Avast!-nieustanie skanuje pamięć operacujną systemu. Wirusy?

Dla specjalistów Bezpieczeństwo
#1

Witam!

Avast!-wersja 4.8 Home Edition po każdym uruchomieniu kompa informuje o prawdopodobieństwie zarażenia systemu i skanuje pamięć…nic nie wykrywa, uruchamia na nowo system i…tak wkółko. Co powinnam zrobić? Proszę pomóżcie

Mój system operacyjny to Microsoft Windows XP Home Edition. Wersja: 5.1.2600. Dodatek Service Pack: 3.0

#2

Daj na forum log z OTL- instrukcja jak to zrobić.

Zapoznaj się również z zasadami wklejania logów na forum.

#3

http://www.wklej.org/id/254838/

#4

W białe dolne okno Custom Scans/Fixes w OTL wklej:

Run Fix. Restart, jeśli będzie potrzebny.

Potem log z usuwania oraz nowy log robiony opcją Run Scan.

#5

Files\Folders moved on Reboot…

File\Folder C:\Documents and Settings\abcd\Menu Start\Programy\Autostart\OneWay.lnk not found!

Registry entries deleted on Reboot…

Dodane 03.01.2010 (N) 17:57

OTL logfile created on: 2010-01-03 17:50:05 - Run 2

OTL by OldTimer - Version 3.1.20.2 Folder = C:\Documents and Settings\abcd\Pulpit

Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 68,00% Memory free

4,00 Gb Paging File | 3,00 Gb Available in Paging File | 87,00% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 37,57 Gb Total Space | 22,73 Gb Free Space | 60,49% Space Free | Partition Type: NTFS

D: Drive not present or media not loaded

Drive E: | 97,65 Gb Total Space | 55,25 Gb Free Space | 56,58% Space Free | Partition Type: NTFS

Drive F: | 97,65 Gb Total Space | 91,65 Gb Free Space | 93,85% Space Free | Partition Type: NTFS

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: XYZ

Current User Name: abcd

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Company Name Whitelist: On

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Processes (SafeList) ==========

PRC - [2010-01-03 14:55:21 | 00,513,536 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\abcd\Pulpit\OTL.exe

PRC - [2009-12-12 14:12:34 | 00,198,160 | ---- | M] (RealNetworks, Inc.) – C:\Program Files\Common Files\Real\Update_OB\realsched.exe

PRC - [2009-11-25 00:51:40 | 00,081,000 | ---- | M] (ALWIL Software) – C:\Program Files\avast! 4.8.1335 Home Edition PL\ashDisp.exe

PRC - [2009-11-25 00:51:35 | 00,138,680 | ---- | M] (ALWIL Software) – C:\Program Files\avast! 4.8.1335 Home Edition PL\ashServ.exe

PRC - [2009-11-25 00:51:21 | 00,254,040 | ---- | M] (ALWIL Software) – C:\Program Files\avast! 4.8.1335 Home Edition PL\ashMaiSv.exe

PRC - [2009-11-25 00:48:48 | 00,352,920 | ---- | M] (ALWIL Software) – C:\Program Files\avast! 4.8.1335 Home Edition PL\ashWebSv.exe

PRC - [2009-11-25 00:43:56 | 00,018,752 | ---- | M] (ALWIL Software) – C:\Program Files\avast! 4.8.1335 Home Edition PL\aswUpdSv.exe

PRC - [2009-11-01 16:13:35 | 00,039,408 | ---- | M] (Google Inc.) – C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

PRC - [2009-08-31 17:07:34 | 11,391,592 | ---- | M] (GG Network S.A.) – E:\GaduGadu\Nowe Gadu-Gadu\gg.exe

PRC - [2009-08-31 15:56:26 | 00,077,824 | ---- | M] () – E:\GaduGadu\Nowe Gadu-Gadu\spellchecker_gg.exe

PRC - [2009-07-16 20:51:33 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files\Java\jre6\bin\jqs.exe

PRC - [2009-07-16 20:51:33 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files\Java\jre6\bin\jusched.exe

PRC - [2009-07-01 17:37:06 | 00,037,888 | ---- | M] () – E:\Winamp\winampa.exe

PRC - [2009-02-27 02:55:48 | 33,599,488 | R— | M] (VIA Technologies, Inc.) – C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe

PRC - [2009-02-22 20:15:14 | 05,668,864 | ---- | M] (http://www.emule-project.net) – E:\eMule v0. 49c\eMule\emule.exe

PRC - [2009-01-21 17:08:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) – C:\WINDOWS\system32\nvsvc32.exe

PRC - [2008-04-15 13:00:00 | 01,425,408 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\explorer.exe

PRC - [2008-04-13 18:39:20 | 00,049,152 | ---- | M] (artArmin) – C:\Program Files\Vista Drive Icon\DrvIcon.exe

PRC - [2007-06-05 12:20:32 | 00,177,704 | ---- | M] () – C:\WINDOWS\system32\PSIService.exe

PRC - [2007-05-30 12:52:32 | 00,868,352 | ---- | M] () – C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe

PRC - [2005-07-21 01:17:20 | 00,192,512 | ---- | M] () – C:\Program Files\Lexmark 3300 Series\LXCCmon.exe

PRC - [2005-07-06 15:04:20 | 00,466,944 | ---- | M] (Lexmark International, Inc.) – C:\WINDOWS\system32\lxcccoms.exe

PRC - [2004-09-07 15:25:12 | 01,151,090 | ---- | M] (Ahead Software AG) – C:\Program Files\Ahead\InCD\InCDsrv.exe

PRC - [2004-09-07 14:25:58 | 01,400,944 | ---- | M] (Ahead Software AG) – C:\Program Files\Ahead\InCD\InCD.exe

PRC - [2003-12-08 16:35:14 | 00,032,768 | ---- | M] (Cyberlink Corp.) – C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe

