Problem z XP HOMESECURITY 2012 - skan z OTL


(Patrykwalkowicz) #1

Witam,

mam problem z XP HOMESECURITY 2012 - poniżej wklejam skan z OTL. Będę wdzięczny za pomoc.

OTL logfile created on: 2011-07-06 09:02:37 - Run 1

OTL by OldTimer - Version 3.2.26.0 Folder = I:\

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd


1023,48 Mb Total Physical Memory | 640,85 Mb Available Physical Memory | 62,61% Memory free

2,40 Gb Paging File | 2,09 Gb Available in Paging File | 86,98% Paging File free

Paging file location(s): D:\pagefile.sys 1536 3072 [binary data]


%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files

Drive C: | 64,10 Gb Total Space | 0,56 Gb Free Space | 0,88% Space Free | Partition Type: NTFS

Drive D: | 10,43 Gb Total Space | 2,18 Gb Free Space | 20,95% Space Free | Partition Type: NTFS

Drive E: | 6,50 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Drive I: | 1009,25 Mb Total Space | 836,35 Mb Free Space | 82,87% Space Free | Partition Type: FAT32


Computer Name: 825F9BC8A33A41D | User Name: Agnieszka | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days


[color=#E56717]========== Processes (SafeList) ==========[/color]


PRC - [2011-07-06 08:59:20 | 000,580,608 | ---- | M] (OldTimer Tools) -- I:\OTL.com

PRC - [2011-07-03 11:29:45 | 000,269,480 | ---- | M] (Avira GmbH) -- D:\Program Files\Avira\AntiVir Desktop\avguard.exe

PRC - [2011-07-03 11:13:07 | 000,327,680 | ---- | M] () -- D:\Documents and Settings\Agnieszka\Ustawienia lokalne\Dane aplikacji\lth.exe

PRC - [2011-04-30 22:35:02 | 000,136,360 | ---- | M] (Avira GmbH) -- D:\Program Files\Avira\AntiVir Desktop\sched.exe

PRC - [2011-03-04 14:36:51 | 000,281,768 | ---- | M] (Avira GmbH) -- D:\Program Files\Avira\AntiVir Desktop\avgnt.exe

PRC - [2011-01-20 11:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd) -- D:\Program Files\DAEMON Tools Lite\DTLite.exe

PRC - [2010-01-14 21:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- D:\Program Files\Avira\AntiVir Desktop\avshadow.exe

PRC - [2009-10-16 19:45:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\explorer.exe

PRC - [2005-08-06 01:07:30 | 000,061,440 | ---- | M] (ATI Technologies Inc.) -- D:\Program Files\ATI Technologies\ATI.ACE\CLI.exe

PRC - [2001-10-15 14:30:29 | 000,196,608 | ---- | M] (HP) -- D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe



[color=#E56717]========== Modules (SafeList) ==========[/color]


MOD - [2011-07-06 08:59:20 | 000,580,608 | ---- | M] (OldTimer Tools) -- I:\OTL.com

MOD - [2009-10-16 19:45:00 | 001,054,208 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll



[color=#E56717]========== Win32 Services (SafeList) ==========[/color]


SRV - File not found [Disabled | Stopped] -- -- (HidServ)

SRV - [2011-07-03 11:29:45 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- D:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)

SRV - [2011-04-30 22:35:02 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- D:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)



[color=#E56717]========== Driver Services (SafeList) ==========[/color]


DRV - [2011-07-03 11:29:46 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- D:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)

DRV - [2011-07-03 11:29:46 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- D:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)

DRV - [2011-05-09 19:32:13 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- D:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)

DRV - [2010-06-17 14:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- D:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)

DRV - [2010-06-17 14:27:12 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- D:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)

DRV - [2009-10-16 19:45:00 | 000,215,856 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- D:\WINDOWS\System32\drivers\Si3132r5.sys -- (Si3132r5)

DRV - [2009-10-16 19:45:00 | 000,212,520 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- D:\WINDOWS\System32\drivers\Si3531.sys -- (Si3531)

DRV - [2009-10-16 19:45:00 | 000,195,072 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- D:\WINDOWS\System32\drivers\Si3114r5.sys -- (Si3114r5)

DRV - [2009-10-16 19:45:00 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- D:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)

DRV - [2009-10-16 19:45:00 | 000,105,472 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- D:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus)

DRV - [2009-10-16 19:45:00 | 000,074,672 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- D:\WINDOWS\System32\drivers\si3132.sys -- (Si3132)

DRV - [2009-10-16 19:45:00 | 000,069,248 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- D:\WINDOWS\System32\drivers\si3124.sys -- (Si3124)

