x-kom hosting

Vista problem przy uruchamianiu systemu

markelos
utworzono
utworzono

Witajcie sprawa wygląda tak. Koleżanka ma taki problem, że przy uruchomieniu systemu Vista 32 bity ekran jest żółty i widać tylko kursor. Można wejść w manager zadań i to wszystko. Wcześniej komputer się jej zacinał i zrobiłem skan systemu. Wirusy zostały usunięte i wtedy pojawił się ten problem z uruchamianiem. Teraz siedzi na trybie awaryjnym. Co mogło spowodować taki obrót spraw ? Nie znam całej specyfikacji PC. 

markelos
komentarz
komentarz

OTL.THT :

OTL logfile created on: 2013-06-28 13:47:29 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\konto olusiQ02\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19418)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1021,76 Mb Total Physical Memory | 295,61 Mb Available Physical Memory | 28,93% Memory free
2,25 Gb Paging File | 1,61 Gb Available in Paging File | 71,51% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 298,09 Gb Total Space | 112,31 Gb Free Space | 37,68% Space Free | Partition Type: NTFS
 
Computer Name: OLA-PC | User Name: konto olusiQ02 | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2013-06-28 13:46:52 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\konto olusiQ02\Downloads\OTL.exe
PRC - [2013-05-29 07:27:40 | 000,825,808 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008-01-19 09:33:11 | 000,498,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\HelpPane.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2013-06-22 08:52:04 | 013,140,872 | ---- | M] () -- C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\PepperFlash\11.7.700.225\pepflashplayer.dll
MOD - [2013-05-29 07:27:38 | 000,393,168 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\27.0.1453.110\ppgooglenaclpluginchrome.dll
MOD - [2013-05-29 07:27:35 | 004,051,408 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\27.0.1453.110\pdf.dll
MOD - [2013-05-29 07:26:36 | 001,597,392 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\27.0.1453.110\ffmpegsumo.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - File not found [Auto | Stopped] -- C:\Program Files\WebCake\WebCakeDesktop.Updater.exe C:\Users\konto olusiQ02\AppData\Roaming\WebCake\WebCakeDesktop.exe -- (WebCake Desktop Updater)
SRV - [2013-06-28 11:52:19 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013-06-11 18:55:26 | 000,360,512 | ---- | M] (eSafe Security Co., Ltd.) [Auto | Stopped] -- C:\ProgramData\eSafe\eGdpSvc.exe -- (eSafeSvc)
SRV - [2013-05-21 15:31:12 | 001,167,152 | ---- | M] () [Auto | Stopped] -- C:\Windows\System32\dmwu.exe -- (IBUpdaterService)
SRV - [2013-03-21 15:19:46 | 001,341,664 | ---- | M] (ESET) [Auto | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2013-01-25 19:46:30 | 003,057,512 | ---- | M] () [Auto | Stopped] -- C:\Windows\System32\config\systemprofile\AppData\Local\tuto4pc_pl_6\supt4pc_pl_6.exe -- (supt4pc_pl_6)
SRV - [2012-12-29 02:53:20 | 000,383,416 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012-11-09 12:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-11-05 12:57:12 | 003,055,976 | ---- | M] () [Auto | Stopped] -- C:\Users\konto olusiQ02\AppData\Local\tuto4pc_pl_1\supt4pc_pl_1.exe -- (supt4pc_pl_1)
SRV - [2012-10-10 22:15:04 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012-10-02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Stopped] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2011-09-06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2008-01-19 09:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\usbaapl.sys -- (USBAAPL)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\pccsmcfd.sys -- (pccsmcfd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\RTKVHDA.sys -- (IntcAzAudAddService)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\HECI.sys -- (HECI)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2013-06-22 10:10:08 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2013-06-08 20:58:29 | 000,037,664 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2013-02-14 12:21:04 | 000,171,680 | ---- | M] (ESET) [File_System | System | Stopped] -- C:\Windows\System32\drivers\eamonm.sys -- (eamonm)
DRV - [2013-01-10 09:25:20 | 000,122,240 | ---- | M] (ESET) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2013-01-10 09:25:20 | 000,105,760 | ---- | M] (ESET) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV - [2012-12-29 12:26:54 | 008,904,632 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2011-09-06 23:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Stopped] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011-09-06 23:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011-09-06 23:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011-09-06 23:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011-09-06 23:36:26 | 000,054,616 | ---- | M] (AVAST Software) [File_System | Auto | Stopped] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011-09-06 23:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Stopped] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010-06-23 10:21:32 | 000,259,176 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2010-02-26 15:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010-02-26 15:21:22 | 000,137,344 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2007-05-31 03:32:34 | 000,099,648 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\V0420Vid.sys -- (V0420VID)
DRV - [2007-01-01 02:00:45 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\gdrv.sys -- (gdrv)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=vlt&from=vlt&uid=SAMSUNG_HD321KJ_S0MQJ1PP601936&ts=1354734249
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.v9.com/?utm_source=b&utm_medium=vlt&from=vlt&uid=SAMSUNG_HD321KJ_S0MQJ1PP601936&ts=1354734249
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.v9.com/web/?q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.v9.com/web/?q={searchTerms}
IE - HKLM\..\URLSearchHook: {707db484-2428-402d-afb5-d85b387544c7} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}: "URL" = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZNxpt437YYPL&ptb=svssf6RKIKLMDqOAQeY27A&ind=2011102907&ptnrS=ZNxpt437YYPL&si=5592472&n=77defebb&psa=&st=sb&searchfor={searchTerms}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=390&systemid=406&sr=0&q={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2612669
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&crg=3.1010000&st=12&q={searchTerms}&barid={E6AB34D4-EB7A-44EA-8FD0-8ABECE4D81A2}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=vlt&from=vlt&uid=SAMSUNG_HD321KJ_S0MQJ1PP601936&ts=1354734249
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2612669
IE - HKCU\..\URLSearchHook: {8532a8b7-c06a-41bb-936a-8ce73e4711ed} - No CLSID value found
IE - HKCU\..\URLSearchHook: {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - No CLSID value found
IE - HKCU\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.v9.com/web/?q={searchTerms}
IE - HKCU\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=stonicpl&s={searchTerms}&f=4
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www.claro-search.com/?q={searchTerms}&affID=110824&tt=5012_8&babsrc=SP_ss&mntrId=1a8fe0e8000000000000001a4d509498
IE - HKCU\..\SearchScopes\{2F4F32AF-B078-44C4-81D0-C69152471E1A}: "URL" = http://www.claro-search.com/?q={searchTerms}&affID=110824&tt=5012_8&babsrc=SP_ss&mntrId=1a8fe0e8000000000000001a4d509498
IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.v9.com/web/?q={searchTerms}
IE - HKCU\..\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}: "URL" = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZNxpt437YYPL&ptb=svssf6RKIKLMDqOAQeY27A&ind=2011080109&ptnrS=ZNxpt437YYPL&si=5592472&n=77dea5ad&psa=&st=sb&searchfor={searchTerms}
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADSA_pl
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={A53B9B59-F91E-4B93-94DF-7D746ED7E4E8}&mid=273cfe159e284a4d92dca07aa99f56d8-96ac6111e91112dc5e951c259cf5439bf2ee1c78&lang=pl&ds=ax011&pr=&d=2012-10-24 20:46:53&v=14.2.0.1&pid=avg&sg=&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=390&systemid=406&sr=0&q={searchTerms}
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2612669
IE - HKCU\..\SearchScopes\{BEB78F1D-848A-4DD9-9CB9-556F8DC974FB}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=U3&apn_dtid=OSJ000YYPL&apn_uid=1EF13EA1-978D-4623-8D58-A9E04DBA144C&apn_sauid=A33FED42-FD53-4661-B922-95F54FD090A7
IE - HKCU\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://mystart.incredibar.com/mb165/?search={searchTerms}&loc=IB_DS&a=6PQzGbUsi4&i=26
IE - HKCU\..\SearchScopes\{D3B6D9C3-9C91-4081-A9DB-4F66EF8DCD84}: "URL" = http://search.softonic.com/MON00085/tb_v1?q={searchTerms}&SearchSource=4&cc=&r=940
IE - HKCU\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&crg=3.1010000&st=12&q={searchTerms}&barid={E6AB34D4-EB7A-44EA-8FD0-8ABECE4D81A2}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\konto olusiQ02\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-09-06 12:47:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{336D0C35-8A85-403a-B9D2-65C292C39087}: C:\Program Files\Web Assistant\Firefox
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013-06-09 13:11:55 | 000,000,000 | ---D | M]
 