PRC - [1999-12-13 02:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) – C:\WINDOWS\system32\CTSVCCDA.EXE

========== Modules (SafeList) ==========

MOD - [2010-01-03 14:55:21 | 00,513,536 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\abcd\Pulpit\OTL.exe

MOD - [2006-05-03 21:53:54 | 00,174,592 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\framedyn.dll

========== Win32 Services (SafeList) ==========

SRV - [2009-11-25 00:51:35 | 00,138,680 | ---- | M] (ALWIL Software) [Auto | Running] – C:\Program Files\avast! 4.8.1335 Home Edition PL\ashServ.exe – (avast! Antivirus)

SRV - [2009-11-25 00:51:21 | 00,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] – C:\Program Files\avast! 4.8.1335 Home Edition PL\ashMaiSv.exe – (avast! Mail Scanner)

SRV - [2009-11-25 00:48:48 | 00,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] – C:\Program Files\avast! 4.8.1335 Home Edition PL\ashWebSv.exe – (avast! Web Scanner)

SRV - [2009-11-25 00:43:56 | 00,018,752 | ---- | M] (ALWIL Software) [Auto | Running] – C:\Program Files\avast! 4.8.1335 Home Edition PL\aswUpdSv.exe – (aswUpdSv)

SRV - [2009-11-01 16:13:35 | 00,182,768 | ---- | M] (Google) [On_Demand | Stopped] – C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe – (gusvc)

SRV - [2009-07-16 20:51:33 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] – C:\Program Files\Java\jre6\bin\jqs.exe – (JavaQuickStarterService)

SRV - [2009-01-21 17:08:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) [Auto | Running] – C:\WINDOWS\system32\nvsvc32.exe – (NVSvc)

SRV - [2007-06-05 12:20:32 | 00,177,704 | ---- | M] () [Auto | Running] – C:\WINDOWS\system32\PSIService.exe – (ProtexisLicensing)

SRV - [2006-05-11 17:40:06 | 00,358,008 | ---- | M] (Protection Technology (StarForce)) [Auto | Stopped] – C:\WINDOWS\System32\sfrem02.exe – (sfrem02) FrontLine Drivers Auto Removal (v2)

SRV - [2005-07-06 15:04:20 | 00,466,944 | ---- | M] (Lexmark International, Inc.) [On_Demand | Running] – C:\WINDOWS\System32\lxcccoms.exe – (lxcc_device)

SRV - [2004-09-07 15:25:12 | 01,151,090 | ---- | M] (Ahead Software AG) [Auto | Running] – C:\Program Files\Ahead\InCD\InCDsrv.exe – (InCDsrv)

SRV - [1999-12-13 02:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) [Auto | Running] – C:\WINDOWS\system32\CTSVCCDA.EXE – (Creative Service for CDROM Access)

========== Driver Services (SafeList) ==========

DRV - [2009-11-25 00:50:59 | 00,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] – C:\WINDOWS\system32\drivers\aswmon2.sys – (aswMon2)

DRV - [2009-11-25 00:50:12 | 00,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\aswSP.sys – (aswSP)

DRV - [2009-11-25 00:50:00 | 00,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] – C:\WINDOWS\system32\drivers\aswFsBlk.sys – (aswFsBlk)

DRV - [2009-11-25 00:49:07 | 00,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\aswTdi.sys – (aswTdi)

DRV - [2009-11-25 00:48:57 | 00,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\aswRdr.sys – (aswRdr)

DRV - [2009-11-25 00:47:54 | 00,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\aavmker4.sys – (Aavmker4)

DRV - [2009-07-28 16:35:11 | 00,005,632 | ---- | M] () [File_System | System | Running] – C:\WINDOWS\system32\drivers\StarOpen.sys – (StarOpen)

DRV - [2009-04-28 21:20:06 | 00,044,944 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] – C:\WINDOWS\System32\Drivers\PxHelp20.sys – (PxHelp20)

DRV - [2009-02-16 03:25:52 | 01,057,024 | R— | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\viahduaa.sys – (VIAHdAudAddService)

DRV - [2009-01-21 17:08:00 | 06,305,472 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\nv4_mini.sys – (nv)

DRV - [2008-08-18 11:54:24 | 00,145,952 | R— | M] (NVIDIA Corporation) [Kernel | Boot | Running] – C:\WINDOWS\system32\DRIVERS\nvgts.sys – (nvgts)

DRV - [2008-04-15 13:00:00 | 00,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\hdaudbus.sys – (HDAudBus)

DRV - [2008-04-15 13:00:00 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\secdrv.sys – (Secdrv)

DRV - [2008-04-15 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ptilink.sys – (Ptilink)

DRV - [2008-04-13 23:11:22 | 00,026,112 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\MemStPCI.SYS – (MemStPCI) Kontroler modułów pamięci Memory Stick Sony (PCI)

DRV - [2008-03-25 04:48:08 | 00,022,016 | R— | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\nvnetbus.sys – (nvnetbus)

DRV - [2008-03-25 04:48:06 | 00,054,400 | R— | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\NVENETFD.sys – (NVENETFD)

DRV - [2008-02-14 07:12:00 | 01,389,056 | R— | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\monfilt.sys – (monfilt)

DRV - [2007-07-03 15:58:20 | 00,106,792 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\sscdmdm.sys – (sscdmdm)

DRV - [2007-07-03 15:57:24 | 00,011,944 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\sscdmdfl.sys – (sscdmdfl)

DRV - [2007-07-03 15:54:24 | 00,080,552 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\sscdbus.sys – (sscdbus) SAMSUNG USB Composite Device driver (WDM)

DRV - [2007-04-16 15:46:34 | 00,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\AmdPPM.sys – (AmdPPM)

DRV - [2006-12-21 16:11:51 | 00,061,312 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] – C:\WINDOWS\system32\drivers\sfsync05.sys – (sfsync05) FrontLine Synchronization Driver (v5)