DRV - [2009-10-16 19:45:00 | 000,062,336 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- D:\WINDOWS\System32\drivers\si3112.sys -- (Si3112)

DRV - [2008-09-26 18:01:00 | 000,101,376 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)

DRV - [2008-04-14 00:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)

DRV - [2005-08-04 05:10:18 | 001,273,344 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)

DRV - [2005-07-07 10:14:30 | 001,389,056 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\P17.sys -- (P17)

DRV - [2005-05-17 11:45:08 | 000,092,800 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- D:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)

DRV - [2005-04-05 21:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)

DRV - [2005-04-05 21:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)

DRV - [2005-01-10 12:15:30 | 000,106,496 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)

DRV - [2005-01-10 12:15:24 | 000,138,752 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)

DRV - [2004-08-13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)

DRV - [2003-01-01 00:04:23 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- D:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)

DRV - [2001-08-17 22:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)



[color=#E56717]========== Standard Registry (SafeList) ==========[/color]



[color=#E56717]========== Internet Explorer ==========[/color]



IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


FF - HKLM\Software\MozillaPlugins\@comarch.com/NOL,version=3.0: D:\Program Files\Common Files\NOL3\npn30plugin.dll (COMARCH S.A.)




O1 HOSTS File: ([2009-10-16 19:45:00 | 000,000,742 | ---- | M]) - D:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (FastestTubeBHO Class) - {3E532CE8-C6D9-4A10-8ACE-4348C96E8B6A} - D:\Program Files\FastestTube\1.2.12\WombatBHO.dll (Kwizzu)

O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - D:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - D:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

O4 - HKLM..\Run: [ATICCC] D:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)

O4 - HKLM..\Run: [avgnt] D:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)

O4 - HKLM..\Run: [HPDJ Taskbar Utility] D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe (HP)

O4 - HKLM..\Run: [P17Helper] D:\WINDOWS\System32\P17.dll ()

O4 - HKLM..\Run: [UpdReg] D:\WINDOWS\Updreg.EXE (Creative Technology Ltd.)

O4 - HKCU..\Run: [2585396439] D:\Documents and Settings\Agnieszka\Ustawienia lokalne\Dane aplikacji\lth.exe ()

O4 - HKCU..\Run: [DAEMON Tools Lite] D:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)

O4 - Startup: D:\Documents and Settings\All Users\Menu Start\Programy\Autostart\ATI CATALYST – pasek zadań.lnk = D:\Program Files\ATI Technologies\ATI.ACE\CLI.exe (ATI Technologies Inc.)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O13 - gopher Prefix: missing

O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - D:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O24 - Desktop WallPaper: D:\WINDOWS\Web\Wallpaper\Idylla.bmp

O24 - Desktop BackupWallPaper: D:\WINDOWS\Web\Wallpaper\Idylla.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2011-03-28 18:12:55 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [NTFS]

O32 - AutoRun File - [2011-03-28 17:24:00 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [NTFS]

O32 - AutoRun File - [2011-02-24 19:23:15 | 000,000,072 | R--- | M] () - E:\autorun.inf -- [UDF]

O32 - AutoRun File - [2009-11-17 23:31:14 | 000,378,368 | ---- | M] () - I:\AUTORSKI PROGRAM SZKOLENIA DLA KLAS SPORTOWYCH O PROFILU SIATKOWKI NA POZIOMIE SZKOLY PODSTAWOWEJ.doc -- [FAT32]

O32 - AutoRun File - [2010-01-29 20:56:58 | 000,167,424 | ---- | M] () - I:\AUTORSKI PROGRAM SZKOLENIA ZSME Tarnów.doc -- [FAT32]

O33 - MountPoints2\{9667756e-595a-11e0-ab28-0015f22aceb7}\Shell - "" = AutoRun

O33 - MountPoints2\{9667756e-595a-11e0-ab28-0015f22aceb7}\Shell\AutoRun\command - "" = F:\AutoRun.exe

O33 - MountPoints2\{a1eea36c-75bc-11e0-ab6d-0015f22aceb7}\Shell - "" = AutoRun

O33 - MountPoints2\{a1eea36c-75bc-11e0-ab6d-0015f22aceb7}\Shell\AutoRun\command - "" = F:\AutoRun.exe

O33 - MountPoints2\{a1eea36d-75bc-11e0-ab6d-0015f22aceb7}\Shell - "" = AutoRun

O33 - MountPoints2\{a1eea36d-75bc-11e0-ab6d-0015f22aceb7}\Shell\AutoRun\command - "" = F:\AutoRun.exe