[2012-03-11 18:55:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\konto olusiQ02\AppData\Roaming\mozilla\Extensions
[2011-12-16 17:21:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-10-24 20:37:50 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011-03-21 15:43:56 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2007-01-22 23:20:06 | 000,024,576 | ---- | M] (My Global Search) -- C:\Program Files\mozilla firefox\plugins\NPMyGlSh.dll
[2007-03-14 15:04:26 | 000,002,288 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2011-11-20 19:41:59 | 000,002,051 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.delta-search.com/?affID=119535&tt=gc_&babsrc=HP_ss&mntrId=EAB9E0B9A5F1A565
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.110\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.110\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.110\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\\npsitesafety.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: Grand Theft Auto: Vice City = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddelmbplaacmcjjbodmjifniikmcgokc\1.0_0\
CHR - Extension: Color My Facebook = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.23.57_0\crossrider
CHR - Extension: Color My Facebook = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.23.57_0\
CHR - Extension: WebCake = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh\1.0.3_0\
CHR - Extension: Webcam Toy = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade\1.4_0\
CHR - Extension: GTA San andreas = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmccmkjpbohfokllmdlloihednnecmfk\1.0_0\
CHR - Extension: Chloe = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\pillplnpmfjckedkedpaoembffbpklnf\2_0\
CHR - Extension: Grand Theft Auto: Vice City = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddelmbplaacmcjjbodmjifniikmcgokc\1.0_0\
CHR - Extension: Color My Facebook = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.23.57_0\crossrider
CHR - Extension: Color My Facebook = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.23.57_0\
CHR - Extension: WebCake = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh\1.0.3_0\
CHR - Extension: Webcam Toy = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade\1.4_0\
CHR - Extension: GTA San andreas = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmccmkjpbohfokllmdlloihednnecmfk\1.0_0\
CHR - Extension: Chloe = C:\Users\konto olusiQ02\AppData\Local\Google\Chrome\User Data\Default\Extensions\pillplnpmfjckedkedpaoembffbpklnf\2_0\
 
