVERS\AmdK8.sys -- (AmdK8 [System | Running])
DRV - [2006-01-04 08:41:48 | 01,389,056 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys -- (Monfilt [On_Demand | Stopped])
DRV - [2005-01-07 16:07:18 | 00,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
DRV - [2004-07-17 10:36:38 | 00,027,440 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])
DRV - [2003-12-08 10:53:48 | 00,053,600 | ---- | M] (THOMSON) -- C:\WINDOWS\System32\DRIVERS\alcan5wn.sys -- (alcan5wn [On_Demand | Stopped])
DRV - [2003-12-08 10:53:46 | 00,070,688 | ---- | M] (THOMSON) -- C:\WINDOWS\System32\DRIVERS\alcaudsl.sys -- (alcaudsl [On_Demand | Stopped])
DRV - [2001-08-18 00:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2001-07-03 02:02:24 | 00,021,288 | ---- | M] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTTUNER.SYS -- (BTTUNER [Auto | Running])
DRV - [2001-07-03 02:02:22 | 00,012,568 | ---- | M] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTXBAR.SYS -- (BTXBAR [Auto | Running])
DRV - [2001-07-03 02:02:20 | 00,291,768 | ---- | M] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BT848.SYS -- (BT848 [Auto | Running])
DRV - [1998-03-31 06:34:00 | 00,064,512 | ---- | M] () -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel [Auto | Running])

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie


IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\NEOSTR~1\SEARCH~1.DLL File not found
IE - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\S-1-5-21-1757981266-1336601894-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.selectedEngine: "DAEMON Search"
FF - prefs.js..browser.startup.homepage: "http://pl.start2.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:pl:official"
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.0.8.0552
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}:6.0.10
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.0.6
FF - prefs.js..extensions.enabledItems: zrzuta.eu@gmail.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3

FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2008-12-02 00:04:22 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-10-01 11:56:24 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-10-01 11:56:24 | 00,000,000 | ---D | M]

[2009-10-01 11:56:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Extensions
[2009-10-01 11:56:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009-11-01 20:11:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions
[2009-10-01 11:57:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}
[2009-08-15 16:20:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions\DTToolbar@toolbarnet.com
[2009-09-22 21:19:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\mozilla\Firefox\Profiles\4g8rq6xi.default\extensions\zrzuta.eu@gmail.com
[2009-08-15 16:20:20 | 00,002,395 | ---- | M] () -- C:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\FireFox\Profiles\4g8rq6xi.default\searchplugins\daemon-search.xml
[2009-11-01 20:11:04 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009-10-01 11:56:24 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008-12-02 00:04:30 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
[2009-01-19 22:41:34 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
[2009-10-13 19:38:32 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2009-08-24 21:23:38 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009-08-24 21:23:38 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2007-04-10 16:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2009-07-25 04:23:01 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2009-08-24 21:23:38 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2006-10-26 20:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL
[2003-07-15 06:56:52 | 00,013,888 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL
[2008-09-10 20:56:44 | 00,144,960 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll
[2008-09-10 20:37:54 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll
[2009-08-24 20:19:13 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2009-08-24 20:19:13 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2009-08-24 20:19:13 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009-08-24 20:19:13 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2009-08-24 20:19:13 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2009-08-24 20:19:13 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2009-08-24 20:19:13 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (742 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Programy\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [OODefragTray] C:\WINDOWS\System32\oodtray.exe (O&O Software GmbH)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\S-1-5-21-1757981266-1336601894-839522115-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1757981266-1336601894-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Programy\Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\PROGRA~1\Programy\Office\Office12\EXCEL.EXE File not found
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1 212.87.224.2 212.87.224.66
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008-11-28 15:42:30 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{2eaa00b0-b3fb-11de-a1ca-001d7d524319}\Shell\AutoRun\command - "" = I:\w9uxx92.exe -- File not found
O33 - MountPoints2\{2eaa00b0-b3fb-11de-a1ca-001d7d524319}\Shell\open\Command - "" = I:\w9uxx92.exe -- File not found
O33 - MountPoints2\{69e1f13d-b97f-11de-a1d2-001d7d524319}\Shell\AutoRun\command - "" = I:\s3ek.exe -- File not found
O33 - MountPoints2\{69e1f13d-b97f-11de-a1d2-001d7d524319}\Shell\open\Command - "" = I:\s3ek.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O34 - HKLM BootExecute: (OODBS) - C:\WINDOWS\System32\OODBS.exe (O&O Software GmbH)
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2009-10-08 06:26:14 | 00,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2009-10-07 13:50:49 | 00,000,000 | ---D | C] -- C:\Program Files\PixelView
[2009-11-01 23:53:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Pulpit\OTL
[2009-11-01 20:03:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Moje dokumenty\Pobieranie
[2009-10-15 12:37:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Pulpit\Nowy folder
[2009-10-07 13:51:03 | 00,229,376 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\TSCTVWDM.DLL
[2009-10-07 13:51:03 | 00,070,656 | ---- | C] (Nogatech Ltd.) -- C:\WINDOWS\System32\NUVISION.AX
[2009-10-07 13:48:43 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NdisIP.sys
[2009-10-07 13:48:43 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2009-10-07 13:48:43 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\MSTEE.sys
[2009-10-07 13:48:43 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2009-10-07 13:48:42 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2009-10-07 13:48:42 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2009-10-07 13:48:42 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\StreamIP.sys
[2009-10-07 13:48:42 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2009-10-07 13:48:41 | 00,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\WSTCODEC.SYS
[2009-10-07 13:48:41 | 00,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2009-10-07 13:48:41 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\SLIP.sys
[2009-10-07 13:48:41 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2009-10-07 13:48:40 | 00,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NABTSFEC.sys
[2009-10-07 13:48:40 | 00,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2009-10-07 13:48:39 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\CCDECODE.sys
[2009-10-07 13:48:39 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2009-10-07 13:48:37 | 00,012,568 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTXBAR.SYS
[2009-10-07 13:48:26 | 00,021,288 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BTTUNER.SYS
[2009-10-07 13:47:59 | 00,291,768 | ---- | C] (TelSignal Co., Ltd.) -- C:\WINDOWS\System32\drivers\BT848.SYS
[2009-10-07 13:47:58 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2009-10-07 13:47:58 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2009-10-07 13:47:58 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2009-10-07 13:47:58 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vidcap.ax
[2009-10-07 13:47:57 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2009-10-07 13:47:57 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2009-10-07 13:47:56 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2009-10-07 13:47:56 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2009-10-07 13:47:54 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2009-10-07 13:47:54 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2009-10-06 13:49:43 | 00,000,000 | ---D | C] -- C:\cosmosssssss

