Mam problem z wirusem ktory wyłacza komputer....

Question

Witam. Mam problem z komputerem ponieważ mam wirusa który (raz dziennie) się uaktywnia tzw. pojawia się okienko i zaczyna się odliczanie od 1 minuty a...

elektro94 · Answer

Zastosuj się do https://www.elektroda.pl/rtvforum/topic1159685.html

Kolobos · Answer

Zrob skan przy pomocy mbam oraz cureit. Daj w zalaczniku logi z OTL.

piero · Answer

A może zamiast od razu z armaty strzelać, to warto sprawdzić co zawierają:autostart, zaplanowane zadania i lista procesów (ctrl+shift+esc).

elektro94 · Answer

Po to właśnie potrzebny jest log z OTL.

Kolobos · Answer

To nie strzelanie z armaty tylko zwykle sprawdzenie. Za to Twoja porada to jedynie strata czasu.

Plamometh · Answer

A mógł by mi ktoś powiedzieć jak je sprawdzić te logi OTL bo nie wiem . Ale najlepiej krok po kroku jak do niech się dostać . Dziekuje

Dodano po 17 [minuty]:

OTL logfile created on: 2011-02-21 09:44:55 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\Bartek\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 81,00% Memory free
7,00 Gb Paging File | 7,00 Gb Available in Paging File | 92,00% Paging File free
Paging file location(s): C:\pagefile.sys 3900 4095 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 30,26 Gb Total Space | 9,70 Gb Free Space | 32,06% Space Free | Partition Type: FAT32
Drive D: | 59,57 Gb Total Space | 21,59 Gb Free Space | 36,24% Space Free | Partition Type: NTFS
Drive E: | 59,07 Gb Total Space | 30,22 Gb Free Space | 51,17% Space Free | Partition Type: NTFS

Computer Name: DOM | User Name: Bartek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011-02-21 09:43:34 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bartek\Pulpit\OTL_3.2.20.6(dobreprogramy.pl).exe
PRC - [2010-12-16 06:19:28 | 012,984,928 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2010-12-10 20:35:46 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-12-10 20:35:46 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2010-11-02 22:06:06 | 000,365,336 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\avp.exe
PRC - [2010-10-18 20:00:50 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.2.183.39\GoogleCrashHandler.exe
PRC - [2009-11-13 19:52:30 | 000,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009-07-26 22:20:08 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2009-06-04 18:56:20 | 000,057,344 | ---- | M] (Ideazon, Inc.) -- C:\Program Files\Ideazon\ZEngine\Zboard.exe
PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-03 19:37:36 | 000,835,584 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe
PRC - [2007-10-11 19:03:10 | 000,029,984 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
PRC - [2007-06-01 10:21:30 | 001,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007-06-01 10:21:08 | 000,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2002-08-21 05:13:12 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WISPTIS.EXE

========== Modules (SafeList) ==========

MOD - [2011-02-21 09:43:34 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bartek\Pulpit\OTL_3.2.20.6(dobreprogramy.pl).exe
MOD - [2006-05-03 22:53:54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\framedyn.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (SNDSrvc)
SRV - File not found [Auto | Stopped] -- -- (SBService)
SRV - File not found [On_Demand | Stopped] -- -- (SAVScan)
SRV - File not found [Auto | Stopped] -- -- (navapsvc)
SRV - File not found [Auto | Stopped] -- -- (ccSetMgr)
SRV - File not found [On_Demand | Stopped] -- -- (ccPwdSvc)
SRV - File not found [Auto | Stopped] -- -- (ccProxy)
SRV - File not found [Auto | Stopped] -- -- (ccEvtMgr)
SRV - [2010-11-02 22:06:06 | 000,365,336 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\avp.exe -- (AVP)

========== Driver Services (SafeList) ==========

DRV - [2011-02-18 14:53:40 | 000,475,736 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2010-06-09 16:43:52 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl2.sys -- (kl2)
DRV - [2010-06-09 16:43:50 | 000,132,184 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kl1.sys -- (KL1)
DRV - [2010-05-07 11:06:26 | 000,032,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2010-03-16 07:52:00 | 010,232,352 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009-11-02 19:27:24 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009-06-06 19:38:16 | 000,016,376 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2007-09-19 15:44:46 | 000,101,504 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007-09-19 11:16:32 | 004,617,728 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007-07-23 10:56:58 | 000,042,624 | ---- | M] (Ideazon Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Alpham1.sys -- (Alpham1)
DRV - [2007-03-20 12:49:52 | 000,018,432 | ---- | M] (Ideazon Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Alpham2.sys -- (Alpham2)
DRV - [2006-07-24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2004-10-15 12:50:20 | 000,015,295 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BrScnUsb.sys -- (BrScnUsb)
DRV - [2003-10-21 03:25:00 | 000,179,968 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8180.sys -- (rtl8180) Realtek RTL8180 Wireless LAN (Mini-)
DRV - [2001-08-17 22:05:44 | 000,141,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Icam3.sys -- (ICAM3NT5)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0
FF - prefs.js..extensions.enabledItems: jqs(malpa)sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: linkfilter(malpa)kaspersky.ru:11.0.2.556