O1 HOSTS File: ([2006-09-18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (High Tech Marketing SL Helper Object) - {90BFF621-26B8-4B38-81C1-282A3849846C} - C:\Program Files\High Tech Marketing SL\htm\1.8.3.4\bh\htm.dll (High Tech Marketing SL)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (High Tech Marketing SL Toolbar) - {5ABE0730-FA3C-4717-B302-A2D6B421BB2C} - C:\Program Files\High Tech Marketing SL\htm\1.8.3.4\htmTlbr.dll (High Tech Marketing SL)
O3 - HKLM\..\Toolbar: (no name) - {707db484-2428-402d-afb5-d85b387544c7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {8532A8B7-C06A-41BB-936A-8CE73E4711ED} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A5AE8924-4036-420F-B7F6-A47E4B8F692E} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [C:\Windows\system32\V0420Cvw.dll] C:\Windows\System32\V0420CVW.dll (Creative Technology Ltd.)
O4 - HKLM..\Run: [C:\Windows\system32\V0420Ext.ax] C:\Windows\System32\V0420Ext.ax (Creative Technology Ltd.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Sweetpacks Communicator] C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [V0420Mon.exe] C:\Windows\V0420Mon.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKCU..\Run: [Facebook Update] C:\Users\konto olusiQ02\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKCU..\Run: [Kookos] C:\Users\konto olusiQ02\AppData\Local\Kookos\kookos.exe ()
O4 - HKCU..\Run: [sp] C:\Windows\system32\rundll32.exe "C:\Users\konto olusiQ02\AppData\Roaming\.minecraft\sp.DLL",ServiceMain File not found
O4 - HKCU..\Run: [WebCake Desktop] C:\Users\konto olusiQ02\AppData\Roaming\WebCake\WebCakeDesktop.exe (WebCake LLC)
O4 - HKCU..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.61 62.179.1.60
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6B00C88F-13F1-4ABF-84AD-F498AE84B1EE}: DhcpNameServer = 62.179.1.61 62.179.1.60
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img25.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img25.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{2967b7e2-db07-11e2-ba7f-001a4d509498}\Shell - "" = AutoRun
O33 - MountPoints2\{2967b7e2-db07-11e2-ba7f-001a4d509498}\Shell\AutoRun\command - "" = I:\Autorun.exe
O33 - MountPoints2\{9ca2c36e-c3fd-11db-8076-001a4d509498}\Shell - "" = AutoRun
O33 - MountPoints2\{9ca2c36e-c3fd-11db-8076-001a4d509498}\Shell\AutoRun\command - "" = I:\Startme.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2013-06-22 11:47:25 | 020,450,232 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2013-06-22 11:47:25 | 012,641,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2013-06-22 11:47:25 | 008,904,632 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2013-06-22 11:47:25 | 006,263,784 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvopencl.dll
[2013-06-22 11:47:24 | 017,560,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2013-06-22 11:47:24 | 015,129,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2013-06-22 11:47:24 | 007,931,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2013-06-22 11:47:24 | 002,720,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2013-06-22 11:47:24 | 002,504,248 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2013-06-22 11:47:24 | 001,985,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2013-06-22 11:46:31 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2013-06-22 10:23:28 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2013-06-22 10:16:22 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
[2013-06-22 10:11:58 | 000,000,000 | ---D | C] -- C:\Users\konto olusiQ02\AppData\Roaming\WebCake
[2013-06-22 10:11:58 | 000,000,000 | ---D | C] -- C:\Program Files\WebCake
[2013-06-22 10:11:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2013-06-22 10:10:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2013-06-22 10:10:08 | 000,242,240 | ---- | C] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2013-06-22 10:10:04 | 000,000,000 | ---D | C] -- C:\Users\konto olusiQ02\AppData\Roaming\DAEMON Tools Lite
[2013-06-22 10:10:02 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2013-06-22 10:09:35 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2013-06-11 20:54:23 | 000,000,000 | ---D | C] -- C:\Users\konto olusiQ02\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maxis
[2013-06-11 20:38:10 | 000,000,000 | ---D | C] -- C:\Program Files\Maxis
[2013-06-11 19:58:09 | 000,000,000 | ---D | C] -- C:\Users\konto olusiQ02\Documents\Electronic Arts
[2013-06-11 18:56:24 | 000,000,000 | ---D | C] -- C:\Users\konto olusiQ02\AppData\Roaming\WinRAR
[2013-06-11 18:56:24 | 000,000,000 | ---D | C] -- C:\Users\konto olusiQ02\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2013-06-11 18:56:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2013-06-11 18:56:22 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2013-06-11 18:55:26 | 000,000,000 | ---D | C] -- C:\ProgramData\eSafe
[2013-06-11 18:55:22 | 000,000,000 | ---D | C] -- C:\Users\konto olusiQ02\AppData\Roaming\eDownload
[2013-06-11 18:46:29 | 000,000,000 | ---D | C] -- C:\Users\konto olusiQ02\AppData\Roaming\uTorrent
[2013-06-11 18:16:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2013-06-11 18:16:32 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013-06-09 14:59:40 | 000,000,000 | ---D | C] -- C:\Users\konto olusiQ02\AppData\Local\ESET
[2013-06-09 13:10:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2013-06-09 13:10:50 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2013-06-09 13:10:49 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2013-06-09 13:04:42 | 000,632,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr80.dll
[2013-06-09 13:04:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\jmdp
[2013-06-09 13:04:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\ARFC
[2013-06-09 13:04:41 | 000,773,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr100.dll
[2013-06-09 13:04:41 | 000,554,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcp80.dll
[2013-06-09 13:04:41 | 000,479,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcm80.dll
[2013-06-09 13:04:41 | 000,421,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcp100.dll
[2013-06-09 13:03:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\WNLT
[2013-06-08 22:05:24 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013-06-08 22:05:19 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2013-06-08 22:04:54 | 002,049,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013-06-08 22:04:37 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013-06-08 22:04:36 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2013-06-08 22:04:34 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2013-06-08 22:04:32 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2013-06-08 22:04:31 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2013-06-08 22:04:29 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2013-06-08 22:04:29 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013-06-08 22:04:28 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2013-06-08 22:04:27 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013-06-08 22:04:26 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2013-06-08 22:04:25 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013-06-08 22:04:24 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013-06-08 22:04:24 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2013-06-08 22:04:23 | 000,174,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013-06-08 22:04:23 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2013-06-08 22:04:23 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013-06-08 22:04:21 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2012-09-24 17:53:59 | 000,998,536 | ---- | C] (Solid State Networks) -- C:\Users\konto olusiQ02\install_flashplayer11x32_chra_aih.exe
