Forum elektroda.pl

Regulamin  | Punkty  | Dodaj...  | Ostatnie  | Szukaj  | Rejestracja  | Zaloguj

Ta strona używa cookie. Dowiedz się więcej o celu ich używania i zmianie ustawień cookie w przeglądarce.
Korzystając ze strony wyrażasz zgodę na używanie cookie, zgodnie z aktualnymi ustawieniami przeglądarki.

Windows 7 : Delta Chrome Toolbar


Napisz nowy temat  Temat zablokowany      Strona Główna -> Forum elektroda.pl -> Komputery Serwis -> Pogotowie Antywirusowe -> Windows 7 : Delta Chrome Toolbar
Autor
Wiadomość
bartosz789
Poziom 22
Poziom 22


Dołączył: 14 Sie 2007
Posty: 1931
Miasto: Krakow

Post#1 Post autora tematu 30 Kwi 2013 14:39   

Windows 7 : Delta Chrome Toolbar


Witam !

Miałem problem z "Delta Chrome Toolbar", lecz sobie poradziłem.
Chciałbym być pewien czy wszystko jest w porządku.

OTL
Kod Text - [rozwiń]
OTL logfile created on: 2013-04-30 14:25:53 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\knife\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16540)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,96 Gb Total Physical Memory | 2,18 Gb Available Physical Memory | 55,02% Memory free
7,93 Gb Paging File | 5,65 Gb Available in Paging File | 71,29% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 74,43 Gb Total Space | 4,55 Gb Free Space | 6,11% Space Free | Partition Type: NTFS
Drive F: | 660,36 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: KNIFE-KOMPUTER | User Name: knife | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2013-04-30 14:25:34 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\knife\Downloads\OTL.exe
PRC - [2013-04-09 10:57:09 | 001,312,720 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013-04-03 15:49:55 | 000,389,016 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
PRC - [2013-03-05 02:10:56 | 000,070,152 | ---- | M] (Nalpeiron Ltd.) -- C:\Windows\SysWOW64\NLSSRV32.EXE
PRC - [2013-02-28 21:13:08 | 000,356,376 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
PRC - [2012-12-09 09:34:31 | 003,540,416 | ---- | M] (Tonec Inc.) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
PRC - [2012-12-04 00:40:35 | 000,212,992 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\guiminer.exe
PRC - [2012-12-04 00:40:35 | 000,024,064 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\poclbm.exe
PRC - [2012-11-16 12:38:38 | 001,773,568 | ---- | M] (Peter Pawlowski) -- C:\Program Files (x86)\foobar2000\foobar2000.exe
 
