Strona startowa qooqle, jak usunąć ? PROSZĘ O POMOC

e_w_a · 8 Maj 2011 09:11

witam,

mam problem ze stroną startową qooqle. Nie mogę jej usunąć. Przeglądałam już wątki w tym temacie i ściągnęłam OTL ale nie mogę wkleic logów bo włącza mi się tylko na 3 sekundy i nic nie mogę z tym zrobić. Mógłby mi ktoś pomóc??

djkamil09061991 · 8 Maj 2011 10:05

Wykonaj pełne skanowanie programem Malwarebytes:

http://www.dobreprogramy.pl/Malwarebyte … 13117.html

usuń co znajdzie i pokaż raport, następnie spróbuj uruchomić OTL

e_w_a · 8 Maj 2011 10:54

Malwarebytes’ Anti-Malware 1.50.1.1100

http://www.malwarebytes.org

Wersja bazy: 6531

Windows 5.1.2600 Dodatek Service Pack 3

Internet Explorer 6.0.2900.5512

2011-05-08 12:46:31

mbam-log-2011-05-08 (12-46-31).txt

Typ skanowania: Pełne skanowanie (C:|D:|E:|)

Przeskanowano obiektów: 185008

Upłynęło: 32 minut(y), 44 sekund(y)

Zainfekowanych procesów w pamięci: 1

Zainfekowanych modułów w pamięci: 0

Zainfekowanych kluczy rejestru: 0

Zainfekowanych wartości rejestru: 4

Zainfekowane informacje rejestru systemowego: 1

Zainfekowanych folderów: 0

Zainfekowanych plików: 6

Zainfekowanych procesów w pamięci:

c:\documents and settings\x\dane aplikacji\VolPanel.exe (Redir.Qooqlle) -> 912 -> Unloaded process successfully.

Zainfekowanych modułów w pamięci:

(Nie znaleziono zagrożeń)

Zainfekowanych kluczy rejestru:

(Nie znaleziono zagrożeń)

Zainfekowanych wartości rejestru:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\PROGRAM FILES\COMMON FILES\SPIGOT\WTXPCOM\COMPONENTS\WIDGITOOLBARFF.DLL (Adware.WidgiToolbar) -> Value: WIDGITOOLBARFF.DLL -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\TunesHelper (Redir.Qooqlle) -> Value: TunesHelper -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Readar_sl (Redir.Qooqlle) -> Value: Readar_sl -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\VolPanel32 (Redir.Qooqlle) -> Value: VolPanel32 -> Quarantined and deleted successfully.

Zainfekowane informacje rejestru systemowego:

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page (Redir.Qooqlle) -> Bad: (http://www.qooqlle.com/) Good: (http://www.google.com) -> Quarantined and deleted successfully.

Zainfekowanych folderów:

(Nie znaleziono zagrożeń)

Zainfekowanych plików:

c:\documents and settings\x\ustawienia lokalne\Temp\nse72.tmp\NSISdlGG.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.

c:\program files\common files\Spigot\wtxpcom\components\widgitoolbarff.dll (Adware.WidgiToolbar) -> Quarantined and deleted successfully.

e:\programy\autocad2008\autocad 2008 keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.

c:\documents and settings\all users\tuneshelper.exe (Redir.Qooqlle) -> Quarantined and deleted successfully.

c:\documents and settings\x\dane aplikacji\VolPanel.exe (Redir.Qooqlle) -> Quarantined and deleted successfully.

c:\documents and settings\x\dane aplikacji\readar_sl.exe (Redir.Qooqlle) -> Quarantined and deleted successfully.

– Dodane 08.05.2011 (N) 12:56 –

wyżej jest raport i OTL włączył się bez problemu. Więc co dalej??

djkamil09061991 · 8 Maj 2011 11:02

Większośc się usunęło, ale podaj jeszcze te logi z OTL instrukcja:

otl-gmer-rsit-dss-inne-instrukcje-t370405.html

e_w_a · 8 Maj 2011 11:38

OTL Extras logfile created on: 2011-05-08 13:35:12 - Run 1

OTL by OldTimer - Version 3.2.22.3 Folder = d:\Moje dokumenty\Downloads

Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.5512)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

895,00 Mb Total Physical Memory | 333,00 Mb Available Physical Memory | 37,00% Memory free

2,00 Gb Paging File | 2,00 Gb Available in Paging File | 77,00% Paging File free

Paging file location(s): C:\pagefile.sys 1344 2688 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 19,53 Gb Total Space | 8,91 Gb Free Space | 45,61% Space Free | Partition Type: NTFS