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-05-05 20:59:26 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-05-05 20:59:26 | 000,000,000 | ---D | M]

[2010-05-05 20:59:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bartek\Dane aplikacji\Mozilla\Extensions
[2010-05-05 20:59:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bartek\Dane aplikacji\Mozilla\Firefox\Profiles\t0wn9igj.default\extensions
[2010-05-05 20:59:26 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010-10-02 08:25:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-11-27 16:49:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011-02-18 13:09:46 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2010-09-16 14:23:00 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2009-11-13 19:52:46 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAM FILES\REAL\REALPLAYER\BROWSERRECORD\FIREFOX\EXT
[2010-09-15 04:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010-07-29 06:11:52 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-07-29 06:11:52 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-07-29 06:11:52 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-07-29 06:11:52 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-07-29 06:11:52 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-07-29 06:11:52 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2001-10-26 13:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (CNisExtBho Class) - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - Reg Error: Value error. File not found
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (CNavExtBho Class) - {BDF3E430-B101-42AD-A544-FADC6B084872} - Reg Error: Value error. File not found
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - Reg Error: Value error. File not found
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (Web assistant) - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - Reg Error: Value error. File not found
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Norton AntiVirus) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - Reg Error: Value error. File not found
O3 - HKCU\..\Toolbar\ShellBrowser: (Norton AntiVirus) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - Reg Error: Value error. File not found
O3 - HKCU\..\Toolbar\WebBrowser: (Web assistant) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - Reg Error: Value error. File not found
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton AntiVirus) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - Reg Error: Value error. File not found
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] File not found
O4 - HKLM..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [PPort11reminder] C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [SSBkgdUpdate] C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Zboard] C:\Program Files\Ideazon\ZEngine\Zboard.exe (Ideazon, Inc.)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 60
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.)
O9 - Extra Button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.10.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\x-sdch {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - Reg Error: Value error. File not found
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\mzvkbd3.dll (Kaspersky Lab ZAO)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab ZAO)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2009-06-06 19:26:36 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]
O32 - AutoRun File - [2010-04-22 17:22:20 | 000,000,000 | ---D | M] - E:\Automapa -- [ NTFS ]
O33 - MountPoints2\{4311c800-52c4-11de-95d8-0050fc25a8ed}\Shell - "" = AutoRun
O33 - MountPoints2\{4311c800-52c4-11de-95d8-0050fc25a8ed}\Shell\AutoRun\command - "" = H:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011-02-21 09:43:30 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bartek\Pulpit\OTL_3.2.20.6(dobreprogramy.pl).exe
[2011-02-20 10:29:57 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2011-02-19 23:58:36 | 000,000,000 | ---D | C] -- C:\Program Files\Tibia
[2011-02-19 22:23:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2011-02-19 18:13:05 | 000,000,000 | ---D | C] -- C:\Program Files\Tibiacast
[2011-02-19 18:13:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Tibiacast
[2011-02-19 08:39:46 | 000,000,000 | -HSD | C] -- C:\FOUND.028
[2011-02-18 20:20:17 | 000,000,000 | ---D | C] -- C:\Program Files\ElvenSoft
[2011-02-18 17:42:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Dane aplikacji\Tibia
[2011-02-18 17:42:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Tibia
[2011-02-18 17:10:41 | 025,934,560 | ---- | C] (CipSoft GmbH ) -- C:\Documents and Settings\Bartek\Pulpit\tibia871.exe
[2011-02-18 16:00:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype
[2011-02-18 14:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Kaspersky Anti-Virus 2011
[2011-02-18 14:53:48 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab
[2011-02-18 14:53:38 | 000,475,736 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2011-02-18 14:41:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
[2011-02-18 13:08:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab
[2011-02-03 19:40:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Moje dokumenty\My Art
[2011-02-03 18:38:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Dane aplikacji\Samsung
[2011-02-03 18:35:19 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\framedyn.dll
[2011-02-03 18:34:51 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2011-02-03 18:22:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Samsung_USB_Drivers
[2011-01-30 19:40:00 | 000,000,000 | ---D | C] -- C:\Program Files\Funcom
[2011-01-30 16:33:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\Vikingworks
[2011-01-30 16:19:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Pulpit\AOC UI
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011-02-21 09:43:34 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bartek\Pulpit\OTL_3.2.20.6(dobreprogramy.pl).exe
[2011-02-21 09:06:02 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011-02-21 08:45:00 | 000,276,202 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2011-02-21 08:43:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-02-20 20:06:02 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011-02-20 10:30:40 | 000,000,695 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk
[2011-02-20 10:30:40 | 000,000,666 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2011-02-19 23:58:40 | 000,000,542 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Tibia.lnk
[2011-02-19 23:50:28 | 000,000,080 | ---- | M] () -- C:\Documents and Settings\Bartek\default.pls
[2011-02-19 23:50:26 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-02-18 17:14:20 | 025,934,560 | ---- | M] (CipSoft GmbH ) -- C:\Documents and Settings\Bartek\Pulpit\tibia871.exe
[2011-02-18 16:00:22 | 000,002,417 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2011-02-18 14:54:24 | 000,000,712 | ---- | M] () -- C:\Documents and Settings\Bartek\Pulpit\Kaspersky Anti-Virus 2011.lnk
[2011-02-18 14:53:40 | 000,475,736 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2011-02-18 14:22:58 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-02-18 13:09:40 | 000,114,243 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat
[2011-02-18 13:09:40 | 000,097,859 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat
[2011-02-04 21:35:22 | 000,002,539 | ---- | M] () -- C:\Documents and Settings\Bartek\Pulpit\Microsoft Office Word 2003 (2).lnk
[2011-02-03 19:39:32 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt
[2011-02-03 18:35:40 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011-01-30 16:31:32 | 000,002,022 | ---- | M] () -- C:\Documents and Settings\Bartek\Pulpit\AOC UI Installer 3.0.4.lnk
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011-02-20 10:30:39 | 000,000,695 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk
[2011-02-20 10:30:38 | 000,000,666 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2011-02-20 10:29:59 | 000,000,584 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Gadu-Gadu 10.lnk
[2011-02-19 23:58:38 | 000,000,542 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Tibia.lnk
[2011-02-18 14:54:32 | 000,000,712 | ---- | C] () -- C:\Documents and Settings\Bartek\Pulpit\Kaspersky Anti-Virus 2011.lnk
[2011-02-18 13:09:38 | 000,114,243 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat
[2011-02-18 13:09:38 | 000,097,859 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat
[2011-02-03 18:36:18 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt
[2011-02-03 18:34:28 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2011-02-03 18:22:18 | 000,000,766 | ---- | C] () -- C:\WINDOWS\System32\Uninstall.ico
[2011-01-30 16:31:31 | 000,002,022 | ---- | C] () -- C:\Documents and Settings\Bartek\Pulpit\AOC UI Installer 3.0.4.lnk
[2010-11-14 18:20:26 | 000,000,041 | ---- | C] () -- C:\WINDOWS\My Settings.ini
[2010-11-14 18:20:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\spdg.dll
[2010-09-30 20:26:56 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-09-30 20:26:56 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-09-30 20:26:54 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-09-30 20:26:54 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-09-30 20:26:52 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-09-16 19:17:57 | 000,121,760 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-05-28 20:45:45 | 000,000,208 | ---- | C] () -- C:\WINDOWS\VOGEL.INI
[2010-04-22 17:58:36 | 000,002,083 | ---- | C] () -- C:\WINDOWS\UAMedytor.ini
[2009-11-13 19:54:33 | 000,000,024 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2009-09-24 20:12:49 | 000,006,144 | ---- | C] () -- C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-09-23 17:13:49 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009-08-23 14:48:41 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-06-07 09:28:25 | 000,000,404 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2009-06-07 09:28:25 | 000,000,027 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI
[2009-06-07 09:26:19 | 000,031,567 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2009-06-06 19:18:46 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001-10-26 15:28:58 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\verifier.dll