 
========== Modules (No Company Name) =========
 
MOD - [2013-04-09 10:57:07 | 000,390,096 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll
MOD - [2013-04-09 10:57:05 | 004,050,896 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll
MOD - [2013-04-09 10:56:15 | 000,598,480 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libglesv2.dll
MOD - [2013-04-09 10:56:14 | 000,124,368 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libegl.dll
MOD - [2013-04-09 10:56:13 | 001,606,096 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ffmpegsumo.dll
MOD - [2013-04-03 15:49:55 | 002,243,480 | ---- | M] () -- C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
MOD - [2013-04-03 15:49:55 | 000,158,104 | ---- | M] () -- C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
MOD - [2013-04-03 15:49:55 | 000,022,424 | ---- | M] () -- C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
MOD - [2013-03-22 16:08:36 | 002,520,016 | ---- | M] () -- c:\ProgramData\BrowserProtect\2.6.1249.132\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.dll
MOD - [2013-02-22 18:59:44 | 006,523,472 | ---- | M] () -- C:\PROGRA~2\MICROS~1\Office15\1033\GrooveIntlResource.dll
MOD - [2012-12-04 00:40:35 | 000,212,992 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\guiminer.exe
MOD - [2012-12-04 00:40:35 | 000,024,064 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\poclbm.exe
MOD - [2012-11-16 12:37:14 | 001,627,648 | ---- | M] () -- C:\Program Files (x86)\foobar2000\components\foo_input_std.dll
MOD - [2012-11-16 12:37:14 | 000,359,424 | ---- | M] () -- C:\Program Files (x86)\foobar2000\components\foo_albumlist.dll
MOD - [2012-11-16 12:37:10 | 000,278,016 | ---- | M] () -- C:\Program Files (x86)\foobar2000\components\foo_dsp_std.dll
MOD - [2012-11-16 12:36:52 | 000,915,456 | ---- | M] () -- C:\Program Files (x86)\foobar2000\components\foo_ui_std.dll
MOD - [2012-11-16 12:36:52 | 000,303,616 | ---- | M] () -- C:\Program Files (x86)\foobar2000\components\foo_cdda.dll
MOD - [2012-11-16 12:36:30 | 000,291,840 | ---- | M] () -- C:\Program Files (x86)\foobar2000\components\foo_rgscan.dll
MOD - [2012-11-16 12:36:28 | 000,491,008 | ---- | M] () -- C:\Program Files (x86)\foobar2000\components\foo_converter.dll
MOD - [2012-11-16 12:34:58 | 000,150,016 | ---- | M] () -- C:\Program Files (x86)\foobar2000\shared.dll
MOD - [2012-11-09 13:14:58 | 000,091,662 | ---- | M] () -- C:\Program Files (x86)\foobar2000\zlib1.dll
MOD - [2012-10-27 16:21:14 | 000,098,816 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\win32api.pyd
MOD - [2012-10-27 16:20:44 | 000,035,840 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\win32process.pyd
MOD - [2012-10-27 16:20:08 | 000,110,080 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\pywintypes27.dll
MOD - [2012-09-20 04:42:24 | 000,515,437 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\numpy.random.mtrand.pyd
MOD - [2012-09-20 04:42:02 | 002,382,083 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\numpy.linalg.lapack_lite.pyd
MOD - [2012-09-20 04:41:56 | 000,046,383 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\numpy.fft.fftpack_lite.pyd
MOD - [2012-09-20 04:41:44 | 000,041,019 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\numpy.lib._compiled_base.pyd
MOD - [2012-09-20 04:41:30 | 002,222,455 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\numpy.core._dotblas.pyd
MOD - [2012-09-20 04:41:24 | 000,174,793 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\numpy.core.scalarmath.pyd
MOD - [2012-09-20 04:41:14 | 000,410,432 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\numpy.core.umath.pyd
MOD - [2012-09-20 04:41:02 | 001,311,275 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\numpy.core.multiarray.pyd
MOD - [2012-08-17 21:38:56 | 000,479,160 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\dblite.dll
MOD - [2012-06-19 18:01:36 | 000,577,536 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\pyopencl._cl.pyd
MOD - [2012-06-15 14:20:30 | 000,219,648 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\boost_python-vc90-mt-1_48.dll
MOD - [2012-04-11 04:31:56 | 000,285,184 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\_hashlib.pyd
MOD - [2012-04-11 04:31:56 | 000,074,240 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\_ctypes.pyd
MOD - [2012-04-11 04:31:56 | 000,009,728 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\select.pyd
MOD - [2012-04-11 04:31:54 | 000,040,960 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\_socket.pyd
MOD - [2011-07-16 03:38:22 | 000,674,816 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\wx._misc_.pyd
MOD - [2011-07-16 03:38:12 | 000,966,144 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\wx._controls_.pyd
MOD - [2011-07-16 03:38:06 | 000,670,720 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\wx._windows_.pyd
MOD - [2011-07-16 03:38:00 | 000,746,496 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\wx._gdi_.pyd
MOD - [2011-07-16 03:37:48 | 000,981,504 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\wx._core_.pyd
MOD - [2011-07-16 03:34:26 | 000,479,744 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\wxmsw28uh_html_vc.dll
MOD - [2011-07-16 03:34:16 | 000,730,112 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\wxmsw28uh_adv_vc.dll
MOD - [2011-07-16 03:34:10 | 003,165,184 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\wxmsw28uh_core_vc.dll
MOD - [2011-07-16 03:33:40 | 000,122,368 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\wxbase28uh_net_vc.dll
MOD - [2011-07-16 03:33:38 | 001,300,992 | ---- | M] () -- C:\Users\knife\Downloads\guiminer\wxbase28uh_vc.dll
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2013-03-21 03:51:56 | 000,240,640 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2013-03-05 02:10:50 | 000,230,408 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe -- (NitroDriverReadSpool8)
SRV:64bit: - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2007-04-19 16:43:56 | 000,566,192 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysNative\lxczcoms.exe -- (lxcz_device)
SRV - [2013-03-13 20:41:22 | 000,253,656 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013-03-05 02:10:56 | 000,070,152 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\Windows\SysWOW64\NLSSRV32.EXE -- (nlsX86cc)
SRV - [2013-02-28 21:13:08 | 000,356,376 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe -- (AVP)
SRV - [2013-02-28 18:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013-02-25 08:39:32 | 000,543,144 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013-01-16 13:09:58 | 000,115,624 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-12-19 10:49:34 | 000,732,648 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2012-12-14 12:08:50 | 002,466,304 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2010-06-25 19:07:20 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd)
SRV - [2010-03-18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007-04-19 16:43:42 | 000,537,520 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysWOW64\lxczcoms.exe -- (lxcz_device)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
DRV:64bit: - [2013-04-28 17:50:48 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013-04-22 14:05:11 | 000,620,128 | ---- | M] (Kaspersky Lab ZAO) [File_System | System | Running] -- C:\Windows\SysNative\drivers\klif.sys -- (KLIF)
DRV:64bit: - [2013-04-22 14:05:11 | 000,178,448 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\kneps.sys -- (kneps)
DRV:64bit: - [2013-04-22 14:05:11 | 000,055,056 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\kltdi.sys -- (kltdi)
DRV:64bit: - [2013-03-21 08:32:46 | 011,613,184 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013-03-21 03:25:58 | 000,576,000 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2013-02-28 21:13:06 | 000,029,528 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klmouflt.sys -- (klmouflt)
DRV:64bit: - [2013-02-28 21:13:06 | 000,029,016 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klkbdflt.sys -- (klkbdflt)
DRV:64bit: - [2013-01-15 12:11:26 | 000,096,768 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2013-01-06 10:46:15 | 000,027,760 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc)
DRV:64bit: - [2013-01-06 10:46:15 | 000,014,448 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt)
DRV:64bit: - [2012-11-09 16:33:30 | 000,171,008 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nmwcdnsux64.sys -- (nmwcdnsux64)
DRV:64bit: - [2012-11-09 16:33:30 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2012-11-09 16:33:30 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2012-11-09 16:33:30 | 000,012,800 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nmwcdnsucx64.sys -- (nmwcdnsucx64)
DRV:64bit: - [2012-11-09 16:33:30 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2012-11-09 16:33:30 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2012-10-17 14:53:46 | 000,026,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2012-09-28 11:32:56 | 000,053,760 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012-09-27 20:07:26 | 000,160,992 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\idmwfp.sys -- (IDMWFP)
DRV:64bit: - [2012-08-23 16:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012-08-23 16:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012-08-21 14:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012-08-02 15:09:34 | 000,028,504 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\klim6.sys -- (KLIM6)
DRV:64bit: - [2012-06-19 17:28:12 | 000,458,584 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\kl1.sys -- (kl1)
DRV:64bit: - [2012-03-01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011-03-11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011-03-11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011-02-08 07:30:52 | 000,064,512 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronXHCI.sys -- (EtronXHCI)
DRV:64bit: - [2011-02-08 07:30:52 | 000,039,936 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronHub3.sys -- (EtronHub3)
DRV:64bit: - [2011-01-15 18:21:04 | 000,036,352 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VClone.sys -- (VClone)
DRV:64bit: - [2010-12-17 00:58:14 | 000,040,816 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2010-11-20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010-11-20 12:43:57 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2010-10-20 00:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010-06-25 19:07:26 | 000,035,344 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\npf.sys -- (NPF)
DRV:64bit: - [2010-06-23 11:10:56 | 000,344,680 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010-01-29 10:59:20 | 000,019,968 | ---- | M] (Danish Wireless Design A/S) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\FlashUSB_x64.sys -- (FlashUSB)
DRV:64bit: - [2009-09-21 02:43:52 | 000,161,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_mdm.sys -- (ss_mdm)
DRV:64bit: - [2009-09-21 02:43:52 | 000,127,488 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bus.sys -- (ss_bus)
DRV:64bit: - [2009-09-21 02:43:52 | 000,018,944 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_mdfl.sys -- (ss_mdfl)
DRV:64bit: - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009-06-10 22:35:53 | 000,051,712 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rtnic64.sys -- (RTL8023x64)
DRV:64bit: - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009-03-18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www2.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=221EBC5FF40B7C81
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes,DefaultScope = {EE9D9FAE-F70D-47D9-B896-AC0E211EF356}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www2.delta-search.com/?q={searchTerms}&affID=119816&babsrc=SP_ss&mntrId=221EBC5FF40B7C81
IE - HKCU\..\SearchScopes\{EE9D9FAE-F70D-47D9-B896-AC0E211EF356}: "URL" = http://www.bing.com/search?q={searchTerms}&r=
IE - HKCU\..\SearchScopes\{FE234AF4-1FA5-455C-99BD-03E9D98D30BC}: "URL" = http://search.softonic.com/INF00046/tb_v1?q={searchTerms}&SearchSource=4&cc=&r=159
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1
 