DRV - [2006-09-11 12:57:56 | 00,067,960 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] – C:\WINDOWS\system32\drivers\sfdrv02.sys – (sfdrv02) FrontLine Environment Driver (v2)

DRV - [2005-07-01 18:36:44 | 00,276,930 | ---- | M] () [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\M1000KNT.sys – (M1000Srv)

DRV - [2004-09-07 15:27:38 | 00,028,544 | ---- | M] (Ahead Software AG) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\InCDpass.sys – (InCDPass)

DRV - [2004-09-07 15:27:22 | 00,091,136 | ---- | M] (Ahead Software AG) [File_System | Disabled | Running] – C:\WINDOWS\system32\drivers\InCDfs.sys – (InCDfs)

DRV - [2003-12-05 10:46:36 | 00,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\pfc.sys – (pfc)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

========== FireFox ==========

FF - prefs.js…browser.search.param.yahoo-fr: “chr-greentree_ff&type=867034”

FF - prefs.js…browser.search.selectedEngine: “”

FF - prefs.js…browser.search.useDBForOrder: true

FF - prefs.js…browser.startup.homepage: “http://www.google.pl/

FF - HKLM\software\mozilla\Firefox\extensions\m3ffxtbr@mywebsearch.com: C:\Program Files\MyWebSearch\bar\firefox\ [2009-12-22 06:25:53 | 00,000,000 | —D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\Components: C:\Program Files\Mozilla Firefox\components [2009-12-28 04:01:55 | 00,000,000 | —D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-12-23 21:03:40 | 00,000,000 | —D | M]

[2009-07-10 19:02:59 | 00,000,000 | —D | M] – C:\Documents and Settings\abcd\Dane aplikacji\Mozilla\Extensions

[2010-01-02 16:31:42 | 00,000,000 | —D | M] – C:\Documents and Settings\abcd\Dane aplikacji\Mozilla\Firefox\Profiles\4422cu99.default\extensions

[2009-11-08 10:25:11 | 00,000,000 | —D | M] (Winamp Toolbar) – C:\Documents and Settings\abcd\Dane aplikacji\Mozilla\Firefox\Profiles\4422cu99.default\extensions{0b38152b-1b20-484d-a11f-5e04a9b0661f}

[2009-11-08 10:25:01 | 00,000,000 | —D | M] (Stylish) – C:\Documents and Settings\abcd\Dane aplikacji\Mozilla\Firefox\Profiles\4422cu99.default\extensions{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}

[2009-12-29 08:09:20 | 00,000,000 | —D | M] – C:\Documents and Settings\abcd\Dane aplikacji\Mozilla\Firefox\Profiles\4422cu99.default\extensions\firebug@software.joehewitt.com

[2009-12-29 08:09:19 | 00,000,000 | —D | M] – C:\Documents and Settings\abcd\Dane aplikacji\Mozilla\Firefox\Profiles\4422cu99.default\extensions\mgDownloadHelper@yevgenyandrov.net

[2010-01-03 17:45:02 | 00,001,201 | ---- | M] () – C:\Documents and Settings\abcd\Dane aplikacji\Mozilla\Firefox\Profiles\4422cu99.default\searchplugins\winamp-search.xml

[2010-01-03 17:37:18 | 00,000,000 | —D | M] – C:\Program Files\Mozilla Firefox\extensions

[2009-11-07 20:23:33 | 00,002,767 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml

[2009-11-07 20:23:33 | 00,001,406 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml

[2009-11-07 20:23:33 | 00,000,917 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml

[2009-11-07 20:23:33 | 00,000,858 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml

[2009-11-07 20:23:33 | 00,001,183 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml

[2009-11-07 20:23:33 | 00,001,683 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()

O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)

O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)

O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)

O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\abcd\Dane aplikacji\Nowe Gadu-Gadu_userdata\ggbho.1.dll (GG Network S.A.)

O3 - HKLM…\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O3 - HKLM…\Toolbar: (StylerToolBar) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll (StyleFantasist)

O3 - HKCU…\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O4 - HKLM…\Run: [avast!] C:\Program Files\avast! 4.8.1335 Home Edition PL\ashDisp.exe (ALWIL Software)

O4 - HKLM…\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe (artArmin)

O4 - HKLM…\Run: [FaxCenterServer] C:\Program Files\Lexmark Fax Solutions\fm3032.exe ()

O4 - HKLM…\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe (VIA Technologies, Inc.)

O4 - HKLM…\Run: [inCD] C:\Program Files\Ahead\InCD\InCD.exe (Ahead Software AG)

O4 - HKLM…\Run: [LXCCCATS] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCCtime.DLL ()

O4 - HKLM…\Run: [lxccmon.exe] C:\Program Files\Lexmark 3300 Series\lxccmon.exe ()

O4 - HKLM…\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)

O4 - HKLM…\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)

O4 - HKLM…\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)

O4 - HKLM…\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()

O4 - HKLM…\Run: [QuickTime Task] F:\QuickTime 7.62\qttask.exe (Apple Inc.)

O4 - HKLM…\Run: [RemoteControl] C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe (Cyberlink Corp.)

O4 - HKLM…\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)

O4 - HKLM…\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)

O4 - HKLM…\Run: [WinampAgent] E:\Winamp\winampa.exe ()

O4 - HKCU…\Run: [ALLUpdate] F:\ALLPlayer 4.0\ALLPlayer\ALLUpdate.exe ()

O4 - HKCU…\Run: [CTSyncU.exe] C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe ()

O4 - HKCU…\Run: [eMuleAutoStart] E:\eMule v0. 49c\eMule\emule.exe (http://www.emule-project.net)

O4 - HKCU…\Run: [Nowe Gadu-Gadu] E:\GaduGadu\Nowe Gadu-Gadu\gg.exe (GG Network S.A.)