[2011-12-18 13:58:39 | 002,161,160 | ---- | C] (DownVision                                                  ) -- C:\Users\konto olusiQ02\AppData\Local\setup.exe
[2010-11-03 12:33:35 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Users\konto olusiQ02\AppData\Roaming\MinecraftSP.exe
[2007-02-14 18:54:16 | 000,075,456 | ---- | C] (MyWebSearch.com) -- C:\Users\konto olusiQ02\AppData\Local\mwsauto.exe
[4 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[2 C:\Windows\System32\drivers\*.tmp files -> C:\Windows\System32\drivers\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2013-06-28 13:40:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013-06-28 13:38:05 | 000,000,480 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{F88211F7-850D-4FC4-B8C6-4BA5F8BCEA01}.job
[2013-06-28 13:37:12 | 000,000,458 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{4B453800-0A7C-49B8-9511-01764F4F61B9}.job
[2013-06-28 13:26:50 | 000,000,964 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3272238012-2154572465-593342743-1002UA.job
[2013-06-28 13:18:00 | 000,001,078 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3272238012-2154572465-593342743-1008UA.job
[2013-06-28 13:00:00 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013-06-28 12:48:02 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013-06-28 12:42:15 | 000,001,048 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013-06-28 12:42:03 | 000,000,350 | ---- | M] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013-06-28 12:41:38 | 000,003,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013-06-28 12:41:38 | 000,003,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013-06-28 12:25:53 | 000,671,902 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2013-06-28 12:25:53 | 000,595,798 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013-06-28 12:25:53 | 000,130,310 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2013-06-28 12:25:53 | 000,103,872 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013-06-28 11:52:08 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013-06-28 11:52:07 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013-06-25 23:00:16 | 000,000,942 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3272238012-2154572465-593342743-1002Core1ce71e6fe8f946e.job
[2013-06-23 11:04:29 | 000,001,356 | ---- | M] () -- C:\Users\konto olusiQ02\AppData\Local\d3d9caps.dat
[2013-06-22 10:10:08 | 000,242,240 | ---- | M] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2013-06-12 14:23:11 | 000,264,848 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013-06-11 20:35:09 | 000,007,168 | ---- | M] () -- C:\Users\konto olusiQ02\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013-06-08 20:58:29 | 000,037,664 | ---- | M] (AVG Technologies) -- C:\Windows\System32\drivers\avgtpx86.sys
[4 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[2 C:\Windows\System32\drivers\*.tmp files -> C:\Windows\System32\drivers\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013-06-25 23:00:16 | 000,000,942 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3272238012-2154572465-593342743-1002Core1ce71e6fe8f946e.job
[2013-06-09 13:04:41 | 001,167,152 | ---- | C] () -- C:\Windows\System32\dmwu.exe
[2013-06-09 13:04:41 | 000,027,136 | ---- | C] () -- C:\Windows\System32\ImHttpComm.dll
[2013-06-06 14:27:45 | 000,000,350 | ---- | C] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013-05-02 15:06:34 | 000,093,675 | ---- | C] () -- C:\Users\konto olusiQ02\AppData\Roaming\Uninstal.exe
[2012-12-16 19:31:27 | 000,086,016 | ---- | C] () -- C:\Windows\System32\custmon32i.dll
[2012-10-19 16:28:38 | 000,000,032 | ---- | C] () -- C:\Users\konto olusiQ02\AppData\Roaming\cbl32.dll
[2012-09-07 14:23:58 | 000,001,356 | ---- | C] () -- C:\Users\konto olusiQ02\AppData\Local\d3d9caps.dat
[2012-08-05 15:36:17 | 000,000,640 | RHS- | C] () -- C:\Users\konto olusiQ02\ntuser.pol
[2012-01-28 15:32:23 | 000,000,000 | ---- | C] () -- C:\Users\konto olusiQ02\AppData\Local\{9955CA82-D942-4671-9B8E-98E3AB4B16FD}
[2011-12-27 16:06:31 | 000,000,000 | ---- | C] () -- C:\Users\konto olusiQ02\AppData\Local\{5B3325FE-8F34-4149-917C-CC5D5D4DF466}
[2011-12-18 13:57:24 | 000,460,624 | ---- | C] () -- C:\Users\konto olusiQ02\AppData\Local\promo.exe
[2011-12-08 17:42:07 | 000,000,000 | ---- | C] () -- C:\Users\konto olusiQ02\AppData\Local\{AD75E8BF-ACEA-410C-85A3-4AC514F81431}
[2011-11-29 15:37:56 | 000,138,056 | ---- | C] () -- C:\Users\konto olusiQ02\AppData\Roaming\PnkBstrK.sys
[2011-11-19 13:54:50 | 000,007,168 | ---- | C] () -- C:\Users\konto olusiQ02\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-03-20 09:42:29 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2007-04-20 16:24:01 | 000,000,000 | ---- | C] () -- C:\Users\konto olusiQ02\AppData\Local\{10BFCF92-E4AA-44F1-B01D-AADB1A73F446}
[2007-03-17 12:10:22 | 000,000,000 | ---- | C] () -- C:\Users\konto olusiQ02\AppData\Local\{117C916F-8D92-47FF-A311-40F06FABB5D9}
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2006-11-02 14:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-08 19:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009-04-11 08:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009-04-11 08:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2013-06-28 13:03:00 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\.minecraft
[2007-02-17 19:52:19 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\Alawar
[2007-04-06 12:13:00 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\Atari
[2007-03-14 15:04:15 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\Babylon
[2012-12-16 19:32:39 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\Claro
[2013-06-22 10:11:30 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\DAEMON Tools Lite
[2013-06-11 18:55:24 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\eDownload
[2012-01-30 19:04:17 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\EurekaLog
[2012-01-19 18:29:35 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\Gadu-Gadu 10
[2013-02-13 21:19:35 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\GG
[2011-12-16 17:30:06 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\GrabPro
[2012-10-03 20:25:06 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\LolClient
[2007-02-09 13:04:30 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\OpenFM
[2013-04-02 14:06:06 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\Opera
[2011-11-19 14:18:32 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\Orbit
[2012-10-28 15:56:18 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\PerformerSoft
[2012-12-16 18:22:22 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\PlayFirst
[2007-02-01 04:48:24 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\Ponys
[2007-02-01 02:03:05 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\ProgSense
[2012-06-27 11:31:46 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\Rovio
[2012-12-05 21:06:04 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\SumatraPDF
[2012-03-29 19:20:28 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\TuxPaint
[2012-03-05 16:02:56 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\Unity
[2013-06-28 13:38:52 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\uTorrent
[2013-06-22 10:12:11 | 000,000,000 | ---D | M] -- C:\Users\konto olusiQ02\AppData\Roaming\WebCake
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:D1B5B4F1