 
========== FireFox ==========
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll File not found
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\url_advisor@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com [2013-04-22 14:05:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtual_keyboard@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com [2013-04-22 14:05:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\anti_banner@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com [2013-04-22 14:05:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\online_banking@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com [2013-04-22 14:05:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\content_blocker@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com [2013-04-22 14:05:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.5\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013-04-03 15:49:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.5\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\knife\AppData\Roaming\IDM\idmmzcc5 [2012-12-08 10:27:56 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 17.0.5\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013-04-03 15:49:50 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 17.0.5\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\knife\AppData\Roaming\IDM\idmmzcc5 [2012-12-08 10:27:56 | 000,000,000 | ---D | M]
 
[2013-01-17 00:27:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\knife\AppData\Roaming\mozilla\Extensions
[2013-01-11 04:06:08 | 000,033,968 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll
 
========== Chrome ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://google.pl/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll
CHR - plugin: Foxit Reader Plugin for Mozilla (Disabled) = C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_110.dll
CHR - Extension: Dysk Google = C:\Users\knife\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\knife\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Adblock Plus = C:\Users\knife\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.4_0\
CHR - Extension: Szukaj w Google = C:\Users\knife\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Foxtab Speed Dial = C:\Users\knife\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoecifcadmambfikillppkoafmgachp\8.0.1_0\
CHR - Extension: Wood = C:\Users\knife\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgicbkmmehfjkbbiflaajnnpdhmfnkgi\1_0\
CHR - Extension: Opisz i wy\u015Blij screen = C:\Users\knife\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdddabjhelpilpnpgondfmehhcplpiin\6.7_0\
CHR - Extension: LastPass Vault = C:\Users\knife\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncliohomlfopnmlfkepkcbnhmeijkhhf\2.0.21_0\
CHR - Extension: Gmail = C:\Users\knife\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
CHR - Extension: Blokowanie baner\u00F3w = C:\Users\knife\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\13.0.1.4190_0\
 