< End of report >

Dodano po 56 [sekundy]:

OTL Extras logfile created on: 2011-02-21 09:44:55 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\Bartek\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 81,00% Memory free
7,00 Gb Paging File | 7,00 Gb Available in Paging File | 92,00% Paging File free
Paging file location(s): C:\pagefile.sys 3900 4095 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 30,26 Gb Total Space | 9,70 Gb Free Space | 32,06% Space Free | Partition Type: FAT32
Drive D: | 59,57 Gb Total Space | 21,59 Gb Free Space | 36,24% Space Free | Partition Type: NTFS
Drive E: | 59,07 Gb Total Space | 30,22 Gb Free Space | 51,17% Space Free | Partition Type: NTFS

Computer Name: DOM | User Name: Bartek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 1
"FirewallDisableNotify" = 1
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07605941-9E7C-4828-81A6-134C32CD240F}" = AOC UI Installer 3.0.4
"{08CF4AFE-EC29-4AD9-A748-A27079F4C72B}" = DiRT
"{0A795E81-7E99-4574-923D-8A0AF1F11CA1}" = ScanSoft PaperPort 11
"{12E2B9E9-05B1-407d-B0FD-B5F350535125}" = Norton Internet Security
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1A6A6531-08FC-47AD-BAC4-C41497E71045}" = Nero 7 Essentials
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 22
"{2AFF2951-86B1-3C53-B34D-B440F11E7D0A}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - PLK
"{2BC2781A-F7F6-452E-95EB-018A522F1B2C}" = PaperPort Image Printer
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3A08B59E-A9F0-4F4D-B7E5-6875D7F13327}" = Brother MFL-Pro Suite DCP-145C
"{3B29A786-5803-4e9e-9B58-3014A5B4E519}" = Norton AntiSpam
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{449F3A9E-9903-4a0d-A209-08030D45A935}" = Norton Internet Security
"{48185814-A224-447a-81DA-71BD20580E1B}" = Norton Internet Security
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{526AD5DC-CFC4-4f2a-8442-C84CC91D6C7F}" = Norton Internet Security
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{5677563D-0CB1-485f-9E18-C5025306BB3F}" = Norton AntiSpam
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5A0DDC27-88E5-3CAD-BC3D-28FFD05CA6B9}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - PLK
"{5CA03ECF-B4A6-464B-9F5D-64D8B61B083F}" = Everio MediaBrowser
"{64E47A5F-B3C4-476A-9100-2D006BD1FFB4}" = Z Engine
"{66F1F013-008F-4875-B283-5A814B820347}" = Kaspersky Anti-Virus 2011
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{91AA4B1F-B918-4e0b-A304-F8D4EC5D7726}" = Norton Internet Security
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9EFDFBA8-9174-3C61-8645-28376C5CA994}" = Microsoft .NET Framework 3.5 Language Pack SP1 - plk
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A398F2DC-D706-4bb2-AC38-5532CD229D08}" = CC_ccProxyMSI
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A93C9E60-29B6-49da-BA21-F70AC6AADE20}" = Norton Internet Security
"{B395BC1D-CC06-425E-9049-4CD985EFF004}" = LightScribe 1.8.15.1
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C6F5B6CF-609C-428E-876F-CA83176C021B}" = Norton AntiVirus
"{C99B2506-EA25-42AF-9CC7-6E39B28507FE}" = Tibiacast
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}" = Digital Photo Navigator 1.5
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D327AFC9-7BAA-473A-8319-6EB7A0D40138}" = Symantec Script Blocking Installer
"{D5A6D02F-3CBB-4FBF-8F65-C3A6D721E8A4}" = OpenOffice.org 3.2
"{D6414CC7-F215-467F-88B1-546ED863F35B}" = CC_ccStart
"{DC367608-64A7-4BF7-92F4-8BAA25BA02DB}" = ccCommon
"{DEA314C4-0929-4250-BC92-98E4C105F28D}" = NVIDIA PhysX
"{E47EE8FB-ACC0-4608-859C-4E2851B18A6A}" = Norton Internet Security
"{E5EE9939-259F-4DE2-8023-5C49E16A4F43}" = Norton Internet Security
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FC2C0536-583C-46c0-844A-62CECAE01F22}" = Norton Internet Security
"{FC37ABD0-2108-4beb-B010-1254E0662B5A}" = MSRedist
"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Pakiet sterowników systemu Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Pakiet sterowników systemu Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Age of Conan_is1" = Age of Conan - Hyborian Adventures
"Eusing Free Registry Cleaner" = Eusing Free Registry Cleaner
"Gadu-Gadu 10" = Gadu-Gadu 10
"Google Updater" = Aktualizator Google
"InstallWIX_{66F1F013-008F-4875-B283-5A814B820347}" = Kaspersky Anti-Virus 2011
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.6.1 (Full)
"Microsoft .NET Framework 3.5 Language Pack SP1 - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MiploSync" = Miplo MiploSync
"Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
"Niezbędnik CD_is1" = Niezbędnik CD
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"PITy 2009_is1" = PITy 2009 dla Windows kompilacja:1.1.2.4
"RealPlayer 12.0" = RealPlayer
"ST5UNST #1" = Twój Niezbednik
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Tibia_is1" = Tibia
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = Archiwizator WinRAR
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2011-02-17 17:46:16 | Computer Name = DOM | Source = EventSystem | ID = 4609
Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył
zły kod powrotu. HRESULT to 80070005 z w wierszu 44 z f:\xpsp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą

Error - 2011-02-17 17:46:16 | Computer Name = DOM | Source = VSS | ID = 8193
Description = Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas
wywoływania procedury CoCreateInstance. hr = 0x80040206.

Error - 2011-02-17 17:52:07 | Computer Name = DOM | Source = EventSystem | ID = 4609
Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył
zły kod powrotu. HRESULT to 80070005 z w wierszu 44 z f:\xpsp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą

Error - 2011-02-18 16:58:11 | Computer Name = DOM | Source = EventSystem | ID = 4609
Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył
zły kod powrotu. HRESULT to 80070005 z w wierszu 44 z f:\xpsp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą

Error - 2011-02-18 16:58:11 | Computer Name = DOM | Source = VSS | ID = 8193
Description = Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas
wywoływania procedury CoCreateInstance. hr = 0x80040206.

Error - 2011-02-19 04:42:47 | Computer Name = DOM | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd explorer.exe, wersja 6.0.2900.5512, moduł
powodujący błąd medialibrarynse.dll, wersja 2.0.13.1, adres błędu 0x00002736.

Error - 2011-02-19 16:42:48 | Computer Name = DOM | Source = EventSystem | ID = 4609
Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył
zły kod powrotu. HRESULT to 80070005 z w wierszu 44 z f:\xpsp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą

Error - 2011-02-19 16:42:48 | Computer Name = DOM | Source = VSS | ID = 8193
Description = Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas
wywoływania procedury CoCreateInstance. hr = 0x80040206.

Error - 2011-02-20 14:25:55 | Computer Name = DOM | Source = EventSystem | ID = 4609
Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył
zły kod powrotu. HRESULT to 80070005 z w wierszu 44 z f:\xpsp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą

Error - 2011-02-20 14:25:55 | Computer Name = DOM | Source = VSS | ID = 8193
Description = Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas
wywoływania procedury CoCreateInstance. hr = 0x80040206.