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2009-11-02 00:58:43 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009-11-02 00:58:42 | 00,081,496 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2009-11-02 00:58:40 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009-11-02 00:58:38 | 00,533,786 | ---- | M] () -- C:\WINDOWS\System32\oodbs.lor
[2009-11-01 23:47:08 | 00,204,800 | ---- | M] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-11-01 21:53:19 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009-11-01 21:22:19 | 00,001,130 | ---- | M] () -- C:\WINDOWS\tsctv.ini
[2009-11-01 21:22:19 | 00,000,140 | ---- | M] () -- C:\WINDOWS\IFOLDER.INI
[2009-11-01 21:22:15 | 00,000,240 | ---- | M] () -- C:\WINDOWS\TSCTNDBG.INI
[2009-11-01 21:21:26 | 00,016,065 | ---- | M] () -- C:\WINDOWS\Tsctvfm.ini
[2009-11-01 20:40:32 | 00,000,621 | ---- | M] () -- C:\WINDOWS\hpbafd.ini
[2009-11-01 17:31:38 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009-10-16 06:52:46 | 00,011,274 | ---- | M] () -- C:\Documents and Settings\Marcin\Moje dokumenty\2009-10-16.hrf
[2009-10-13 19:29:11 | 00,130,560 | ---- | M] () -- C:\CAPTURE.AVI
[2009-10-08 06:50:10 | 61,378,9696 | ---- | M] () -- C:\Documents and Settings\Marcin\Moje dokumenty\TempImage.nrg
[2009-10-07 13:53:15 | 00,009,858 | ---- | M] () -- C:\WINDOWS\TSCTVDIV.INI
[2009-10-07 13:53:15 | 00,000,804 | ---- | M] () -- C:\WINDOWS\TSCTVDIV.BIN
[2009-10-07 13:53:15 | 00,000,037 | ---- | M] () -- C:\WINDOWS\GRAPPLER.INI
[2009-10-07 13:53:15 | 00,000,025 | ---- | M] () -- C:\WINDOWS\TSCFM.INI
[2009-10-07 13:51:04 | 00,000,688 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\Telewizja.lnk
[2009-10-05 20:22:18 | 00,002,193 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk

[color=#E56717]========== Files - No Company Name ==========[/color]
[2009-10-17 10:48:58 | 00,000,240 | ---- | C] () -- C:\WINDOWS\TSCTNDBG.INI
[2009-10-16 06:52:46 | 00,011,274 | ---- | C] () -- C:\Documents and Settings\Marcin\Moje dokumenty\2009-10-16.hrf
[2009-10-08 06:50:10 | 61,378,9696 | ---- | C] () -- C:\Documents and Settings\Marcin\Moje dokumenty\TempImage.nrg
[2009-10-07 14:13:48 | 00,000,688 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\Telewizja.lnk
[2009-10-07 14:00:15 | 00,130,560 | ---- | C] () -- C:\CAPTURE.AVI
[2009-10-07 13:53:15 | 00,009,858 | ---- | C] () -- C:\WINDOWS\TSCTVDIV.INI
[2009-10-07 13:53:15 | 00,000,804 | ---- | C] () -- C:\WINDOWS\TSCTVDIV.BIN
[2009-10-07 13:53:15 | 00,000,037 | ---- | C] () -- C:\WINDOWS\GRAPPLER.INI
[2009-10-07 13:53:15 | 00,000,025 | ---- | C] () -- C:\WINDOWS\TSCFM.INI
[2009-10-07 13:52:11 | 00,000,140 | ---- | C] () -- C:\WINDOWS\IFOLDER.INI
[2009-10-07 13:50:50 | 00,018,455 | ---- | C] () -- C:\WINDOWS\TSCTVMSG.INI
[2009-10-07 13:50:50 | 00,016,065 | ---- | C] () -- C:\WINDOWS\Tsctvfm.ini
[2009-10-07 13:50:50 | 00,004,128 | ---- | C] () -- C:\WINDOWS\Tvcard.ini
[2009-10-07 13:50:29 | 00,001,130 | ---- | C] () -- C:\WINDOWS\tsctv.ini
[2009-08-04 18:39:16 | 00,000,166 | ---- | C] () -- C:\Documents and Settings\Marcin\Dane aplikacji\default.rss
[2009-08-01 16:12:47 | 00,000,029 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2009-07-06 20:34:21 | 00,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll
[2009-02-12 21:08:04 | 00,000,621 | ---- | C] () -- C:\WINDOWS\hpbafd.ini
[2009-02-12 18:57:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\HPMProp.INI
[2009-02-05 10:50:09 | 00,000,000 | ---- | C] () -- C:\WINDOWS\OODCNT.INI
[2009-01-14 16:33:08 | 00,064,512 | ---- | C] () -- C:\WINDOWS\System32\drivers\SENTINEL.SYS
[2009-01-14 16:33:08 | 00,042,496 | ---- | C] () -- C:\WINDOWS\System32\SNTI386.DLL
[2009-01-14 16:33:08 | 00,017,408 | ---- | C] () -- C:\WINDOWS\System32\RNBOVDD.DLL
[2008-12-03 20:51:31 | 00,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008-12-02 20:14:34 | 00,138,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2008-12-02 19:41:40 | 00,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008-12-01 21:08:03 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2008-12-01 21:08:02 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2008-12-01 21:08:00 | 00,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008-12-01 21:08:00 | 00,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008-12-01 21:07:59 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008-12-01 21:07:57 | 00,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008-12-01 21:07:57 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2008-12-01 20:34:27 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008-12-01 20:10:24 | 00,000,131 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2008-11-28 23:28:33 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
[2008-11-28 22:48:10 | 00,204,800 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-11-28 15:53:47 | 01,576,790 | -H-- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2008-11-28 15:47:56 | 00,102,520 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2008-11-28 15:46:20 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Marcin\Dane aplikacji\desktop.ini
[2006-10-31 07:35:00 | 01,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006-10-31 07:35:00 | 01,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006-10-31 07:35:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006-10-31 07:35:00 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006-10-31 07:35:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006-10-31 07:35:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006-10-31 07:35:00 | 00,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2004-08-03 23:44:00 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004-07-17 10:36:38 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2001-07-22 01:16:20 | 00,000,552 | ---- | C] () -- C:\WINDOWS\win.ini
[2001-07-22 01:15:52 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini

[color=#E56717]========== LOP Check ==========[/color]