O1 HOSTS File: ([2013-04-29 10:05:57 | 000,000,000 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (Internet Download Manager, Tonec Inc.)
O2:64bit: - BHO: (Content Blocker Plugin) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
O2:64bit: - BHO: (Virtual Keyboard Plugin) - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O2:64bit: - BHO: (Safe Money Plugin) - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
O2:64bit: - BHO: (URL Advisor Plugin) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (Content Blocker Plugin) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
O2 - BHO: (Virtual Keyboard Plugin) - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Safe Money Plugin) - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (URL Advisor Plugin) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe (Kaspersky Lab ZAO)
O4 - HKCU..\Run: [] File not found
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKCU..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8:64bit: - Extra context menu item: Dodaj do listy blokowanych banerów - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm ()
O8:64bit: - Extra context menu item: Ściągnij przez IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()
O8:64bit: - Extra context menu item: Ściągnij wszystkie linki przez IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Dodaj do listy blokowanych banerów - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm ()
O8 - Extra context menu item: Ściągnij przez IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()
O9:64bit: - Extra Button: &Klawiatura wirtualna - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O9:64bit: - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra Button: &Klawiatura wirtualna - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O9 - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{469EA6D3-BF82-4CDC-A130-27875B2C1F1F}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CF3FD91A-93F7-474E-909F-C0B8ECD5F38E}: DhcpNameServer = 192.168.1.1 192.168.1.1
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20 - AppInit_DLLs: (c:\progra~3\browse~1\261249~1.132\{c16c1~1\browse~1.dll) - c:\ProgramData\BrowserProtect\2.6.1249.132\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.dll ()
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013-04-29 10:05:57 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013-04-30 13:41:37 | 000,000,000 | ---D | C] -- C:\Users\knife\Desktop\PTP-Wybuchowa_Receptura (2010)
[2013-04-29 11:13:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2013-04-29 11:08:51 | 007,396,224 | ---- | C] (Enigma Software Group USA, LLC.) -- C:\Windows\SysNative\SpyHunter4.exe
[2013-04-29 11:08:35 | 007,396,224 | ---- | C] (Enigma Software Group USA, LLC.) -- C:\Windows\SysNative\original.exe
[2013-04-29 10:22:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
[2013-04-28 20:32:10 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\searchplugins
[2013-04-28 20:32:10 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Extensions
[2013-04-28 20:25:31 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2013-04-28 19:57:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
[2013-04-28 19:57:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rockstar Games
[2013-04-28 17:52:00 | 000,000,000 | ---D | C] -- C:\Users\knife\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect
[2013-04-28 17:51:57 | 000,000,000 | ---D | C] -- C:\ProgramData\BrowserProtect
[2013-04-28 17:51:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2013-04-28 17:50:48 | 000,283,200 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2013-04-28 17:50:46 | 000,000,000 | ---D | C] -- C:\Users\knife\AppData\Roaming\DAEMON Tools Lite
[2013-04-28 17:50:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2013-04-28 17:50:16 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2013-04-28 13:27:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2013-04-28 13:27:02 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013-04-28 12:37:34 | 000,000,000 | ---D | C] -- C:\Users\knife\Desktop\KALI_-_50.50
[2013-04-27 12:52:44 | 000,000,000 | ---D | C] -- C:\Users\knife\Desktop\Schematy
[2013-04-18 22:41:53 | 000,000,000 | ---D | C] -- C:\Users\knife\AppData\Roaming\1by1
[2013-04-18 13:50:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2013-04-17 14:52:40 | 000,000,000 | ---D | C] -- C:\Users\knife\AppData\Roaming\Hive Cluster
[2013-04-17 14:18:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2013
[2013-04-17 14:18:44 | 000,064,856 | ---- | C] (Kaspersky Lab) -- C:\Windows\SysNative\klfphc.dll
[2013-04-17 14:17:29 | 000,000,000 | ---D | C] -- C:\Windows\ELAMBKUP
[2013-04-17 14:17:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Sidebar
[2013-04-17 14:17:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2013-04-17 14:17:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Kaspersky Lab
[2013-04-17 14:17:17 | 000,620,128 | ---- | C] (Kaspersky Lab ZAO) -- C:\Windows\SysNative\drivers\klif.sys
[2013-04-17 14:17:17 | 000,090,208 | ---- | C] (Kaspersky Lab ZAO) -- C:\Windows\SysNative\drivers\klflt.sys
[2013-04-17 13:57:00 | 000,000,000 | --SD | C] -- C:\Users\knife\Documents\Passwords Database
[2013-04-14 20:47:05 | 000,181,064 | ---- | C] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[2013-04-14 15:19:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013-04-10 03:04:35 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013-04-10 03:04:34 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013-04-10 03:04:34 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013-04-10 03:04:33 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013-04-10 03:04:33 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013-04-10 03:04:33 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013-04-10 03:04:32 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013-04-10 03:04:32 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013-04-10 03:04:32 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013-04-10 03:04:32 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013-04-10 03:04:32 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013-04-10 03:04:32 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013-04-10 03:04:29 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013-04-10 03:04:29 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013-04-10 03:04:28 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013-04-10 00:37:44 | 005,550,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2013-04-10 00:37:43 | 003,913,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2013-04-10 00:37:41 | 003,968,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2013-04-10 00:37:32 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2013-04-10 00:37:32 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2013-04-10 00:37:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2013-04-09 22:56:27 | 000,000,000 | ---D | C] -- C:\Users\knife\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antichamber
[2013-04-09 22:48:46 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin
[2013-04-09 22:48:22 | 000,000,000 | ---D | C] -- C:\Users\knife\AppData\Roaming\Copy
[2013-04-09 16:21:38 | 000,000,000 | ---D | C] -- C:\Users\knife\AppData\Roaming\Bitcoin
[2013-04-08 18:55:49 | 000,000,000 | ---D | C] -- C:\Users\knife\Desktop\MlodyM.Radonis-Kronika.III.Zaklety.Krag
[2013-04-08 17:15:05 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2013-04-08 17:14:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT
[2013-04-08 17:14:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP
[2013-04-08 17:14:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2013-04-08 17:05:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSI Afterburner
[2013-04-07 22:17:57 | 000,000,000 | ---D | C] -- C:\Users\knife\AppData\Roaming\poclbm
[2013-04-06 23:45:51 | 000,000,000 | ---D | C] -- C:\Users\knife\AppData\Roaming\HD Tune Pro
[2013-04-06 23:45:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HD Tune Pro
[2013-04-05 21:00:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Audacity