< End of report >

Extras.txt :

OTL Extras logfile created on: 2013-06-28 13:47:29 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\konto olusiQ02\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19418)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1021,76 Mb Total Physical Memory | 295,61 Mb Available Physical Memory | 28,93% Memory free
2,25 Gb Paging File | 1,61 Gb Available in Paging File | 71,51% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 298,09 Gb Total Space | 112,31 Gb Free Space | 37,68% Space Free | Partition Type: NTFS
 
Computer Name: OLA-PC | User Name: konto olusiQ02 | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Gameforge4D\AirRivals\Launcher.atm" = C:\Program Files\Gameforge4D\AirRivals\Launcher.atm:Enabled:GameExe2
"C:\Program Files\Gameforge4D\AirRivals\Res-Voip\SCVoIP.exe" = C:\Program Files\Gameforge4D\AirRivals\Res-Voip\SCVoIP.exe:Enabled:GameVoIP
 
 
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
 
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{09B7A7B4-C016-49FF-A412-5C26E10B82D5}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe | 
"{11614EB8-CF36-43AF-93E3-0CB197023B14}" = protocol=6 | dir=in | app=c:\users\konto olusiq02\downloads\sweetimsetup.exe | 
"{235BC43B-C3D4-447B-A927-BF1F464978D7}" = protocol=6 | dir=in | app=c:\windows\system32\msiexec.exe | 
"{23F24C37-006F-48E7-8EBA-437FC714C237}" = dir=in | app=c:\program files\skype\phone\skype.exe | 
"{2953E5EE-FF28-4512-88B2-981D9ACDD18E}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{358E9B99-F895-4466-BC3E-D7965E51B3F5}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe | 
"{593EE7D9-EDB5-4FF1-92FC-F47DAE437FE4}" = dir=in | app=c:\program files\itunes\itunes.exe | 
"{69CB4AF8-A8CE-44D2-A8AA-E1F02D87CADD}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe | 
"{6A334BD1-5384-43E1-915E-8764FA3622C4}" = protocol=6 | dir=in | app=c:\users\konto olusiq02\appdata\roaming\utorrent\utorrent.exe | 
"{85375860-1D8C-451B-BE58-D27F925D7EAA}" = dir=in | app=c:\program files\skype\phone\skype.exe | 
"{8CEF2B54-60ED-4A20-8737-A27E21C979C2}" = protocol=6 | dir=in | app=c:\program files\sweetim\communicator\sweetpacksupdatemanager.exe | 
"{9460F7FF-1D33-4680-9DC0-63AD1C97D736}" = protocol=17 | dir=in | app=c:\users\konto olusiq02\downloads\sweetimsetup.exe | 
"{A2F43064-DC21-472C-B46A-DDCC0D232220}" = protocol=17 | dir=in | app=c:\program files\sweetim\communicator\sweetpacksupdatemanager.exe | 
"{ADBAEC3C-8FFD-4C11-82D9-293FA51D758B}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{B3EB6342-83B6-4E44-A4CC-B8A11CBD458C}" = protocol=17 | dir=in | app=c:\windows\system32\arfc\wrtc.exe | 
"{C301A7D0-7301-4933-8DAA-910B4AE89D45}" = protocol=17 | dir=in | app=c:\windows\system32\dmwu.exe | 
"{CA4268F6-A60A-498C-A9E4-FEB1D1D85D59}" = protocol=17 | dir=in | app=c:\users\konto olusiq02\appdata\roaming\utorrent\utorrent.exe | 
"{D4E9A2DE-5AFE-4BFD-B6AF-866FAB128BFF}" = protocol=6 | dir=in | app=c:\windows\system32\arfc\wrtc.exe | 
"{D80F8943-3FD3-4D97-8110-649297F94BD6}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe | 
"{E2CB3B00-90F6-4744-B805-C22D104386AF}" = protocol=6 | dir=in | app=c:\windows\system32\dmwu.exe | 
"{E5A494A6-8E59-4B82-BA8A-43CC0208B592}" = protocol=17 | dir=in | app=c:\windows\system32\msiexec.exe | 
"TCP Query User{007F80C8-02B1-49B8-87BF-EB88F0336230}C:\users\konto olusiq02\appdata\local\kookos\kookos.exe" = protocol=6 | dir=in | app=c:\users\konto olusiq02\appdata\local\kookos\kookos.exe | 
"TCP Query User{3B45594F-B405-4152-A44D-48004FFD0028}C:\windows\system32\rundll32.exe" = protocol=6 | dir=in | app=c:\windows\system32\rundll32.exe | 
"TCP Query User{A6226C5A-85B5-4D92-8F81-47488BA37628}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe | 
"TCP Query User{B6F62FAE-28E6-4423-ADEC-5D1F85859E2E}C:\users\konto olusiq02\appdata\local\kookos\kookos.exe" = protocol=6 | dir=in | app=c:\users\konto olusiq02\appdata\local\kookos\kookos.exe | 
"TCP Query User{BBBE4839-1BD4-4E1C-977A-AFC630E4EDB8}C:\windows\system32\javaw.exe" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe | 
"TCP Query User{CB6FE14F-4FF5-4391-B555-F813B97E3C2A}C:\program files\downvision\downvision.exe" = protocol=6 | dir=in | app=c:\program files\downvision\downvision.exe | 
"TCP Query User{FF663ACF-16F8-466A-863E-CC8356CB2F3C}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | 
"UDP Query User{052215EE-FC62-4D65-869B-7981A4C40EE0}C:\users\konto olusiq02\appdata\local\kookos\kookos.exe" = protocol=17 | dir=in | app=c:\users\konto olusiq02\appdata\local\kookos\kookos.exe | 