[ System Events ]
Error - 2011-02-20 14:24:53 | Computer Name = DOM | Source = Service Control Manager | ID = 7031
Description = Usługa Zdalne wywoływanie procedur (RPC) niespodziewanie zakończyła
pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca
czynność korekcyjna: Uruchom ponownie komputer.

Error - 2011-02-20 14:27:03 | Computer Name = DOM | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Usługa Auto Protect programu Norton AntiVirus
z powodu następującego błędu: %%3

Error - 2011-02-20 14:27:03 | Computer Name = DOM | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi ScriptBlocking Service z powodu następującego
błędu: %%3

Error - 2011-02-20 14:27:05 | Computer Name = DOM | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: SAVRTPEL SYMTDI

Error - 2011-02-21 03:29:26 | Computer Name = DOM | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Usługa Auto Protect programu Norton AntiVirus
z powodu następującego błędu: %%3

Error - 2011-02-21 03:29:26 | Computer Name = DOM | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi ScriptBlocking Service z powodu następującego
błędu: %%3

Error - 2011-02-21 03:29:26 | Computer Name = DOM | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: SAVRTPEL SYMTDI

Error - 2011-02-21 03:43:48 | Computer Name = DOM | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Usługa Auto Protect programu Norton AntiVirus
z powodu następującego błędu: %%3

Error - 2011-02-21 03:43:48 | Computer Name = DOM | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi ScriptBlocking Service z powodu następującego
błędu: %%3

Error - 2011-02-21 03:43:48 | Computer Name = DOM | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: SAVRTPEL SYMTDI

< End of report >

Acorus 20 · Answer

Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:Kliknij Wykonaj skrypt..Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie. Następnie uruchom OTL ponownie, tym razem kliknij (Skanuj). Pokaż nowy log OTL.txt oraz raport z usuwania.Log daj jako ząłącznik.

Kolobos · Answer

Dlaczego nie wykonales skanowania przy pomocy mbam oraz cureit?Uzyj tez: http://pl.norton.com/support/kb/web_view.jsp?wv_type=public_web&docurl=20090115074638PL