[2013-04-05 17:22:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2013-04-05 17:22:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013-04-05 17:22:32 | 000,262,560 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013-04-05 17:22:23 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013-04-05 17:22:23 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013-04-05 17:22:23 | 000,095,648 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013-04-04 11:44:34 | 000,314,880 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe
[2013-04-03 22:23:49 | 000,000,000 | ---D | C] -- C:\Users\knife\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
[2013-04-03 22:23:40 | 000,000,000 | ---D | C] -- C:\Users\knife\AppData\Roaming\LastPass
[2013-04-03 15:49:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird
[2012-12-15 23:29:55 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\knife\AppData\Roaming\pcouffin.sys
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2013-04-30 13:57:00 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2131279951-1460999497-1398546926-1004UA.job
[2013-04-30 13:50:00 | 000,001,046 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013-04-30 13:41:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013-04-30 10:25:26 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013-04-30 10:25:26 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013-04-30 10:18:30 | 000,001,042 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013-04-30 10:18:29 | 000,000,354 | ---- | M] () -- C:\Windows\tasks\ROC_JAN2013_TB_rmv.job
[2013-04-30 10:17:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013-04-30 10:17:55 | 3192,721,408 | -HS- | M] () -- C:\hiberfil.sys
[2013-04-29 20:47:31 | 000,000,711 | ---- | M] () -- C:\Windows\wininit.ini
[2013-04-29 20:45:22 | 001,663,328 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013-04-29 20:45:22 | 000,737,922 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2013-04-29 20:45:22 | 000,652,130 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013-04-29 20:45:22 | 000,154,610 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2013-04-29 20:45:22 | 000,121,062 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013-04-29 16:57:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2131279951-1460999497-1398546926-1004Core.job
[2013-04-29 10:23:03 | 000,001,190 | ---- | M] () -- C:\Users\Public\Desktop\aTube Catcher.lnk
[2013-04-29 10:05:57 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013-04-29 10:05:57 | 000,000,000 | ---- | M] () -- C:\autoexec.bat
[2013-04-28 17:50:48 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2013-04-22 14:05:11 | 000,620,128 | ---- | M] (Kaspersky Lab ZAO) -- C:\Windows\SysNative\drivers\klif.sys
[2013-04-22 14:05:11 | 000,178,448 | ---- | M] (Kaspersky Lab ZAO) -- C:\Windows\SysNative\drivers\kneps.sys
[2013-04-22 14:05:11 | 000,090,208 | ---- | M] (Kaspersky Lab ZAO) -- C:\Windows\SysNative\drivers\klflt.sys
[2013-04-22 14:05:11 | 000,055,056 | ---- | M] (Kaspersky Lab ZAO) -- C:\Windows\SysNative\drivers\kltdi.sys
[2013-04-14 20:47:05 | 000,181,064 | ---- | M] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[2013-04-10 03:35:00 | 000,375,544 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013-04-05 17:22:20 | 000,861,088 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2013-04-05 17:22:20 | 000,782,240 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2013-04-05 17:22:20 | 000,262,560 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013-04-05 17:22:20 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013-04-05 17:22:20 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013-04-05 17:22:20 | 000,095,648 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013-04-03 16:47:42 | 000,421,649 | ---- | M] () -- C:\Users\knife\Documents\2 (2).jpg
[2013-04-03 16:45:52 | 000,448,989 | ---- | M] () -- C:\Users\knife\Documents\1 (2).jpg
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2013-04-29 11:57:09 | 000,000,711 | ---- | C] () -- C:\Windows\wininit.ini
[2013-04-29 10:23:03 | 000,001,190 | ---- | C] () -- C:\Users\Public\Desktop\aTube Catcher.lnk
[2013-04-29 10:05:57 | 000,000,000 | ---- | C] () -- C:\autoexec.bat
[2013-04-06 13:36:21 | 115,158,648 | ---- | C] () -- C:\Users\knife\Desktop\4Clubbers Hit Mix Electro House vol.1 (2013) by Pete Stan www.4clubbers.com.pl.mp3
[2013-04-06 13:28:03 | 116,146,524 | ---- | C] () -- C:\Users\knife\Desktop\444444444444444444444444444444444444444444444444444444444444444444r.mp3
[2013-04-05 21:00:59 | 000,001,023 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
[2013-04-03 16:47:42 | 000,421,649 | ---- | C] () -- C:\Users\knife\Documents\2 (2).jpg
[2013-04-03 16:44:33 | 000,448,989 | ---- | C] () -- C:\Users\knife\Documents\1 (2).jpg
[2013-03-03 21:16:48 | 000,001,057 | ---- | C] () -- C:\Users\knife\AppData\Roaming\vso_ts_preview.xml
[2013-01-23 23:39:41 | 000,000,193 | ---- | C] () -- C:\Windows\disney.ini
[2013-01-17 12:39:05 | 000,065,536 | ---- | C] () -- C:\Windows\IFinst27.exe
[2013-01-11 01:28:04 | 000,020,760 | ---- | C] () -- C:\Windows\CUAppUsage.Dat
[2013-01-09 22:36:13 | 000,000,103 | ---- | C] () -- C:\Windows\pro.INI
[2012-12-15 23:29:55 | 000,099,384 | ---- | C] () -- C:\Users\knife\AppData\Roaming\inst.exe
[2012-12-15 23:29:55 | 000,007,859 | ---- | C] () -- C:\Users\knife\AppData\Roaming\pcouffin.cat
[2012-12-15 23:29:55 | 000,001,167 | ---- | C] () -- C:\Users\knife\AppData\Roaming\pcouffin.inf
[2012-12-10 19:13:02 | 000,000,300 | ---- | C] () -- C:\Windows\Lexstat.ini
[2012-12-10 19:12:28 | 001,224,704 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczserv.dll
[2012-12-10 19:12:28 | 000,991,232 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczusb1.dll
[2012-12-10 19:12:28 | 000,696,320 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczhbn3.dll
[2012-12-10 19:12:28 | 000,684,032 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczcomc.dll
[2012-12-10 19:12:28 | 000,643,072 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczpmui.dll
[2012-12-10 19:12:28 | 000,585,728 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczlmpm.dll
[2012-12-10 19:12:28 | 000,537,520 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczcoms.exe
[2012-12-10 19:12:28 | 000,421,888 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczcomm.dll
[2012-12-10 19:12:28 | 000,413,696 | ---- | C] () -- C:\Windows\SysWow64\lxczutil.dll
[2012-12-10 19:12:28 | 000,413,696 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczinpa.dll
[2012-12-10 19:12:28 | 000,397,312 | ---- | C] ( ) -- C:\Windows\SysWow64\lxcziesc.dll
[2012-12-10 19:12:28 | 000,385,968 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczih.exe
[2012-12-10 19:12:28 | 000,381,872 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczcfg.exe
[2012-12-10 19:12:28 | 000,274,432 | ---- | C] () -- C:\Windows\SysWow64\LXCZinst.dll
[2012-12-10 19:12:28 | 000,181,168 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczppls.exe
[2012-12-10 19:12:28 | 000,163,840 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczprox.dll
[2012-12-10 19:12:28 | 000,094,208 | ---- | C] ( ) -- C:\Windows\SysWow64\lxczpplc.dll
[2012-12-06 16:48:59 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012-12-06 16:48:59 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012-12-06 16:48:59 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012-12-06 16:48:59 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012-12-06 16:48:59 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012-12-04 00:24:19 | 000,017,408 | ---- | C] () -- C:\Users\knife\AppData\Local\WebpageIcons.db
[2012-12-01 15:10:39 | 001,638,530 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012-11-29 08:55:59 | 002,250,024 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2012-11-27 01:18:46 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012-11-16 23:49:28 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012-09-28 03:29:54 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012-09-28 03:29:54 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2011-09-13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
 