Drive D: | 29,29 Gb Total Space | 18,57 Gb Free Space | 63,39% Space Free | Partition Type: NTFS

Drive E: | 62,96 Gb Total Space | 44,45 Gb Free Space | 70,60% Space Free | Partition Type: NTFS

Drive F: | 546,76 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: X-4E6954B5D7424 | User Name: x | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes]

.cpl [@ = cplfile] – rundll32.exe shell32.dll,Control_RunDLL “%1”,%*

.url [@ = InternetShortcut] – rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1177238915-1801674531-1810155577-1004\SOFTWARE\Classes]

.html [@ = ChromeHTML] – Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\shell[command]\command]

batfile [open] – “%1” %*

cmdfile [open] – “%1” %*

comfile [open] – “%1” %*

cplfile [cplopen] – rundll32.exe shell32.dll,Control_RunDLL “%1”,%*

exefile [open] – “%1” %*

htmlfile [edit] – “C:\Program Files\Microsoft Office\Office14\msohtmed.exe” %1 (Microsoft Corporation)

htmlfile [print] – “C:\Program Files\Microsoft Office\Office14\msohtmed.exe” /p %1 (Microsoft Corporation)

InternetShortcut [open] – rundll32.exe shdocvw.dll,OpenURL %l

piffile [open] – “%1” %*

regfile [merge] – Reg Error: Key error.

scrfile [config] – “%1”

scrfile [install] – rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] – “%1” /S

txtfile [edit] – Reg Error: Key error.

Unknown [openas] – %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [find] – %SystemRoot%\Explorer.exe (Microsoft Corporation)

Directory [Winamp.Bookmark] – “C:\Program Files\Winamp\winamp.exe” /BOOKMARK “%1” (Nullsoft, Inc.)

Directory [Winamp.Enqueue] – “C:\Program Files\Winamp\winamp.exe” /ADD “%1” (Nullsoft, Inc.)

Directory [Winamp.Play] – “C:\Program Files\Winamp\winamp.exe” “%1” (Nullsoft, Inc.)

Folder [open] – %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

Folder [explore] – %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

Drive [find] – %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

“FirstRunDisabled” = 1

“AntiVirusDisableNotify” = 0

“FirewallDisableNotify” = 0

“UpdatesDisableNotify” = 0

“AntiVirusOverride” = 0

“FirewallOverride” = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]

“DisableSR” = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]

“Start” = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]

“Start” = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

“C:\Program Files\Microsoft Office\Office14\GROOVE.EXE” = C:\Program Files\Microsoft Office\Office14\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace – (Microsoft Corporation)

“C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE” = C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE:*:Enabled:Microsoft OneNote – (Microsoft Corporation)

“C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE” = C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook – (Microsoft Corporation)

“E:\programy\Gadu-Gadu 10\gg.exe” = E:\programy\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 – (GG Network S.A.)

“C:\Documents and Settings\x\Pulpit\StrongDC.exe” = C:\Documents and Settings\x\Pulpit\StrongDC.exe:*:Enabled:StrongDC++

“E:\programy\sdc221\StrongDC.exe” = E:\programy\sdc221\StrongDC.exe:*:Enabled:StrongDC++ – ()

“E:\programy\AxessManager.exe” = E:\programy\AxessManager.exe:*:Enabled:AxessManager Application – (Axesstel Inc.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

“{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}” = PDFCreator

“{01008697-BDFF-D63E-028F-3D761B9ECFCD}” = Catalyst Control Center Localization Japanese

“{055EE59D-217B-43A7-ABFF-507B966405D8}” = ATI Catalyst Control Center

“{08F40849-1FEC-2FCD-DB52-DE763E0502A3}” = CCC Help Polish

“{09C85E5A-3E10-4268-904C-BACEF16ECEF0}” = ESET NOD32 Antivirus

“{0A755762-EED8-47AB-A446-505766F93D43}” = Atheros Communications Inc.® L2 Fast Ethernet Driver

“{0E0153EE-02B7-0B65-1702-25C52177B486}” = Catalyst Control Center Localization Danish

“{0E02DEDE-3FBB-3220-6B36-0D52B51A0BED}” = Catalyst Control Center Localization French

“{0E5922EE-B18C-F8FF-0BF5-359422A2C5A0}” = CCC Help Swedish

“{0ECA0FC5-F931-E6F7-3799-1828D0E5B00B}” = CCC Help Chinese Standard

“{13EF8260-2655-1AAD-3471-7F12CC8E8D7B}” = Catalyst Control Center Graphics Full Existing