"UDP Query User{38922018-402D-4F88-AAD5-2D7A4CE292A9}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe | 
"UDP Query User{4C2E4CD2-28CA-49DE-A5B7-3A1FDE9418FE}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | 
"UDP Query User{63120567-2482-4C10-9587-87BA393DAB3E}C:\windows\system32\javaw.exe" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe | 
"UDP Query User{73685254-E510-4A36-8096-1F8BB856DAAE}C:\program files\downvision\downvision.exe" = protocol=17 | dir=in | app=c:\program files\downvision\downvision.exe | 
"UDP Query User{A8657D67-7B2A-4C8A-BCF1-ABC6447358CB}C:\windows\system32\rundll32.exe" = protocol=17 | dir=in | app=c:\windows\system32\rundll32.exe | 
"UDP Query User{AA1A3580-0CFB-4247-9DD1-5D2853B52C0B}C:\users\konto olusiq02\appdata\local\kookos\kookos.exe" = protocol=17 | dir=in | app=c:\users\konto olusiq02\appdata\local\kookos\kookos.exe | 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{26A24AE4-039D-4CA4-87B4-2F83217009FF}" = Java 7 Update 9
"{2C82E097-694E-44ea-A947-2750679469CF}" = The Sims™ 2
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{49D088B1-D6C2-452C-83DF-2B1F1360E8A0}" = Platypus
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{6AD9F5F3-5BD0-4000-BD9C-B536CF86D988}" = iTunes
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007
"{90120000-0016-0415-0000-0000000FF1CE}_HOMESTUDENTR_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007
"{90120000-0018-0415-0000-0000000FF1CE}_HOMESTUDENTR_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007
"{90120000-001B-0415-0000-0000000FF1CE}_HOMESTUDENTR_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007
"{90120000-001F-0415-0000-0000000FF1CE}_HOMESTUDENTR_{9CC96D78-9E1D-46E0-AF4D-3EB440CD4619}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}_HOMESTUDENTR_{0C8AB602-A234-45AB-B355-4C863C1D2FA8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007
"{90120000-00A1-0415-0000-0000000FF1CE}_HOMESTUDENTR_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{953AA732-9AFB-49C9-84A4-7F96CA0A08DA}" = SweetPacks bundle uninstaller
"{9EFDFBA8-9174-3C61-8645-28376C5CA994}" = Microsoft .NET Framework 3.5 Language Pack SP1 - plk
"{A0C9DF2B-89B5-4483-8983-18A68200F1B4}" = SweetIM for Messenger 3.7
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB40272D-92AB-4F30-B36B-22EDE16F8FE5}" = HP Update
"{AC76BA86-7AD7-1045-7B44-AA0000000001}" = Adobe Reader X (10.0.1) - Polish
"{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Sterownik 3D Vision 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Sterownik kontrolera 3D Vision 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.10.8
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}" = Internet Explorer Toolbar 4.6 by SweetPacks
"{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}" = WebCake 3.00
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D9B4D7EE-481C-4C36-86AB-A8F7417725FF}" = LightScribe  1.6.43.1
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E4EFB3BD-3B1F-4D3C-AC0A-E443AC462729}" = ESET NOD32 Antivirus
"{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}" = Babylon Chrome Toolbar
"{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0
"{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}" = Update Manager for SweetPacks 1.1
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F1FDAA01-988C-423F-AC12-0D8F333943FD}" = Nokia Connectivity Cable Driver
"{F2527115-B8BF-4FDB-B5DA-5AADFB7C13E1}" = The Sims Pełna kolekcja
"{F61DD673-0030-4BB2-A382-7E57E97F1045}" = Nero 7 Essentials
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"avast" = avast! Free Antivirus
"CCleaner" = CCleaner
"Creative Live! Cam Manager" = Creative Live! Cam Manager
"Creative Photo Manager" = Creative Photo Manager
"Creative VF0420" = Creative Live! Cam Vista IM Driver (1.00.03.0000)
"DAEMON Tools Lite" = DAEMON Tools Lite
"eSafeSecControl" = eSafe Security Control 1.0.0.2359
"FOX Jones" = FOX Jones
"Google Chrome" = Google Chrome
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0
"htm" = High Tech Marketing SL toolbar  on IE and Chrome
"iLivid" = iLivid
"Lost Idols" = Lost Idols
"Microsoft .NET Framework 3.5 Language Pack SP1 - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Minecraft 1.2.0_02" = Minecraft 1.2.0_02
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"PDF Creator" = PDF Creator
"Pet Shop Hop_is1" = Pet Shop Hop
"QuickTime" = QuickTime
"Scooby-Doo(TM) i Strachy na lachy(TM)" = Scooby-Doo(TM) i Strachy na lachy(TM)
"SysInfo" = Creative System Information
"TUTO4PC_is1" = TUTO4PC
"tuto4pc_pl_6_is1" = tuto4pc_pl_6
"uTorrent" = µTorrent
"Winamp" = Winamp
"WinRAR archiver" = WinRAR 4.20 (32-bit)
"WNLT" = IB Updater Service
 