========== ZeroAccess Check ==========
 
[2009-07-14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012-06-09 07:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2013-02-17 22:34:16 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\.minecraft
[2012-11-16 23:31:49 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\.wtw
[2013-04-18 22:41:53 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\1by1
[2013-04-10 21:25:39 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\Bitcoin
[2013-04-17 14:04:58 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\Copy
[2013-04-28 17:51:38 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\DAEMON Tools Lite
[2013-04-30 08:40:12 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\DMCache
[2013-03-25 13:27:35 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\FileOpen
[2013-04-30 10:19:56 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\foobar2000
[2013-03-03 20:30:34 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\Foxit Software
[2013-04-06 23:45:51 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\HD Tune Pro
[2013-04-17 14:52:40 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\Hive Cluster
[2013-04-28 13:41:26 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\IDM
[2013-04-06 14:37:02 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\ImgBurn
[2013-01-26 19:46:22 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\KTW
[2013-04-03 22:23:52 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\LastPass
[2013-02-25 21:43:01 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\Leadertech
[2012-11-21 00:39:24 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\NapiProjekt
[2013-03-29 12:20:37 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\Nitro
[2013-04-16 15:17:43 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\Nitro PDF
[2013-01-06 10:32:49 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\Nokia
[2013-01-10 00:14:16 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\Offline Explorer
[2012-11-17 20:24:54 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\Opera
[2013-01-06 10:32:47 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\PC Suite
[2013-01-02 16:37:45 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\PhotoScape
[2013-04-07 22:17:57 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\poclbm
[2013-01-06 13:16:16 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\redsn0w
[2012-11-16 23:27:45 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\Thunderbird
[2013-04-29 22:03:57 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\uTorrent
[2013-03-16 12:58:03 | 000,000,000 | ---D | M] -- C:\Users\knife\AppData\Roaming\Vso
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 192 bytes -> C:\Windows:nlsPreferences
 
< End of report >
 


Extras

Kod Text - [rozwiń]
OTL Extras logfile created on: 2013-04-30 14:25:53 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\knife\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16540)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,96 Gb Total Physical Memory | 2,18 Gb Available Physical Memory | 55,02% Memory free
7,93 Gb Paging File | 5,65 Gb Available in Paging File | 71,29% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 74,43 Gb Total Space | 4,55 Gb Free Space | 6,11% Space Free | Partition Type: NTFS
Drive F: | 660,36 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: KNIFE-KOMPUTER | User Name: knife | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- C:\Program Files\Opera x64\Opera.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files\Opera x64\Opera.exe (Opera Software)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htafile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Opera x64\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL
 

Powrót do góry
   
MrDoimer
Poziom 24
Poziom 24


Dołączył: 26 Mar 2012
Posty: 5479
Miasto: Żyrardów

Post#2 30 Kwi 2013 14:41pomocny post - solucja   

Re: Windows 7 : Delta Chrome Toolbar


Nie pozbyłeś się do końca toolbara.

Użyj ADWClaner`a > Funkcja "Usuń".