“{161B2582-D82E-8B24-E0C0-FBBB3A85C08B}” = CCC Help Greek

“{1781F757-10E2-49F1-D4F3-4AA8DA2E2FDF}” = CCC Help Turkish

“{1A455F58-7718-2D02-9DF6-D0E5042AFE2B}” = CCC Help Chinese Traditional

“{1B5FA043-94A4-91F4-A907-DC03A0D33104}” = Catalyst Control Center Localization Chinese Traditional

“{1BCC4A3D-5B42-3BB2-D346-75834617B031}” = Catalyst Control Center Localization Korean

“{1C4C0D80-780A-6580-92CE-F2E9F94BA5D6}” = Catalyst Control Center Localization Turkish

“{1CBCC734-E92F-C744-D86C-3699D5351045}” = Nero 7 Demo

“{1E21422B-B426-0E85-2333-A230E99375E3}” = Catalyst Control Center Localization Polish

“{21527237-ECE2-43C8-29C5-E43C5F17FCCC}” = CCC Help French

“{26A24AE4-039D-4CA4-87B4-2F83216023FF}” = Java 6 Update 24

“{28006915-2739-4EBE-B5E8-49B25D32EB33}” = Atheros Client Installation Program

“{332CC6BF-E6C7-48EE-BA3D-435E576AD67F}” = PaperPort Image Printer

“{34D10029-5B88-C2A8-BDF8-A168EA0E8C76}” = CCC Help Czech

“{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}” = WebFldrs XP

“{36CDA33B-909B-4719-97D1-C4B99309BDC7}” = ATI Parental Control & Encoder

“{37B83E46-5932-2FB0-6CE1-B3AF3B5C9327}” = Catalyst Control Center Localization Portuguese

“{3DED3A72-61A8-4B87-98A5-EF0BC8038AA0}” = DAEMON Tools

“{41A40398-A4D5-11FD-DD2F-9B9A9148A4D8}” = CCC Help Spanish

“{4A03706F-666A-4037-7777-5F2748764D10}” = Java Auto Updater

“{4D342F33-3DAA-02A8-CBBA-763755683E5B}” = CCC Help Japanese

“{51A86EBC-C476-01F7-B0A8-A163CF72332D}” = CCC Help Danish

“{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}” = VBA (2627.01)

“{5783F2D7-6001-0415-0002-0060B0CE6BBA}” = AutoCAD 2008 - Polski

“{589F60BC-2712-FB88-7CF0-BE9E09DDD892}” = ccc-core-static

“{59D97AA9-EF5F-8A54-04F3-98E1D9AFE43B}” = Catalyst Control Center Localization Thai

“{5AF71003-1797-4D93-9F37-4F2125CBF539}” = Microsoft .NET Framework 2.0 Language Pack - PLK

“{64CBF40D-A9E9-5DCC-326D-F9B428DB11EA}” = CCC Help Russian

“{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}” = PowerDVD

“{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}” = Microsoft .NET Framework 2.0

“{73B9D273-503E-548B-2811-771CD745F76B}” = Catalyst Control Center Localization Italian

“{7D83EA87-9B6D-672A-D359-8186DD63FD2B}” = Catalyst Control Center Localization Russian

“{837b34e3-7c30-493c-8f6a-2b0f04e2912c}” = Microsoft Visual C++ 2005 Redistributable

“{86004E46-F949-A425-F5EA-2DA9E6CB00D1}” = CCC Help Italian

“{86C83CC2-4CE2-3834-24F2-0DC23CAD27AC}” = CCC Help Portuguese

“{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}” = Microsoft Silverlight

“{8F722FA9-B994-4C9B-B292-FD32D6206EDF}” = ASUS WLAN Card Utilities/Driver

“{90140000-0010-0415-0000-0000000FF1CE}” = Microsoft Software Update for Web Folders (Polish) 14

“{90140000-0011-0000-0000-0000000FF1CE}” = Microsoft Office Professional Plus 2010

“{90140000-0015-0415-0000-0000000FF1CE}” = Microsoft Office Access MUI (Polish) 2010

“{90140000-0016-0415-0000-0000000FF1CE}” = Microsoft Office Excel MUI (Polish) 2010

“{90140000-0018-0415-0000-0000000FF1CE}” = Microsoft Office PowerPoint MUI (Polish) 2010

“{90140000-0019-0415-0000-0000000FF1CE}” = Microsoft Office Publisher MUI (Polish) 2010

“{90140000-001A-0415-0000-0000000FF1CE}” = Microsoft Office Outlook MUI (Polish) 2010

“{90140000-001B-0415-0000-0000000FF1CE}” = Microsoft Office Word MUI (Polish) 2010