[2008-11-28 23:28:33 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji
[2009-10-15 12:42:41 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji
[2009-08-04 21:26:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ACD Systems
[2008-12-01 20:18:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk
[2009-03-04 09:43:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2009-03-10 00:11:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DassaultSystemes
[2009-10-01 09:03:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2009-02-12 19:18:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters
[2008-11-28 23:28:33 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Default User\Dane aplikacji
[2008-11-28 15:45:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji
[2009-10-15 12:42:41 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji
[2009-08-04 21:27:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\ACD Systems
[2008-11-28 23:07:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Ahead
[2009-08-15 16:23:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Autodesk
[2009-03-04 09:43:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\DAEMON Tools
[2009-08-15 16:21:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\DAEMON Tools Lite
[2009-03-04 09:43:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\DAEMON Tools Pro
[2009-03-10 00:21:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\DassaultSystemes
[2009-03-04 10:07:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Desktopicon
[2008-12-01 21:01:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Gadu-Gadu
[2009-10-15 14:34:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\ipla
[2008-12-02 20:08:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Leadertech
[2008-12-09 19:59:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Mathsoft
[2009-03-25 13:59:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\Nowe Gadu-Gadu
[2009-05-07 15:46:44 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\SecuROM
[2009-05-04 14:47:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Marcin\Dane aplikacji\teamspeak2
[2008-11-28 15:44:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji
[2001-07-22 01:17:50 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini
[2009-11-02 00:58:43 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT

[color=#E56717]========== Purity Check ==========[/color]


< End of report >
[/log]

Psycholandia
komentarz
komentarz

W okienko OTL wklej poniższy skrypt i klik na Run Fix:
[code]
:Processes
explorer.exe

:OTL
O33 - MountPoints2\{2eaa00b0-b3fb-11de-a1ca-001d7d524319}\Shell\AutoRun\command - "" = I:\w9uxx92.exe -- File not found
O33 - MountPoints2\{2eaa00b0-b3fb-11de-a1ca-001d7d524319}\Shell\open\Command - "" = I:\w9uxx92.exe -- File not found
O33 - MountPoints2\{69e1f13d-b97f-11de-a1d2-001d7d524319}\Shell\AutoRun\command - "" = I:\s3ek.exe -- File not found
O33 - MountPoints2\{69e1f13d-b97f-11de-a1d2-001d7d524319}\Shell\open\Command - "" = I:\s3ek.exe -- File not found

:Commands
[emptytemp]
[start explorer]
[Reboot][/code]


Otwórz notatnik tekstowy i wklej do niego poniższy tekst: [code]Windows Registry Editor Version 5.00

[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2]
[/code]
Zapisz jako->Wybierz [b]Wszystkie pliki[/b]->wpisz [b]Fix.reg[/b]->Następnie kliknij na zapisany plik i uruchom komputer ponownie.

Wykonaj: http://support.microsoft.com/kb/310405/pl
Przeskanuj komputer tym: [url="http://www.programosy.pl/program,malwarebytes-anti-malware.html"]Malware[/url] usuń wszystko co znajdzie i daj loga po kasowaniu (loga z Malware)
Uruchom OTL i CleanUP.

blackhero
komentarz
komentarz

przywracanie systemu zrobić przed skanowaniem

[log]Malwarebytes' Anti-Malware 1.41
Wersja bazy definicji: 2991
Windows 5.1.2600 Dodatek Service Pack 2

2009-11-02 01:47:48
mbam-log-2009-11-02 (01-47-48).txt

Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|F:\|)
Przeskanowane obiekty: 207068
Upłynęło: 21 minute(s), 50 second(s)

Zainfekowane procesy w pamięci: 0
Zainfekowane moduły pamięci: 0
Zainfekowane klucze rejestru: 0
Zainfekowane wartości rejestru: 0
Zainfekowane pliki rejestru: 4
Zainfekowane foldery: 0
Zainfekowane pliki: 1

Zainfekowane procesy w pamięci:
(Nie wykryto groźnych plików)

Zainfekowane moduły pamięci:
(Nie wykryto groźnych plików)

Zainfekowane klucze rejestru:
(Nie wykryto groźnych plików)

Zainfekowane wartości rejestru:
(Nie wykryto groźnych plików)

Zainfekowane pliki rejestru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL\CheckedValue (Hijack.System.Hidden) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

Zainfekowane foldery:
(Nie wykryto groźnych plików)

Zainfekowane pliki:
C:\Documents and Settings\Marcin\Dane aplikacji\Desktopicon\eBayShortcuts.exe (Adware.ADON) -> Quarantined and deleted successfully. [/log]

bardzo serdecznie dziękuje ci za pomoc nie wiem jak ja ci się odwdzięczę :) wszystko jest ok :):P

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.