[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"PDF Reader" = PDF Reader
 
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 2012-08-12 13:44:24 | Computer Name = Ola-PC | Source = SideBySide | ID = 16842785
Description = Nie można wygenerować kontekstu aktywacji dla "C:\Program Files\AVAST
 Software\Avast\AvastUI.exe".  Nie można odnaleźć zestawu zależnego Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8".
Użyj
 narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę.
 
Error - 2012-08-12 14:03:20 | Computer Name = Ola-PC | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd chrome.exe, wersja 21.0.1180.75, sygnatura
 czasowa 0x5020a04e, moduł powodujący błąd ole32.dll, wersja 6.0.6002.18277, sygnatura
 czasowa 0x4c28d53e, kod wyjątku 0xc0000005, przesunięcie błędu 0x0004a246,  identyfikator
 procesu 0xed0, godzina rozpoczęcia aplikacji 0x01cd78b3cb5c5580.
 
Error - 2012-08-12 14:25:35 | Computer Name = Ola-PC | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd chrome.exe, wersja 21.0.1180.75, sygnatura
 czasowa 0x5020a04e, moduł powodujący błąd ole32.dll, wersja 6.0.6002.18277, sygnatura
 czasowa 0x4c28d53e, kod wyjątku 0xc0000005, przesunięcie błędu 0x00047333,  identyfikator
 procesu 0x17a8, godzina rozpoczęcia aplikacji 0x01cd78b753318f40.
 
Error - 2012-08-12 14:55:10 | Computer Name = Ola-PC | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd chrome.exe, wersja 21.0.1180.75, sygnatura
 czasowa 0x5020a04e, moduł powodujący błąd ole32.dll, wersja 6.0.6002.18277, sygnatura
 czasowa 0x4c28d53e, kod wyjątku 0xc0000005, przesunięcie błędu 0x0004a246,  identyfikator
 procesu 0x14e8, godzina rozpoczęcia aplikacji 0x01cd78b80feb4f90.
 
Error - 2012-08-12 15:26:57 | Computer Name = Ola-PC | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd chrome.exe, wersja 21.0.1180.75, sygnatura
 czasowa 0x5020a04e, moduł powodujący błąd ole32.dll, wersja 6.0.6002.18277, sygnatura
 czasowa 0x4c28d53e, kod wyjątku 0xc0000005, przesunięcie błędu 0x0004a246,  identyfikator
 procesu 0x15a4, godzina rozpoczęcia aplikacji 0x01cd78c0558a0f20.
 
Error - 2012-08-13 08:31:58 | Computer Name = Ola-PC | Source = SideBySide | ID = 16842785
Description = Nie można wygenerować kontekstu aktywacji dla "C:\Program Files\AVAST
 Software\Avast\AvastUI.exe".  Nie można odnaleźć zestawu zależnego Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8".
Użyj
 narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę.
 
Error - 2012-08-13 09:13:51 | Computer Name = Ola-PC | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd uninstal.exe, wersja 3.0.21.0, sygnatura
 czasowa 0x38c58a25, moduł powodujący błąd uninstal.exe, wersja 3.0.21.0, sygnatura
 czasowa 0x38c58a25, kod wyjątku 0xc0000005, przesunięcie błędu 0x00001399,  identyfikator
 procesu 0xb10, godzina rozpoczęcia aplikacji 0x01cd79557384b370.
 
Error - 2012-08-13 09:14:11 | Computer Name = Ola-PC | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd uninstal.exe, wersja 3.0.21.0, sygnatura
 czasowa 0x38c58a25, moduł powodujący błąd uninstal.exe, wersja 3.0.21.0, sygnatura
 czasowa 0x38c58a25, kod wyjątku 0xc0000005, przesunięcie błędu 0x00001399,  identyfikator
 procesu 0xe74, godzina rozpoczęcia aplikacji 0x01cd7955866f6200.
 