“{90140000-001F-0407-0000-0000000FF1CE}” = Microsoft Office Proof (German) 2010

“{90140000-001F-0409-0000-0000000FF1CE}” = Microsoft Office Proof (English) 2010

“{90140000-001F-0415-0000-0000000FF1CE}” = Microsoft Office Proof (Polish) 2010

“{90140000-002C-0415-0000-0000000FF1CE}” = Microsoft Office Proofing (Polish) 2010

“{90140000-0044-0415-0000-0000000FF1CE}” = Microsoft Office InfoPath MUI (Polish) 2010

“{90140000-006E-0415-0000-0000000FF1CE}” = Microsoft Office Shared MUI (Polish) 2010

“{90140000-00A1-0415-0000-0000000FF1CE}” = Microsoft Office OneNote MUI (Polish) 2010

“{90140000-00BA-0415-0000-0000000FF1CE}” = Microsoft Office Groove MUI (Polish) 2010

“{95416EF4-F37F-7412-E58C-C0F8F554D8A0}” = Catalyst Control Center Localization Hungarian

“{954F2AC8-A4C9-F202-FC15-D4BDC86081A1}” = Catalyst Control Center Graphics Full New

“{9A346205-EA92-4406-B1AB-50379DA3F057}” = Autodesk DWF Viewer 7

“{9A660264-A765-2AFF-6CFD-47CBFFDE4B31}” = Catalyst Control Center Localization Greek

“{9C58BEB2-82EE-A18F-0ECF-BC47CD18ADAF}” = Catalyst Control Center Localization Czech

“{A0B139A7-E8D5-49E8-A7BF-12421E652208}” = pdfforge Toolbar v4.3

“{A0DBDF40-559F-11E0-82E2-001D0926B1BF}” = Google Earth Plug-in

“{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}” = Brother MFL-Pro Suite

“{A4166DFB-8A6F-DB48-7436-7C5C3D8A0213}” = CCC Help Korean

“{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}” = Google Update Helper

“{AC76BA86-7AD7-1033-7B44-AA0000000001}” = Adobe Reader X (10.0.1)

“{AE63DAEF-870F-0E50-1D6C-453C229C1F06}” = Catalyst Control Center Localization Norwegian

“{AEB9948B-4FF2-47C9-990E-47014492A0FE}” = MSXML 6.0 Parser

“{B4B85B5E-E63A-F5EC-5045-CA818585038D}” = CCC Help English

“{B52D7A21-03E5-4C0C-82FA-FD8EB4C92149}” = AxessManager

“{B6C89654-A6A2-477C-873B-724EC1C56407}” = ScanSoft PaperPort 11

“{BA848FB0-91AB-FBD4-7D3E-B92A29006D13}” = Catalyst Control Center Core Implementation

“{BB65C393-C76E-4F06-9B0C-2124AA8AF97B}” = Adobe Flash Player 9 ActiveX

“{BB6D06CF-5E6C-6FB2-A0E5-2B08C05379A3}” = ccc-utility

“{BF30E962-D03D-0794-2C67-34C1C5ADE795}” = CCC Help Hungarian

“{C8B23990-260A-1D86-9300-1A367BFD4A97}” = CCC Help Thai

“{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}” = Bluetooth Stack for Windows

“{CF9912FD-41EE-88F6-6E65-C2BA86C44BD3}” = CCC Help German

“{CFFCBF25-740B-7A73-3D05-7758FCF3CC99}” = CCC Help Norwegian

“{D0DFF16B-9262-54C9-4F08-54380031CC68}” = Catalyst Control Center Localization German

“{D4D6E41D-0C9B-26C2-E2DA-81AB5360D343}” = Catalyst Control Center Localization Finnish

“{D899BA24-BEB5-EA33-A9E1-25552690CD14}” = Skins

“{DC24971E-1946-445D-8A82-CE685433FA7D}” = Realtek USB 2.0 Card Reader

“{E084BCDD-4307-DD43-BF32-AEFC57EF7E75}” = Catalyst Control Center Localization Spanish

“{E6BEC2A5-2B88-2210-5DE5-8F0DAA89A1AD}” = Catalyst Control Center Localization Dutch

“{ED7CD350-E9A6-C13B-1987-B0585175CA66}” = Catalyst Control Center Localization Swedish

“{EF468294-5893-016F-D1FD-36BE11E67BFA}” = CCC Help Finnish

“{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}” = Realtek High Definition Audio Driver

“{F6C36218-55AE-3095-D123-BEDECCC3A5E6}” = Catalyst Control Center Localization Chinese Standard