O4 - HKCU…\Run: [Odkurzacz-MCD] E:\Odkurzacz 11.0.0108\Odkurzacz\odk_mcd.exe (Franmo Software)

O4 - HKCU…\Run: [skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)

O4 - HKCU…\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)

O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)

O15 - HKLM…Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.

O15 - HKCU…Trusted Domains: mks.com.pl ([www] http in Zaufane witryny)

O15 - HKCU…Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.

O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ … vc1dmo.cab (Reg Error: Key error.)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_14)

O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_14)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_14)

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UIHost - (vistaui.exe) - C:\WINDOWS\System32\vistaui.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009-07-08 12:13:46 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT – [NTFS]

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - comfile [open] – “%1” %*

O35 - exefile [open] – “%1” %*

========== Files/Folders - Created Within 30 Days ==========

[2010-01-03 16:22:19 | 00,000,000 | —D | C] – C:_OTL

[2010-01-03 14:55:21 | 00,513,536 | ---- | C] (OldTimer Tools) – C:\Documents and Settings\abcd\Pulpit\OTL.exe

[2010-01-01 15:48:46 | 00,000,000 | —D | C] – C:\Documents and Settings\abcd\Pulpit\Nowy folder

[2009-12-22 23:51:20 | 00,892,928 | ---- | C] (Free Software Foundation) – C:\WINDOWS\System32\iconv.dll

[2009-12-21 20:51:08 | 00,000,000 | —D | C] – C:\Program Files\ReflexiveArcade

[2009-12-17 17:30:13 | 00,000,000 | —D | C] – C:\Documents and Settings\abcd\Dane aplikacji\FunWebProducts

[2009-12-17 17:25:55 | 00,028,672 | ---- | C] (FunWebProducts.com) – C:\WINDOWS\System32\f3PSSavr.scr

[2009-12-17 17:25:55 | 00,000,000 | —D | C] – C:\Program Files\FunWebProducts

[2009-12-17 17:25:54 | 00,000,000 | —D | C] – C:\Program Files\MyWebSearch

[2009-12-17 17:21:05 | 00,000,000 | —D | C] – C:\Documents and Settings\abcd\Moje dokumenty\My eBooks

[2009-12-12 14:12:44 | 00,000,000 | —D | C] – C:\Program Files\Common Files\xing shared

[2009-12-12 14:12:35 | 00,278,528 | ---- | C] (Real Networks, Inc) – C:\WINDOWS\System32\pncrt.dll

[2009-12-12 14:12:35 | 00,000,000 | —D | C] – C:\Program Files\Real

[2009-12-11 17:04:01 | 00,000,000 | —D | C] – C:\Program Files\Pekka Kana 2

[2009-12-11 16:58:14 | 00,000,000 | —D | C] – C:\Program Files\Maluch sim

[2009-12-05 16:34:00 | 00,000,000 | —D | C] – C:\Program Files\Sigma-Team

[2009-12-05 16:26:19 | 00,000,000 | —D | C] – C:\Documents and Settings\abcd\Moje dokumenty\Deluxe Ski Jump 3

[2009-12-05 10:57:01 | 00,000,000 | —D | M] – C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google

[2009-12-04 23:49:00 | 00,000,000 | —D | C] – C:\Documents and Settings\abcd\Ustawienia lokalne\Dane aplikacji\Temp

[2009-12-04 23:35:40 | 00,000,000 | —D | C] – C:\Documents and Settings\abcd\Moje dokumenty\Downloads

[2009-12-04 23:34:57 | 00,000,000 | R–D | C] – C:\Documents and Settings\abcd\Moje dokumenty\Moje wideo

[2009-12-04 23:34:56 | 00,000,000 | —D | C] – C:\Documents and Settings\abcd\Ustawienia lokalne\Dane aplikacji\Real

[2009-12-04 23:34:25 | 00,000,000 | —D | C] – C:\Documents and Settings\All Users\Dane aplikacji\Real

[2009-12-04 23:34:24 | 00,000,000 | —D | C] – C:\Documents and Settings\abcd\Dane aplikacji\Real

[2009-12-04 23:33:45 | 00,000,000 | —D | M] – C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google

[2009-12-04 23:23:52 | 00,000,000 | —D | C] – C:\Documents and Settings\abcd\Dane aplikacji\Media Player Classic

[2009-11-06 00:31:40 | 00,000,000 | --SD | M] – C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft

[2009-10-03 18:10:41 | 00,000,000 | —D | M] – C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft

[2009-08-27 13:15:01 | 00,000,000 | —D | M] – C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Apple

[2009-07-08 12:17:07 | 00,000,000 | —D | M] – C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft

[2009-07-08 12:13:44 | 00,000,000 | --SD | M] – C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft

[1 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]

========== Files - Modified Within 30 Days ==========

[2010-01-03 17:51:12 | 00,003,161 | ---- | M] () – C:\WINDOWS\VPlayer.INI

[2010-01-03 17:43:18 | 00,207,962 | ---- | M] () – C:\WINDOWS\System32\nvapps.xml

[2010-01-03 17:42:37 | 00,000,006 | -H-- | M] () – C:\WINDOWS\tasks\SA.DAT

[2010-01-03 17:42:34 | 00,002,048 | --S- | M] () – C:\WINDOWS\bootstat.dat

[2010-01-03 15:23:51 | 00,000,098 | ---- | M] () – C:\WINDOWS\VplayerINI.vpl

[2010-01-03 15:23:20 | 06,815,744 | ---- | M] () – C:\Documents and Settings\abcd\ntuser.dat

[2010-01-03 14:55:21 | 00,513,536 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\abcd\Pulpit\OTL.exe