Plamometh · Answer

Raport All processes killed========== OTL ==========Service SNDSrvc stopped successfully!Service SNDSrvc deleted successfully!Service SBService stopped successfully!Service SBService deleted successfully!Service SAVScan stopped successfully!Service SAVScan deleted successfully!Service navapsvc stopped successfully!Service navapsvc deleted successfully!Service ccSetMgr stopped successfully!Service ccSetMgr deleted successfully!Service ccPwdSvc stopped successfully!Service ccPwdSvc deleted successfully!Service ccProxy stopped successfully!Service ccProxy deleted successfully!Service ccEvtMgr stopped successfully!Service ccEvtMgr deleted successfully!Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\ deleted successfully.Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar not found.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7}\ deleted successfully.Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar not found.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}\ deleted successfully.Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} deleted successfully.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}\ not found.Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} deleted successfully.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7}\ not found.Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} deleted successfully.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}\ not found.Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\nwiz deleted successfully.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\x-sdch\ deleted successfully.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B1759355-3EEC-4C1E-B0F1-B719FE26E377}\ deleted successfully.C:\FOUND.028 folder moved successfully.========== COMMANDS ========== [EMPTYTEMP] User: Default User->Temp folder emptied: 0 bytes->Temporary Internet Files folder emptied: 33170 bytes->Flash cache emptied: 41 bytes User: All Users User: NetworkService->Temp folder emptied: 65984 bytes->Temporary Internet Files folder emptied: 33170 bytes User: LocalService->Temp folder emptied: 0 bytes->Temporary Internet Files folder emptied: 2946781 bytes User: Bartek->Temp folder emptied: 2529357532 bytes->Temporary Internet Files folder emptied: 232505054 bytes->Java cache emptied: 31925 bytes->FireFox cache emptied: 57810679 bytes->Google Chrome cache emptied: 6696628 bytes->Flash cache emptied: 138144 bytes User: Administrator->Temp folder emptied: 0 bytes->Temporary Internet Files folder emptied: 33170 bytes->Flash cache emptied: 41 bytes %systemdrive% .tmp files removed: 0 bytes%systemroot% .tmp files removed: 4338849 bytes%systemroot%\System32 .tmp files removed: 2596 bytes%systemroot%\System32\dllcache .tmp files removed: 0 bytes%systemroot%\System32\drivers .tmp files removed: 0 bytesWindows Temp folder emptied: 281733997 bytesRecycleBin emptied: 0 bytes Total Files Cleaned = 2 971,00 mb  OTL by OldTimer - Version 3.2.20.6 log created on 02212011_110754Files\Folders moved on Reboot...File\Folder C:\Documents and Settings\Bartek\Ustawienia lokalne\Temporary Internet Files\Content.IE5\K9674H2N\M not found!File\Folder C:\Documents and Settings\Bartek\Ustawienia lokalne\Temporary Internet Files\Content.IE5\K9674H2N\ě   vk not found!File\Folder C:\Documents and Settings\Bartek\Ustawienia lokalne\Temporary Internet Files\Content.IE5\K9674H2N\đ   vk not found!File\Folder C:\Documents and Settings\Bartek\Ustawienia lokalne\Temporary Internet Files\Content.IE5\K9674H2N\ not found!File\Folder C:\Documents and Settings\Bartek\Ustawienia lokalne\Temporary Internet Files\Content.IE5\K9674H2N\:j	│└Ň╩. not found!File\Folder C:\Documents and Settings\Bartek\Ustawienia lokalne\Temporary Internet Files\Content.IE5\K9674H2N\ň not found!File\Folder C:\Documents and Settings\Bartek\Ustawienia lokalne\Temporary Internet Files\Content.IE5\K9674H2N\Ó   vk not found!File\Folder C:\WINDOWS	emp\klsAD5E.tmp not found!Registry entries deleted on Reboot... Dodano po 5 [minuty]: OTL logfile created on: 2011-02-21 11:13:55 - Run 2OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\Bartek\PulpitWindows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstationInternet Explorer (Version = 6.0.2900.5512)Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 85,00% Memory free7,00 Gb Paging File | 7,00 Gb Available in Paging File | 94,00% Paging File freePaging file location(s): C:\pagefile.sys 3900 4095 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program FilesDrive C: | 30,26 Gb Total Space | 12,76 Gb Free Space | 42,17% Space Free | Partition Type: FAT32Drive D: | 59,57 Gb Total Space | 21,59 Gb Free Space | 36,24% Space Free | Partition Type: NTFSDrive E: | 59,07 Gb Total Space | 30,22 Gb Free Space | 51,17% Space Free | Partition Type: NTFS Computer Name: DOM | User Name: Bartek | Logged in as Administrator.Boot Mode: Normal | Scan Mode: Current userCompany Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011-02-21 09:43:34 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bartek\Pulpit\OTL_3.2.20.6(dobreprogramy.pl).exePRC - [2010-12-10 20:35:46 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exePRC - [2010-12-10 20:35:46 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exePRC - [2010-11-02 22:06:06 | 000,365,336 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\avp.exePRC - [2010-10-18 20:00:50 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.2.183.39\GoogleCrashHandler.exePRC - [2009-11-13 19:52:30 | 000,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OBealsched.exePRC - [2009-07-26 22:20:08 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exePRC - [2009-06-04 18:56:20 | 000,057,344 | ---- | M] (Ideazon, Inc.) -- C:\Program Files\Ideazon\ZEngine\Zboard.exePRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exePRC - [2008-04-03 19:37:36 | 000,835,584 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files\Brother\ControlCenter3\BrccMCtl.exePRC - [2007-10-11 19:03:10 | 000,029,984 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files\ScanSoft\PaperPort\pptd40nt.exePRC - [2007-06-01 10:21:30 | 001,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exePRC - [2007-06-01 10:21:08 | 000,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe  ========== Modules (SafeList) ========== MOD - [2011-02-21 09:43:34 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bartek\Pulpit\OTL_3.2.20.6(dobreprogramy.pl).exeMOD - [2006-05-03 22:53:54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\framedyn.dll  ========== Win32 Services (SafeList) ========== SRV - [2010-11-02 22:06:06 | 000,365,336 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\avp.exe -- (AVP)  ========== Driver Services (SafeList) ========== DRV - [2011-02-18 14:53:40 | 000,475,736 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)DRV - [2010-06-09 16:43:52 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl2.sys -- (kl2)DRV - [2010-06-09 16:43:50 | 000,132,184 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kl1.sys -- (KL1)DRV - [2010-05-07 11:06:26 | 000,032,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)DRV - [2010-03-16 07:52:00 | 010,232,352 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers
v4_mini.sys -- (nv)DRV - [2009-11-02 19:27:24 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)DRV - [2009-06-06 19:38:16 | 000,016,376 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)DRV - [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)DRV - [2007-09-19 15:44:46 | 000,101,504 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)DRV - [2007-09-19 11:16:32 | 004,617,728 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)DRV - [2007-07-23 10:56:58 | 000,042,624 | ---- | M] (Ideazon Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Alpham1.sys -- (Alpham1)DRV - [2007-03-20 12:49:52 | 000,018,432 | ---- | M] (Ideazon Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Alpham2.sys -- (Alpham2)DRV - [2006-07-24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)DRV - [2004-10-15 12:50:20 | 000,015,295 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BrScnUsb.sys -- (BrScnUsb)DRV - [2003-10-21 03:25:00 | 000,179,968 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8180.sys -- (rtl8180) Realtek RTL8180 Wireless LAN (Mini-)DRV - [2001-08-17 22:05:44 | 000,141,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Icam3.sys -- (ICAM3NT5)  ========== Standard Registry (SafeList) ==========  ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blankIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blankIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ieIE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0FF - prefs.js..extensions.enabledItems: jqs(malpa)sun.com:1.0FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22FF - prefs.js..extensions.enabledItems: linkfilter(malpa)kaspersky.ru:11.0.2.556 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\Components: C:\Program Files\Mozilla Firefox\components [2010-05-05 20:59:26 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-05-05 20:59:26 | 000,000,000 | ---D | M] [2010-05-05 20:59:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bartek\Dane aplikacji\Mozilla\Extensions[2010-05-05 20:59:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bartek\Dane aplikacji\Mozilla\Firefox\Profiles	0wn9igj.default\extensions[2010-05-05 20:59:26 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions[2010-10-02 08:25:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}[2010-11-27 16:49:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}[2011-02-18 13:09:46 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru[2010-09-16 14:23:00 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF[2009-11-13 19:52:46 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAM FILES\REAL\REALPLAYER\BROWSERRECORD\FIREFOX\EXT[2010-09-15 04:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins
pdeployJava1.dll[2010-07-29 06:11:52 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml[2010-07-29 06:11:52 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml[2010-07-29 06:11:52 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml[2010-07-29 06:11:52 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml[2010-07-29 06:11:52 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml[2010-07-29 06:11:52 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 13:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hostsO1 - Hosts: 127.0.0.1 localhostO2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayerpbrowserrecordplugin.dll (RealPlayer)O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\ievkbd.dll (Kaspersky Lab ZAO)O2 - BHO: (CNisExtBho Class) - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - Reg Error: Value error. File not foundO2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)O2 - BHO: (CNavExtBho Class) - {BDF3E430-B101-42AD-A544-FADC6B084872} - Reg Error: Value error. File not foundO2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - Reg Error: Value error. File not foundO2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO)O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\avp.exe (Kaspersky Lab ZAO)O4 - HKLM..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)O4 - HKLM..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe (Nuance Communications, Inc.)O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)O4 - HKLM..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Nuance Communications, Inc.)O4 - HKLM..\Run: [PPort11reminder] C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe (Nuance Communications, Inc.)O4 - HKLM..\Run: [SSBkgdUpdate] C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Nuance Communications, Inc.)O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OBealsched.exe (RealNetworks, Inc.)O4 - HKLM..\Run: [Zboard] C:\Program Files\Ideazon\ZEngine\Zboard.exe (Ideazon, Inc.)O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 60O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.)O9 - Extra Button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO)O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)O9 - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO)O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.10.0.1O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\mzvkbd3.dll (Kaspersky Lab ZAO)O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab ZAO)O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:HomeO24 - Desktop WallPaper: C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmpO24 - Desktop BackupWallPaper: C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmpO32 - HKLM CDRom: AutoRun - 0O32 - AutoRun File - [2009-06-06 19:26:36 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]O32 - AutoRun File - [2010-04-22 17:22:20 | 000,000,000 | ---D | M] - E:\Automapa -- [ NTFS ]O33 - MountPoints2\{4311c800-52c4-11de-95d8-0050fc25a8ed}\Shell - "" = AutoRunO33 - MountPoints2\{4311c800-52c4-11de-95d8-0050fc25a8ed}\Shell\AutoRun\command - "" = H:\LaunchU3.exe -aO34 - HKLM BootExecute: (autocheck autochk *) - File not foundO35 - HKLM\..comfile [open] -- "%1" %*O35 - HKLM\..exefile [open] -- "%1" %*O37 - HKLM\...com [@ = comfile] -- "%1" %*O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2011-02-21 11:07:54 | 000,000,000 | ---D | C] -- C:\_OTL[2011-02-21 09:52:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Pulpit	ibia[2011-02-21 09:43:30 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bartek\Pulpit\OTL_3.2.20.6(dobreprogramy.pl).exe[2011-02-20 10:29:57 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10[2011-02-19 23:58:36 | 000,000,000 | ---D | C] -- C:\Program Files\Tibia[2011-02-19 22:23:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss[2011-02-19 