“{F8A01A89-6892-4387-D2C7-6C391557F01E}” = Catalyst Control Center Graphics Light

“{FEA08F47-FF91-DE5E-2D86-BD20A632452B}” = CCC Help Dutch

“Adobe Flash Player Plugin” = Adobe Flash Player 10 Plugin

“All ATI Software” = Narzędzie Software Uninstall Utility firmy ATI

“ATI Display Driver” = ATI Display Driver

“AutoCAD 2008 - Polski” = AutoCAD 2008 - Polski

“ffdshow_is1” = ffdshow v1.1.3631 [2010-11-15]

“Gadu-Gadu 10” = Gadu-Gadu 10

“IDNMitigationAPIs” = Microsoft Internationalized Domain Names Mitigation APIs

“ipla” = ipla 2.3

“KLiteCodecPack_is1” = K-Lite Codec Pack 6.2.0 (Basic)

“Malwarebytes’ Anti-Malware_is1” = Malwarebytes’ Anti-Malware

“Microsoft .NET Framework 2.0” = Microsoft .NET Framework 2.0

“Microsoft .NET Framework 2.0 Language Pack - PLK” = Microsoft .NET Framework 2.0 — pakiet języka polskiego

“Mozilla Firefox (3.6.12)” = Mozilla Firefox (3.6.12)

“NapiProjekt_is1” = NapiProjekt 1.0.6.9

“Office14.PROPLUS” = Microsoft Office Professional Plus 2010

“Rainlendar2” = Rainlendar2 (remove only)

“RealPlayer 6.0” = RealPlayer

“SubEdit-Player_is1” = SubEdit-Player

“USB2.0 1.3M WebCam” = USB2.0 1.3M WebCam

“Winamp” = Winamp

“WinRAR archiver” = Archiwizator WinRAR

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1177238915-1801674531-1810155577-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

“Google Chrome” = Google Chrome

“Winamp Detect” = Detektor Winampa

========== Last 10 Event Log Errors ==========

[Application Events]

Error - 2011-04-21 06:08:00 | Computer Name = X-4E6954B5D7424 | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd silverlight.configuration.exe, wersja 4.0.51204.0,

moduł powodujący błąd silverlight.configuration.exe, wersja 4.0.51204.0, adres

błędu 0x0003ccb0.

Error - 2011-04-22 14:10:50 | Computer Name = X-4E6954B5D7424 | Source = MsiInstaller | ID = 10005

Description = Produkt: ESET NOD32 Antivirus – Błąd 5001. Komputer nie został ponownie

uruchomiony po odinstalowaniu programu. Należy uruchomić ponownie komputer i uruchomić

program instalacyjny.

Error - 2011-04-27 06:57:59 | Computer Name = X-4E6954B5D7424 | Source = Microsoft Office 14 | ID = 5000

Description = EventType officelifeboathang, P1 winword.exe, P2 14.0.4762.1000, P3

ntdll.dll, P4 5.1.2600.5512, P5 NIL, P6 NIL, P7 NIL, P8 NIL, P9 NIL, P10 NIL.

Error - 2011-05-06 07:04:59 | Computer Name = X-4E6954B5D7424 | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca subedit.exe, wersja 1.0.0.4072, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-06 07:21:07 | Computer Name = X-4E6954B5D7424 | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca subedit.exe, wersja 1.0.0.4072, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-06 07:22:12 | Computer Name = X-4E6954B5D7424 | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca subedit.exe, wersja 1.0.0.4072, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-06 14:28:35 | Computer Name = X-4E6954B5D7424 | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd chrome.exe, wersja 0.0.0.0, moduł powodujący

błąd gcswf32.dll, wersja 10.2.154.27, adres błędu 0x00386c86.

[System Events]

Error - 2011-03-18 04:47:05 | Computer Name = X-4E6954B5D7424 | Source = Service Control Manager | ID = 7023

Description = Usługa Karta wydajności WMI zakończyła działanie; wystąpił następujący

błąd: %%2147500037

Error - 2011-03-21 04:21:07 | Computer Name = X-4E6954B5D7424 | Source = Service Control Manager | ID = 7023

Description = Usługa Karta wydajności WMI zakończyła działanie; wystąpił następujący

błąd: %%2147500037

< End of report >

djkamil09061991 · 8 Maj 2011 11:41

Podałaś tylko extras.txt a trzeba jeszcze OTL.txt ponieważ powstaja 2 logi

e_w_a · 8 Maj 2011 11:43

już podaje nie zauważyłam drugiego

OTL logfile created on: 2011-05-08 13:35:12 - Run 1