[2010-01-02 18:24:07 | 00,013,702 | ---- | M] () – C:\WINDOWS\System32\wpa.dbl

[2010-01-01 22:02:46 | 00,000,116 | ---- | M] () – C:\WINDOWS\NeroDigital.ini

[2010-01-01 21:30:47 | 00,030,124 | ---- | M] () – C:\Documents and Settings\abcd.recently-used.xbel

[2010-01-01 18:53:22 | 00,115,200 | RHS- | M] () – C:\h0.exe

[2010-01-01 14:48:06 | 00,109,568 | RHS- | M] () – C:\anoataly.exe

[2009-12-31 12:36:05 | 00,008,192 | -H-- | M] () – C:\Documents and Settings\abcd\Pulpit\photothumb.db

[2009-12-29 18:51:45 | 03,176,448 | -H-- | M] () – C:\Documents and Settings\abcd\Ustawienia lokalne\Dane aplikacji\IconCache.db

[2009-12-23 20:52:47 | 00,000,592 | ---- | M] () – C:\Documents and Settings\abcd\Pulpit\Skrót do mplayerc.lnk

[2009-12-22 23:51:21 | 00,000,532 | ---- | M] () – C:\Documents and Settings\abcd\Pulpit\ALLPlayer V4.0.lnk

[2009-12-22 19:41:49 | 00,000,075 | ---- | M] () – C:\WINDOWS\cdplayer.ini

[2009-12-22 16:55:55 | 00,000,010 | ---- | M] () – C:\WINDOWS\popcinfo.dat

[2009-12-22 06:25:51 | 00,028,672 | ---- | M] (FunWebProducts.com) – C:\WINDOWS\System32\f3PSSavr.scr

[2009-12-19 23:17:18 | 00,000,000 | ---- | M] () – C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt

[2009-12-19 23:16:52 | 00,000,736 | ---- | M] () – C:\WINDOWS\SamsungMaster.INI

[2009-12-18 06:57:34 | 00,000,188 | -HS- | M] () – C:\Documents and Settings\abcd\ntuser.ini

[2009-12-17 00:43:27 | 00,763,990 | ---- | M] () – C:\WINDOWS\System32\PerfStringBackup.INI

[2009-12-17 00:43:27 | 00,355,816 | ---- | M] () – C:\WINDOWS\System32\perfh015.dat

[2009-12-17 00:43:27 | 00,311,740 | ---- | M] () – C:\WINDOWS\System32\perfh009.dat

[2009-12-17 00:43:27 | 00,049,696 | ---- | M] () – C:\WINDOWS\System32\perfc015.dat

[2009-12-17 00:43:27 | 00,040,128 | ---- | M] () – C:\WINDOWS\System32\perfc009.dat

[2009-12-12 14:12:50 | 00,000,897 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\RealPlayer SP.lnk

[2009-12-12 14:12:35 | 00,278,528 | ---- | M] (Real Networks, Inc) – C:\WINDOWS\System32\pncrt.dll

[2009-12-11 17:21:22 | 00,167,936 | ---- | M] () – C:\Documents and Settings\abcd\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009-12-06 16:36:43 | 00,002,267 | ---- | M] () – C:\Documents and Settings\abcd\Pulpit\Skype.lnk

[2009-12-04 18:59:09 | 00,009,571 | ---- | M] () – C:\Documents and Settings\abcd\Moje dokumenty\Ja i chyba nikt.odt

[1 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]

========== Files Created - No Company Name ==========

[2010-01-02 17:49:06 | 00,115,200 | RHS- | C] () – C:\h0.exe

[2010-01-01 21:30:47 | 00,030,124 | ---- | C] () – C:\Documents and Settings\abcd.recently-used.xbel

[2010-01-01 14:47:50 | 00,109,568 | RHS- | C] () – C:\anoataly.exe

[2009-12-23 20:52:49 | 00,000,592 | ---- | C] () – C:\Documents and Settings\abcd\Pulpit\Skrót do mplayerc.lnk

[2009-12-22 23:51:21 | 00,000,532 | ---- | C] () – C:\Documents and Settings\abcd\Pulpit\ALLPlayer V4.0.lnk

[2009-12-22 23:51:20 | 00,795,648 | ---- | C] () – C:\WINDOWS\System32\xvidcore.dll

[2009-12-22 23:51:20 | 00,675,840 | ---- | C] () – C:\WINDOWS\System32\ac3filter.ax

[2009-12-21 20:52:10 | 00,000,010 | ---- | C] () – C:\WINDOWS\popcinfo.dat

[2009-12-19 23:16:52 | 00,000,736 | ---- | C] () – C:\WINDOWS\SamsungMaster.INI

[2009-12-12 14:12:50 | 00,000,897 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\RealPlayer SP.lnk

[2009-12-04 23:35:36 | 00,000,075 | ---- | C] () – C:\WINDOWS\cdplayer.ini

[2009-11-29 12:00:21 | 00,000,624 | ---- | C] () – C:\WINDOWS\wincmd.ini

[2009-10-14 22:06:26 | 00,000,404 | ---- | C] () – C:\WINDOWS\BRWMARK.INI

[2009-10-14 22:06:26 | 00,000,027 | ---- | C] () – C:\WINDOWS\BRPP2KA.INI

[2009-08-04 13:36:19 | 00,237,568 | ---- | C] () – C:\WINDOWS\System32\lame_enc.dll

[2009-08-01 15:07:16 | 00,085,504 | ---- | C] () – C:\WINDOWS\System32\ff_vfw.dll

[2009-08-01 15:07:16 | 00,000,547 | ---- | C] () – C:\WINDOWS\System32\ff_vfw.dll.manifest

[2009-07-28 17:08:45 | 00,000,000 | ---- | C] () – C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt

[2009-07-28 16:26:06 | 00,005,632 | ---- | C] () – C:\WINDOWS\System32\drivers\StarOpen.sys

[2009-07-20 17:46:38 | 00,000,088 | RHS- | C] () – C:\WINDOWS\System32\D1A7647795.sys