Error - 2012-08-13 09:48:57 | Computer Name = Ola-PC | Source = Application Hang | ID = 1002
Description = Program javaw.exe w wersji 7.0.50.6 zatrzymał interakcję z systemem
 Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji
 dotyczących tego problemu, sprawdź historię problemu w panelu sterowania raportami
 i rozwiązaniami problemów.  Identyfikator procesu: cec  Godzina rozpoczęcia: 01cd7955afe93610
Godzina
 zakończenia: 27270
 
Error - 2012-08-13 14:49:16 | Computer Name = Ola-PC | Source = SideBySide | ID = 16842785
Description = Nie można wygenerować kontekstu aktywacji dla "C:\Program Files\AVAST
 Software\Avast\AvastUI.exe".  Nie można odnaleźć zestawu zależnego Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8".
Użyj
 narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę.
 
[ System Events ]
Error - 2013-06-28 07:00:53 | Computer Name = Ola-PC | Source = Service Control Manager | ID = 7022
Description = 
 
Error - 2013-06-28 07:00:53 | Computer Name = Ola-PC | Source = Service Control Manager | ID = 7011
Description = 
 
Error - 2013-06-28 07:00:53 | Computer Name = Ola-PC | Source = Service Control Manager | ID = 7011
Description = 
 
Error - 2013-06-28 07:40:27 | Computer Name = Ola-PC | Source = EventLog | ID = 6008
Description = Poprzednie zamknięcie systemu przy 13:38:13 na 2013-06-28 było nieoczekiwane.
 
Error - 2013-06-28 07:40:47 | Computer Name = Ola-PC | Source = DCOM | ID = 10005
Description = 
 
Error - 2013-06-28 07:40:56 | Computer Name = Ola-PC | Source = DCOM | ID = 10005
Description = 
 
Error - 2013-06-28 07:41:04 | Computer Name = Ola-PC | Source = DCOM | ID = 10005
Description = 
 
Error - 2013-06-28 07:41:05 | Computer Name = Ola-PC | Source = DCOM | ID = 10005
Description = 
 
Error - 2013-06-28 07:41:15 | Computer Name = Ola-PC | Source = Service Control Manager | ID = 7001
Description = 
 
Error - 2013-06-28 07:41:15 | Computer Name = Ola-PC | Source = Service Control Manager | ID = 7026
Description = 
 
 
< End of report >

Jeśli coś źle wkleiłem piszcie. I czekam na pomoc :)

Zayfi
komentarz
komentarz

Uruchom OTL i w oknie Własne opcje skanowania/skrypt wklej

:OTL
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=vlt&from=vlt&uid=SAMSUNG_HD321KJ_S0MQJ1PP601936&ts=1354734249
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.v9.com/?utm_source=b&utm_medium=vlt&from=vlt&uid=SAMSUNG_HD321KJ_S0MQJ1PP601936&ts=1354734249
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.v9.com/web/?q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.v9.com/web/?q={searchTerms}
IE - HKLM\..\URLSearchHook: {707db484-2428-402d-afb5-d85b387544c7} - No CLSID value found
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=390&systemid=406&sr=0&q={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2612669
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=vlt&from=vlt&uid=SAMSUNG_HD321KJ_S0MQJ1PP601936&ts=1354734249
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2612669
IE - HKCU\..\URLSearchHook: {8532a8b7-c06a-41bb-936a-8ce73e4711ed} - No CLSID value found
IE - HKCU\..\URLSearchHook: {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - No CLSID value found
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.v9.com/web/?q={searchTerms}
IE - HKCU\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=stonicpl&s={searchTerms}&f=4
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www.claro-search.com/?q={searchTerms}&affID=110824&tt=5012_8&babsrc=SP_ss&mntrId=1a8fe0e8000000000000001a4d509498
IE - HKCU\..\SearchScopes\{2F4F32AF-B078-44C4-81D0-C69152471E1A}: "URL" = http://www.claro-search.com/?q={searchTerms}&affID=110824&tt=5012_8&babsrc=SP_ss&mntrId=1a8fe0e8000000000000001a4d509498
IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.v9.com/web/?q={searchTerms}
O3 - HKLM\..\Toolbar: (no name) - {707db484-2428-402d-afb5-d85b387544c7} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {8532A8B7-C06A-41BB-936A-8CE73E4711ED} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A5AE8924-4036-420F-B7F6-A47E4B8F692E} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKCU..\Run: [Kookos] C:\Users\konto olusiQ02\AppData\Local\Kookos\kookos.exe ()
O4 - HKCU..\Run: [sp] C:\Windows\system32\rundll32.exe "C:\Users\konto olusiQ02\AppData\Roaming\.minecraft\sp.DLL",ServiceMain File not found
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)

:Files
C:\Program Files\mozilla firefox\searchplugins\babylon.xml
C:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml
C:\Windows\System32\dmwu.exe
C:\Windows\System32\ImHttpComm.dll
C:\Users\konto olusiQ02\AppData\Local\promo.exe
C:\Users\konto olusiQ02\AppData\Roaming\Babylon
C:\Users\konto olusiQ02\AppData\Roaming\WebCake

:Commands
[emptytemp]

Kliknij w Wykonaj skrypt.

 

 

Wcale się nie dziwie że system nie chce się uruchomić. Masz dwa antywirusy ESET i Avast.

 

Jeden trzeba odinstalować

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.