Użyj CCleaner > Opcja "Czyszczenia rejestru",

Dodano po 26 [sekundy]:

Następnie wrzuć ponownie oba logi z OTL.
Powrót do góry
   
Google


Google Adsense


Post# 30 Kwi 2013 14:41pomocny post - solucja   





Powrót do góry
   
Acorus 20
Poziom 24
Poziom 24


Dołączył: 01 Maj 2009
Posty: 4534

Post#3 30 Kwi 2013 14:43   

Re: Windows 7 : Delta Chrome Toolbar


Logi podaj jako załączniki.
Powrót do góry
   
swiercm
Poziom 26
Poziom 26


Dołączył: 08 Kwi 2009
Posty: 14053
Miasto: Pomorze - Kwidzyn

Post#4 30 Kwi 2013 14:48pomocny post - solucja   

Re: Windows 7 : Delta Chrome Toolbar


Z mojego doświadczeniem z Deltą Toolbar, jedynie zastosowanie CureIt! bądź spod windowsa, bądź z LiveCD, pozwala na stwierdzenie, że został całkowicie usunięty. Nie wiem skąd kolega Deltę zainstalował, ale są jeszcze inne dziwne programy podpinające się pod Deltę i bez usunięcia Delty TB, nie da się całkowicie pozbyć tego drugiego.

Jeśli zdecydujesz się na skan CureIt - ściągnij plik ISO stąd:
http://www.freedrweb.com/livecd/

Na temat innych programów, jest dość obszerny temat na Elektrodzie:
http://www.elektroda.pl/rtvforum/topic1044160.html

Jest tam zawarte większość potrzebnych informacji, jak sobie radzić w przypadku infekcji systemu.
Powrót do góry
   
bartosz789
Poziom 22
Poziom 22


Dołączył: 14 Sie 2007
Posty: 1931
Miasto: Krakow

Post#5 Post autora tematu 30 Kwi 2013 15:05   

Re: Windows 7 : Delta Chrome Toolbar


Logi w załączniku na prośbę Acorus 20
Rejestr wyczyszczony, logi zrobione.
Delta Toolbar zauważyłem nagle, w "Usuń lub dodaj programy".
Nie instalowałem nic, gdyż uważam na wszelkie "ptaszki", które są zaznaczone podczas instalacji innych programów.

Podczas dodawania drugiego logu, końcowy znacznik "[/syntax]" automatycznie zamienia mi na ciąg (podczas podglądu jest OK):

Dziękuje za zainteresowanie.
P.S Dodaję tylko jeden plik, gdyż OTL nie utworzył Extras.

Załączniki:
Powrót do góry
   
MrDoimer
Poziom 24
Poziom 24


Dołączył: 26 Mar 2012
Posty: 5479
Miasto: Żyrardów

Post#6 30 Kwi 2013 15:07   

Re: Windows 7 : Delta Chrome Toolbar


Wydaję się że ADW już usunął Delte.

Pozostaje chyba już tylko kosmetyka w OTL ;)
Powrót do góry
   
Google


Google Adsense


Post# 30 Kwi 2013 15:07   





Powrót do góry
   
bartosz789
Poziom 22
Poziom 22


Dołączył: 14 Sie 2007
Posty: 1931
Miasto: Krakow

Post#7 Post autora tematu 30 Kwi 2013 15:08   

Re: Windows 7 : Delta Chrome Toolbar


Mógłbyś pomóc w sprawie kosmetyki ?
Powrót do góry
   
Google


Google Adsense


Post# 30 Kwi 2013 15:08   





Powrót do góry
   
MrDoimer
Poziom 24
Poziom 24


Dołączył: 26 Mar 2012
Posty: 5479
Miasto: Żyrardów

Post#8 30 Kwi 2013 15:09   

Re: Windows 7 : Delta Chrome Toolbar


bartosz789 napisał:

Mógłbyś pomóc w sprawie kosmetyki ?

Poczekaj na doświadczonego kolegę od OTL.
(tj. Acorus 20).

Dla pewności :

Przeskanuj system programem Malwarebytes : http://pcporady.c0.pl/doku.php?id=malwarebytes
Użyj funkcji pełne skanowanie.
Wstaw log po zakończeniu skanowania.
Powrót do góry
   
bartosz789
Poziom 22
Poziom 22


Dołączył: 14 Sie 2007
Posty: 1931
Miasto: Krakow

Post#9 Post autora tematu 30 Kwi 2013 16:15   

Re: Windows 7 : Delta Chrome Toolbar


Malwarebytes nie wykrył nic szczególnego.
Tylko "fixy".

Ale dodaję log (bez załącznika bo krótki) :

Kod Text - [rozwiń]
 
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Wersja bazy: v2013.04.30.04
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16540
knife :: KNIFE-KOMPUTER [administrator]
 
2013-04-30 15:12:39
mbam-log-2013-04-30 (15-12-39).txt
 
Typ skanowania: Pełne skanowanie (C:\|)
Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM
Odznaczone opcje skanowania: P2P
Przeskanowano obiektów: 412190
Upłynęło: 55 minut(y), 38 sekund(y)
 
Wykrytych procesów w pamięci: 0
(Nie znaleziono zagrożeń)
 
Wykrytych modułów w pamięci: 0
(Nie znaleziono zagrożeń)
 
Wykrytych kluczy rejestru: 0
(Nie znaleziono zagrożeń)
 
Wykrytych wartości rejestru: 0
(Nie znaleziono zagrożeń)
 
Wykryte wpisy rejestru systemowego: 0
(Nie znaleziono zagrożeń)
 
wykrytych folderów: 0
(Nie znaleziono zagrożeń)
 