[2009-07-20 09:38:50 | 00,002,516 | -HS- | C] () – C:\WINDOWS\System32\KGyGaAvL.sys

[2009-07-18 07:49:21 | 00,000,116 | ---- | C] () – C:\WINDOWS\NeroDigital.ini

[2009-07-18 07:07:43 | 00,040,960 | ---- | C] () – C:\Program Files\Uninstall_CDS.exe

[2009-07-09 20:24:27 | 00,003,161 | ---- | C] () – C:\WINDOWS\VPlayer.INI

[2009-07-08 19:11:08 | 00,032,768 | ---- | C] () – C:\WINDOWS\System32\LXPRMON.DLL

[2009-07-08 19:11:08 | 00,020,480 | ---- | C] () – C:\WINDOWS\System32\LXPMONUI.DLL

[2009-07-08 19:11:08 | 00,012,288 | ---- | C] () – C:\WINDOWS\System32\LXPMONRC.DLL

[2009-07-08 15:53:21 | 00,167,936 | ---- | C] () – C:\Documents and Settings\abcd\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009-07-08 15:05:38 | 00,180,224 | ---- | C] () – C:\WINDOWS\System32\xvidvfw.dll

[2009-07-08 15:01:25 | 00,276,930 | ---- | C] () – C:\WINDOWS\System32\drivers\M1000KNT.sys

[2009-07-08 15:01:25 | 00,065,536 | ---- | C] () – C:\WINDOWS\System32\M1000DIF.dll

[2009-07-08 15:01:25 | 00,015,190 | ---- | C] () – C:\WINDOWS\M1000Twn.ini

[2009-07-08 12:24:42 | 00,005,409 | ---- | C] () – C:\WINDOWS\Ascd_tmp.ini

[2009-07-08 12:24:40 | 00,010,288 | ---- | C] () – C:\WINDOWS\System32\drivers\ASUSHWIO.SYS

[2009-01-21 17:08:00 | 01,724,416 | ---- | C] () – C:\WINDOWS\System32\nvwdmcpl.dll

[2009-01-21 17:08:00 | 01,507,328 | ---- | C] () – C:\WINDOWS\System32\nview.dll

[2009-01-21 17:08:00 | 01,101,824 | ---- | C] () – C:\WINDOWS\System32\nvwimg.dll

[2009-01-21 17:08:00 | 00,466,944 | ---- | C] () – C:\WINDOWS\System32\nvshell.dll

[2006-12-30 17:48:38 | 00,000,500 | ---- | C] () – C:\WINDOWS\powermp3cutterjoiner.ini

[2005-07-25 22:15:54 | 00,098,304 | ---- | C] () – C:\WINDOWS\System32\lxccinsr.dll

[2005-07-25 22:15:52 | 00,032,768 | ---- | C] () – C:\WINDOWS\System32\lxcccur.dll

[2005-07-25 22:15:40 | 00,135,168 | ---- | C] () – C:\WINDOWS\System32\lxccjswr.dll

[2005-07-07 09:17:24 | 00,040,960 | ---- | C] () – C:\WINDOWS\System32\lxccvs.dll

< End of report >

#6

Nie wklejaj logów na forum…

W białe dolne okno Custom Scans/Fixes w OTL wklej:

Run Fix. Restart, jeśli będzie potrzebny.

Następnie klikasz w OTL CleanUp.

Wykonaj pełny skan Malwarebytes’ Anti-Malware - znalezione obiekty usuń.

Gdy będą wirusy pokaż raport po usuwaniu.

Wyczyść rejestr i dysk CCleaner oraz wyłącz nim zbędniki z autostartu (Narzędzia -> Autostart).

#7

Malwarebytes’ Anti-Malware 1.43

Wersja bazy definicji: 3488

Windows 5.1.2600 Dodatek Service Pack 3

Internet Explorer 8.0.6001.18702

2010-01-03 21:34:37

mbam-log-2010-01-03 (21-34-37).txt

Typ skanowania: Pełne skanowanie (C:|E:|F:|)

Przeskanowane obiekty: 163601

Upłynęło: 30 minute(s), 20 second(s)

Zainfekowane procesy w pamięci: 0

Zainfekowane moduły pamięci: 2

Zainfekowane klucze rejestru: 141

Zainfekowane wartości rejestru: 3

Zainfekowane pliki rejestru: 1

Zainfekowane foldery: 25

Zainfekowane pliki: 187

Zainfekowane procesy w pamięci:

(Nie wykryto groźnych plików)

Zainfekowane moduły pamięci:

C:\Program Files\MyWebSearch\bar\firefox\NPMYWEBS.DLL (Adware.MyWebSearch) -> Delete on reboot.

C:\Program Files\MyWebSearch\bar\3.bin\M3PLUGIN.DLL (Adware.MyWebSearch) -> Delete on reboot.

Zainfekowane klucze rejestru:

HKEY_CLASSES_ROOT\funwebproducts.datacontrol (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\TypeLib{c8cecde3-1ae1-4c4a-ad82-6d5b00212144} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{17de5e5e-bfe3-4e83-8e1f-8755795359ec} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{1f52a5fa-a705-4415-b975-88503b291728} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{a626cdbd-3d13-4f78-b819-440a28d7e8fc} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{25560540-9571-4d7b-9389-0f166788785a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{25560540-9571-4d7b-9389-0f166788785a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{25560540-9571-4d7b-9389-0f166788785a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.datacontrol.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.historykillerscheduler (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\TypeLib{8ca01f0e-987c-49c3-b852-2f1ac4a7094c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{1093995a-ba37-41d2-836e-091067c4ad17} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{120927bf-1700-43bc-810f-fab92549b390} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{247a115f-06c2-4fb3-967d-2d62d3cf4f0a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{3e53e2cb-86db-4a4a-8bd9-ffeb7a64df82} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{90449521-d834-4703-bb4e-d3aa44042ff8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{991aac62-b100-47ce-8b75-253965244f69} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{bbabdc90-f3d5-4801-863a-ee6ae529862d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{d6ff3684-ad3b-48eb-bbb4-b9e6c5a355c1} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{eb9e5c1c-b1f9-4c2b-be8a-27d6446fdaf8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{0f8ecf4f-3646-4c3a-8881-8e138ffcaf70} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{b813095c-81c0-4e40-aa14-67520372b987} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{c9d7be3e-141a-4c85-8cd6-32461f3df2c7} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{cff4ce82-3aa2-451f-9b77-7165605fb835} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.historykillerscheduler.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.historyswattercontrolbar (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.historyswattercontrolbar.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.htmlmenu (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\TypeLib{e47caee0-deea-464a-9326-3f2801535a4d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{3e1656ed-f60e-4597-b6aa-b6a58e171495} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{741de825-a6f0-4497-9aa6-8023cf9b0fff} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{98d9753d-d73b-42d5-8c85-4469cda897ab} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{98d9753d-d73b-42d5-8c85-4469cda897ab} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.htmlmenu.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.htmlmenu.2 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.iecookiesmanager (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.iecookiesmanager.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.killerobjmanager (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.killerobjmanager.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.popswatterbarbutton (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\TypeLib{8e6f1830-9607-4440-8530-13be7c4b1d14} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{63d0ed2b-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{63d0ed2d-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{63d0ed2c-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{63d0ed2c-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{8e6f1832-9607-4440-8530-13be7c4b1d14} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{a9571378-68a1-443d-b082-284f960c6d17} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.popswatterbarbutton.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.popswattersettingscontrol (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\funwebproducts.popswattersettingscontrol.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\mywebsearch.chatsessionplugin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\TypeLib{e79dfbc0-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{72ee7f04-15bd-4845-a005-d6711144d86a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{e79dfbc9-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{e79dfbcb-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{e79dfbca-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{e79dfbca-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\mywebsearch.chatsessionplugin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\mywebsearch.htmlpanel (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\TypeLib{3e720450-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{3e720451-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{3e720453-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{3e720452-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{3e720452-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\mywebsearch.htmlpanel.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\mywebsearch.outlookaddin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{adb01e81-3c79-4272-a0f1-7b2be7a782dc} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\mywebsearch.outlookaddin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\mywebsearch.pseudotransparentplugin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\TypeLib{7473d290-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{7473d291-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{7473d293-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{7473d295-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{7473d297-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{7473d292-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{7473d294-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{7473d294-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{7473d296-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\mywebsearch.pseudotransparentplugin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\mywebsearchtoolbar.settingsplugin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\mywebsearchtoolbar.settingsplugin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\mywebsearchtoolbar.toolbarplugin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\mywebsearchtoolbar.toolbarplugin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\screensavercontrol.screensaverinstaller (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\TypeLib{29d67d3c-509a-4544-903f-c8c1b8236554} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{2e3537fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{938aa51a-996c-4884-98ce-80dd16a5c9da} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\screensavercontrol.screensaverinstaller.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{07b18eaa-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{07b18eac-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{6e74766c-4d93-4cc0-96d1-47b8e07ff9ca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{cf54be1c-9359-4395-8533-1657cf209cfe} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{de38c398-b328-4f4c-a3ad-1b5e4ed93477} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{e342af55-b78a-4cd0-a2bb-da7f52d9d25e} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{e342af55-b78a-4cd0-a2bb-da7f52d9d25f} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface{f87d7fb5-9dc5-4c8c-b998-d8dfe02e2978} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{1e0de227-5ce4-4ea3-ab0c-8b03e1aa76bc} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{53ced2d0-5e9a-4761-9005-648404e6f7e5} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{84da4fdf-a1cf-4195-8688-3e961f505983} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID{d9fffb27-d62a-4d64-8cec-1ff006528805} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\TypeLib{0d26bc71-a633-4e71-ad31-eadc3a1b6a3a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Typelib{07b18ea0-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Typelib{d518921a-4a03-425e-9873-b9a71756821e} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Typelib{f42228fb-e84e-479e-b922-fbbd096e792c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy{59c7fc09-1c83-4648-b3e6-003d2bbc7481} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy{68af847f-6e91-45dd-9b68-d6a12c30e5d7} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy{9170b96c-28d4-4626-8358-27e6caeef907} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy{d1a71fa0-ff48-48dd-9b6d-7a13a3e42127} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy{ddb1968e-ead6-40fd-8dae-ff14757f60c7} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy{f138d901-86f0-4383-99b6-9cdd406036da} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\MADOWN (Worm.Magania) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\FocusInteractive (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyWebSearch bar Uninstall (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Zainfekowane wartości rejestru:

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt&Search(default) (Adware.Hotbar) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Media\WMSDK\Sources\f3popularscreensavers (Adware.MyWebSearch) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform\funwebproducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Zainfekowane pliki rejestru:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL\CheckedValue (Hijack.System.Hidden) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

Zainfekowane foldery:

C:\Documents and Settings\abcd\Dane aplikacji\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Documents and Settings\abcd\Dane aplikacji\FunWebProducts\Data (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Documents and Settings\abcd\Dane aplikacji\FunWebProducts\Data\abcd (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\FunWebProducts\ScreenSaver (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\FunWebProducts\ScreenSaver\Images (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\FunWebProducts\Shared (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\FunWebProducts\Shared\Cache (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch (Adware.MyWebSearch) -> Delete on reboot.

C:\Program Files\MyWebSearch\bar (Adware.MyWebSearch) -> Delete on reboot.

C:\Program Files\MyWebSearch\bar\2.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin (Adware.MyWebSearch) -> Delete on reboot.

C:\Program Files\MyWebSearch\bar\Avatar (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Cache (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\firefox (Adware.MyWebSearch) -> Delete on reboot.