18:13:05 | 000,000,000 | ---D | C] -- C:\Program Files\Tibiacast[2011-02-19 18:13:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Tibiacast[2011-02-18 20:20:17 | 000,000,000 | ---D | C] -- C:\Program Files\ElvenSoft[2011-02-18 17:42:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Dane aplikacji\Tibia[2011-02-18 17:42:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Tibia[2011-02-18 16:00:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype[2011-02-18 14:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Kaspersky Anti-Virus 2011[2011-02-18 14:53:48 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab[2011-02-18 14:53:38 | 000,475,736 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys[2011-02-18 14:41:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files[2011-02-18 13:08:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab[2011-02-03 19:40:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Moje dokumenty\My Art[2011-02-03 18:38:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Dane aplikacji\Samsung[2011-02-03 18:35:19 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\framedyn.dll[2011-02-03 18:34:51 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX[2011-02-03 18:22:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Samsung_USB_Drivers[2011-01-30 19:40:00 | 000,000,000 | ---D | C] -- C:\Program Files\Funcom[2011-01-30 16:33:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\Vikingworks[2011-01-30 16:19:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Pulpit\AOC UI ========== Files - Modified Within 30 Days ========== [2011-02-21 11:10:42 | 000,276,202 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml[2011-02-21 11:10:22 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat[2011-02-21 11:06:02 | 000,001,036 | ---- | M] () -- C:\WINDOWS	asks\GoogleUpdateTaskMachineUA.job[2011-02-21 09:43:34 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bartek\Pulpit\OTL_3.2.20.6(dobreprogramy.pl).exe[2011-02-20 20:06:02 | 000,001,032 | ---- | M] () -- C:\WINDOWS	asks\GoogleUpdateTaskMachineCore.job[2011-02-20 10:30:40 | 000,000,695 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk[2011-02-20 10:30:40 | 000,000,666 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk[2011-02-19 23:58:40 | 000,000,542 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Tibia.lnk[2011-02-19 23:50:28 | 000,000,080 | ---- | M] () -- C:\Documents and Settings\Bartek\default.pls[2011-02-19 23:50:26 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini[2011-02-18 16:00:22 | 000,002,417 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk[2011-02-18 14:54:24 | 000,000,712 | ---- | M] () -- C:\Documents and Settings\Bartek\Pulpit\Kaspersky Anti-Virus 2011.lnk[2011-02-18 14:53:40 | 000,475,736 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys[2011-02-18 14:22:58 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl[2011-02-18 13:09:40 | 000,114,243 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat[2011-02-18 13:09:40 | 000,097,859 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat[2011-02-04 21:35:22 | 000,002,539 | ---- | M] () -- C:\Documents and Settings\Bartek\Pulpit\Microsoft Office Word 2003 (2).lnk[2011-02-03 19:39:32 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt[2011-02-03 18:35:40 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx[2011-01-30 16:31:32 | 000,002,022 | ---- | M] () -- C:\Documents and Settings\Bartek\Pulpit\AOC UI Installer 3.0.4.lnk ========== Files Created - No Company Name ========== [2011-02-20 10:30:39 | 000,000,695 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk[2011-02-20 10:30:38 | 000,000,666 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk[2011-02-20 10:29:59 | 000,000,584 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Gadu-Gadu 10.lnk[2011-02-19 23:58:38 | 000,000,542 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Tibia.lnk[2011-02-18 14:54:32 | 000,000,712 | ---- | C] () -- C:\Documents and Settings\Bartek\Pulpit\Kaspersky Anti-Virus 2011.lnk[2011-02-18 13:09:38 | 000,114,243 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat[2011-02-18 13:09:38 | 000,097,859 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat[2011-02-03 18:36:18 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt[2011-02-03 18:34:28 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys[2011-02-03 18:22:18 | 000,000,766 | ---- | C] () -- C:\WINDOWS\System32\Uninstall.ico[2011-01-30 16:31:31 | 000,002,022 | ---- | C] () -- C:\Documents and Settings\Bartek\Pulpit\AOC UI Installer 3.0.4.lnk[2010-11-14 18:20:26 | 000,000,041 | ---- | C] () -- C:\WINDOWS\My Settings.ini[2010-11-14 18:20:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\spdg.dll[2010-09-30 20:26:56 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll[2010-09-30 20:26:56 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini[2010-09-30 20:26:54 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll[2010-09-30 20:26:54 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll[2010-09-30 20:26:52 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll[2010-09-16 19:17:57 | 000,121,760 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat[2010-05-28 20:45:45 | 000,000,208 | ---- | C] () -- C:\WINDOWS\VOGEL.INI[2010-04-22 17:58:36 | 000,002,083 | ---- | C] () -- C:\WINDOWS\UAMedytor.ini[2010-04-06 21:43:25 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32	sgqec.dll[2010-04-06 21:40:57 | 001,041,536 | ---- | C] () -- C:\WINDOWS\System32\drivers\hsfdpsp2.sys[2010-04-06 21:40:56 | 000,166,912 | ---- | C] () -- C:\WINDOWS\System32\drivers\s3gnbm.sys[2009-11-13 19:54:33 | 000,000,024 | ---- | C] () -- C:\WINDOWS\cdplayer.ini[2009-09-24 20:12:49 | 000,006,144 | ---- | C] () -- C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini[2009-09-23 17:13:49 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI[2009-08-23 14:48:41 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini[2009-06-07 09:28:25 | 000,000,404 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI[2009-06-07 09:28:25 | 000,000,027 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI[2009-06-07 09:27:16 | 000,176,128 | ---- | C] () -- C:\WINDOWS\System32\BroSNMP.dll[2009-06-07 09:26:19 | 000,031,567 | ---- | C] () -- C:\WINDOWS\maxlink.ini[2009-06-06 19:18:46 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI[2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI[2001-10-26 15:29:26 | 000,148,480 | ---- | C] () -- C:\WINDOWS\System32\cic.dll[2000-05-23 22:45:58 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\MSSTDFMT.DLL< End of report >

Acorus 20 · Answer

Mała poprawka.Uruchom OTL i w okno (Własne opcje skanowania/Script)wklej:Kliknij Wykonaj skrypt.W OTL użyj opcji Sprzątanie. Przeskanuj progr.Malwarebytes Anti-Malware i Dr.WEB CureIt.Zastosuj się do wskazówek Kolobosa.