Wykrytych plików: 4
C:\Program Files (x86)\Internet Download Manager\Patch.exe (Riskware.Tool.CK) -> Nie wykonano akcji.
C:\Users\knife\Downloads\GSM\SE\Setool2lite V1.11\Setool2lite V1.11\setool2lt.exe (Malware.Packer.T) -> Nie wykonano akcji.
C:\Users\knife\Downloads\GSM\SE\a2uploader.exe (Spyware.PWS) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
C:\Users\Krzychu\Desktop\Phoenix.exe (Backdoor.Bot) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
 
(zakończone)
 

Powrót do góry
   
swiercm
Poziom 26
Poziom 26


Dołączył: 08 Kwi 2009
Posty: 14053
Miasto: Pomorze - Kwidzyn

Post#10 30 Kwi 2013 17:43   

Re: Windows 7 : Delta Chrome Toolbar


Zrobiłeś to, o co prosiłem? (cureIt!)
Powrót do góry
   
Acorus 20
Poziom 24
Poziom 24


Dołączył: 01 Maj 2009
Posty: 4534

Post#11 30 Kwi 2013 18:54pomocny post - solucja   

Re: Windows 7 : Delta Chrome Toolbar


Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:

Cytat:
:OTL
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
IE - HKCU\..\SearchScopes\{FE234AF4-1FA5-455C-99BD-03E9D98D30BC}: "URL" = http://search.softonic.com/INF00046/tb_v1?q={searchTerms}&SearchSource=4&cc=&r=159
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1
O4 - HKCU..\Run: [] File not found
O20 - AppInit_DLLs: (c:\progra~3\browse~1\261249~1.132\{c16c1~1\browse~1.dll) - File not found
[2013-04-29 11:13:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2013-04-29 11:08:51 | 007,396,224 | ---- | C] (Enigma Software Group USA, LLC.) -- C:\Windows\SysNative\SpyHunter4.exe
[2013-04-29 11:08:35 | 007,396,224 | ---- | C] (Enigma Software Group USA, LLC.) -- C:\Windows\SysNative\original.exe
[2013-04-28 17:51:57 | 000,000,000 | ---D | C] -- C:\ProgramData\BrowserProtect
[2013-04-30 14:46:52 | 000,000,354 | ---- | M] () -- C:\Windows\tasks\ROC_JAN2013_TB_rmv.job
[2013-04-30 13:57:00 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2131279951-1460999497-1398546926-1004UA.job
[2013-04-29 16:57:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2131279951-1460999497-1398546926-1004Core.job
[2012-12-06 16:48:59 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012-12-06 16:48:59 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012-12-06 16:48:59 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012-12-06 16:48:59 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012-12-06 16:48:59 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe

:Commands
[emptytemp]


Kliknij Wykonaj skrypt.W OTL użyj opcji Sprzątanie.
Powrót do góry
   
Google


Google Adsense


Post# 30 Kwi 2013 18:54pomocny post - solucja   





Powrót do góry
   
wamal
Poziom 15
Poziom 15


Dołączył: 12 Maj 2003
Posty: 205
Miasto: Lubicz Dolny

Post#12 01 Maj 2013 07:46   

Re: Windows 7 : Delta Chrome Toolbar


[quote="bartosz789"]Logi w załączniku na prośbę [b]Acorus 20[/b]
Rejestr wyczyszczony, logi zrobione.
Delta Toolbar zauważyłem nagle, w "Usuń lub dodaj programy".
Nie instalowałem nic, gdyż uważam na wszelkie "ptaszki", które są zaznaczone podczas instalacji innych programów.

Podczas dodawania drugiego logu, końcowy znacznik "[/syntax]" automatycznie zamienia mi na ciąg (podczas podglądu jest OK):

Dziękuje za zainteresowanie.
P.S Dodaję tylko jeden plik, gdyż OTL nie utworzył Extras.[/quote]

Teraz uważanie na "ptaszki" nie działa. Nie wolno wybierać domyślnej (expresowej itp.) i wchodzić w tryb zaawansowany. Sam uniknąłem dodania "dodatków", niestety na współdzielonym PC mój potomek ... Ta dzisiejsza młodzież :D
Powrót do góry
   
bartosz789
Poziom 22
Poziom 22


Dołączył: 14 Sie 2007
Posty: 1931
Miasto: Krakow

Post#13 Post autora tematu 01 Maj 2013 08:16   

Re: Windows 7 : Delta Chrome Toolbar


Dziękuje za pomoc Acorus 20 oraz Mr Doimer.
infekcja została całkowicie usunięta.
Powrót do góry
   
Napisz nowy temat  Temat zablokowany      Strona Główna -> Forum elektroda.pl -> Komputery Serwis -> Pogotowie Antywirusowe -> Windows 7 : Delta Chrome Toolbar
Strona 1 z 1
Podobne tematy
Wyszukiwarka Google Chrome a Babylon Toolbar (11)
Delta toolbar oraz trojan senfit.as (1)
Chrome, Mozilla - Chrome, Mozilla - delta homes i otwierajace sie same nowe kart (15)
Gf 4Ti 4200 wymiana na S3 Delta Chrome S8 (5)
Chrome - Jak usunąć delta search (6)
Delta search na chrome i czyszczenie śmieci (7)
Delta Search w przeglądarce Chrome i innych (6)
Windows 8 - błąd google chrome (5)
Windows 8.1 - Chrome działa fatalnie (11)
Windows XP - chrome - sweet page (3)


Administrator || Moderatorzy || Regulamin forum || Regulamin ogólny || Informacja o cookies || Reklama || Kontakt

Page generation time: 0.265 seconds

elektroda.pl temat RSS