C:\Program Files\MyWebSearch\bar\firefox\chrome (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Game (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\History (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\icons (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Notifier (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Settings (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\setups (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Zainfekowane pliki:

C:\Program Files\MyWebSearch\bar\firefox\NPMYWEBS.DLL (Adware.MyWebSearch) -> Delete on reboot.

C:\Program Files\MyWebSearch\bar\3.bin\M3PLUGIN.DLL (Adware.MyWebSearch) -> Delete on reboot.

C:\Program Files\MyWebSearch\bar\3.bin\F3DTACTL.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3HISTSW.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3HTMLMU.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3POPSWT.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\M3MSG.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\M3HTML.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\M3OUTLCN.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\M3SKIN.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3SCRCTR.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3CJPEG.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3HTTPCT.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3REPROX.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\MWSOEPLG.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Documents and Settings\abcd\Moje dokumenty\Pobieranie\ZwinkySetup2.3.50.57.ZJfox000.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\2.bin\NPMYWEBS.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3HKSTUB.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3PSSAVR.SCR (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3REGHK.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3RESTUB.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\M3AUXSTB.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\M3DLGHK.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\M3HIGHIN.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\M3IDLE.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\M3IMPIPE.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\M3MEDINT.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\M3SKPLAY.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\M3SLSRCH.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\MWSOESTB.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\MWSSVC.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065315.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065333.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065351.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065306.scr (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065307.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065318.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065322.SCR (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065323.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065325.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065329.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065330.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065331.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065332.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065334.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065335.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065336.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065337.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065338.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065339.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065340.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065341.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065342.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065343.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065344.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065345.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065346.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065347.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065348.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065349.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065350.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065352.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP123\A0065363.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP131\A0072559.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP131\A0072560.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP131\A0072561.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\System Volume Information_restore{6AA03D05-E4F3-4B98-8A1D-E6BA19FEE305}\RP131\A0072562.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\f3PSSavr.scr (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Documents and Settings\abcd\Dane aplikacji\FunWebProducts\Data\abcd\avatar.dat (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Documents and Settings\abcd\Dane aplikacji\FunWebProducts\Data\abcd\outfit.dat (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Documents and Settings\abcd\Dane aplikacji\FunWebProducts\Data\abcd\register.dat (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Documents and Settings\abcd\Dane aplikacji\FunWebProducts\Data\abcd\zbucks.dat (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Documents and Settings\abcd\Dane aplikacji\FunWebProducts\Data\abcd\zevents.dat (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\FunWebProducts\Shared\Cache\CursorManiaBtn.html (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\FunWebProducts\Shared\Cache\SmileyCentralBtn.html (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\2.bin\M3FFXTBR.JAR (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\2.bin\M3FFXTBR.MANIFEST (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\2.bin\M3NTSTBR.JAR (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\2.bin\M3NTSTBR.MANIFEST (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3BKGERR.JPG (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3SCHMON.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3SPACER.WMV (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3WALLPP.DAT (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\F3WPHOOK.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\3.bin\FWPBUDDY.PNG (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\avatar.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\bgfadel.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\bgfader.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\common-x.css (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\common.css (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\cornerbl.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\cornerbr.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\ext_def.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\ext_roll.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\include.js (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\index.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\loader.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\loading.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\logo.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\max_def.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\max_roll.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\min_def.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\min_roll.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\noflash.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\res_def.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\res_roll.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\spacer.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\spacer.swf (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\topgrad.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Avatar\COMMON\window.ico (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Cache\001EC283 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Cache\0098531E.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Cache\00985689.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Cache\00985CE2.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Cache\00986936.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Cache\00987098.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Cache\022EB7DC (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Cache\022EB982 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Cache\022EBA3D (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Cache\022EBB08 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Cache\files.ini (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\firefox\CHROME.MANIFEST (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\firefox\INSTALL.RDF (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\firefox\chrome\M3FFXTBR.JAR (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Game\CHECKERS.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Game\CHESS.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Game\REVERSI.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\History\search3 (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\icons\CM.ICO (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\icons\MFC.ICO (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\icons\PSS.ICO (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\icons\SMILEY.ICO (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\icons\WB.ICO (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\icons\ZWINKY.ICO (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\8_step1.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\ask_logo.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\autoup.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\autoup.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\bkwebfet.jpg (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\bkzwinky.jpg (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\blubtn2d.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\blubtn2r.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\blubtn3d.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\blubtn3r.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\center.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\index.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\logo_ZJ.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\logo_ZR.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\mid_dots.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\mws_logo.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\protect.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\rebbtnbg.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\rebbtnn1.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\rebbtnn2.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\rebbtny1.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\rebbtny2.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\rebclose.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\rebut.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\rebut2.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\rebut3.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\rebut3b.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\reb_bg.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\repmidsm.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\shield.png (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\shocked.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\stop.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\systray.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\systrayp.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\tp_grad.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Message\COMMON\warn.gif (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Notifier\COMMON.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Notifier\DOG.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Notifier\FISH.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Notifier\KUNGFU.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Notifier\LIFEGARD.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Notifier\MAID.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Notifier\MAILBOX.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Notifier\OPERA.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Notifier\ROBOT.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Notifier\SEDUCT.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Notifier\SURFER.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Settings\prevcfg2.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Program Files\MyWebSearch\bar\Settings\s_pid.dat (Adware.MyWebSearch) -> Quarantined and deleted successfully.

C:\Documents and Settings\abcd\Ustawienia lokalne\Temp\cvasds0.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.

C:\Documents and Settings\abcd\Ustawienia lokalne\Temp\cvasds1.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.

#8

Nie wklejaj logów na forum, bo się robi tasiemiec…

Powinno być już czysto.

#9

:smiley: Przepraszam za tego ,tasiemca’’ i ślicznie dziękuję za wszelką pomoc. Pozdrawiam!