O33 - MountPoints2\F\Shell - "" = AutoRun

O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O35 - HKCU\..exefile [open] -- "D:\Documents and Settings\Agnieszka\Ustawienia lokalne\Dane aplikacji\lth.exe" -a "%1" %* ()

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O37 - HKCU\...exe [@ = exefile] -- "D:\Documents and Settings\Agnieszka\Ustawienia lokalne\Dane aplikacji\lth.exe" -a "%1" %* ()


[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]


[2011-07-03 11:33:11 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\NtmsData

[2011-07-03 11:26:09 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Agnieszka\Dane aplikacji\Avira

[2011-07-02 20:25:46 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Agnieszka\Pulpit\R

[2011-06-17 21:59:44 | 000,000,000 | ---D | C] -- D:\Program Files\Adobe

[2002-04-11 03:41:06 | 000,065,536 | R--- | C] ( ) -- D:\WINDOWS\System32\A3d.dll

[1 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp ->]


[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]


[2011-07-06 09:01:32 | 000,435,978 | ---- | M] () -- D:\WINDOWS\System32\perfh015.dat

[2011-07-06 09:01:32 | 000,380,350 | ---- | M] () -- D:\WINDOWS\System32\perfh009.dat

[2011-07-06 09:01:32 | 000,067,078 | ---- | M] () -- D:\WINDOWS\System32\perfc015.dat

[2011-07-06 09:01:32 | 000,052,764 | ---- | M] () -- D:\WINDOWS\System32\perfc009.dat

[2011-07-06 08:57:43 | 000,011,740 | -HS- | M] () -- D:\Documents and Settings\All Users\Dane aplikacji\3tm5evj113ui5d3s82skbc30l086nlu5i0q4mq6th

[2011-07-06 08:57:43 | 000,011,740 | -HS- | M] () -- D:\Documents and Settings\Agnieszka\Ustawienia lokalne\Dane aplikacji\3tm5evj113ui5d3s82skbc30l086nlu5i0q4mq6th

[2011-07-06 08:57:39 | 000,000,376 | ---- | M] () -- D:\WINDOWS\tasks\Updater.job

[2011-07-06 08:57:27 | 000,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat

[2011-07-05 19:27:32 | 000,002,206 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl

[2011-07-03 11:29:46 | 000,138,192 | ---- | M] (Avira GmbH) -- D:\WINDOWS\System32\drivers\avipbb.sys

[2011-07-03 11:29:46 | 000,066,616 | ---- | M] (Avira GmbH) -- D:\WINDOWS\System32\drivers\avgntflt.sys

[2011-07-03 11:13:07 | 000,327,680 | ---- | M] () -- D:\Documents and Settings\Agnieszka\Ustawienia lokalne\Dane aplikacji\lth.exe

[2011-06-18 18:47:37 | 000,000,873 | ---- | M] () -- D:\Documents and Settings\All Users\Pulpit\Uruchom LEGO® Indiana Jones™ 2.lnk

[2011-06-17 21:59:57 | 000,001,729 | ---- | M] () -- D:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk

[1 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp ->]


[color=#E56717]========== Files Created - No Company Name ==========[/color]


[2011-07-03 11:13:08 | 000,011,740 | -HS- | C] () -- D:\Documents and Settings\All Users\Dane aplikacji\3tm5evj113ui5d3s82skbc30l086nlu5i0q4mq6th

[2011-07-03 11:13:08 | 000,011,740 | -HS- | C] () -- D:\Documents and Settings\Agnieszka\Ustawienia lokalne\Dane aplikacji\3tm5evj113ui5d3s82skbc30l086nlu5i0q4mq6th

[2011-07-03 11:13:07 | 000,327,680 | ---- | C] () -- D:\Documents and Settings\Agnieszka\Ustawienia lokalne\Dane aplikacji\lth.exe

[2011-06-18 18:47:37 | 000,000,873 | ---- | C] () -- D:\Documents and Settings\All Users\Pulpit\Uruchom LEGO® Indiana Jones™ 2.lnk

[2011-06-17 21:59:56 | 000,001,804 | ---- | C] () -- D:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader 9.lnk

[2011-06-17 21:59:56 | 000,001,729 | ---- | C] () -- D:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk

[2011-05-09 20:01:44 | 000,066,872 | ---- | C] () -- D:\WINDOWS\System32\PnkBstrA.exe

[2011-05-09 20:01:43 | 000,138,184 | ---- | C] () -- D:\WINDOWS\System32\drivers\PnkBstrK.sys

[2011-05-09 20:01:36 | 000,183,112 | ---- | C] () -- D:\WINDOWS\System32\PnkBstrB.exe

[2011-03-28 21:43:20 | 000,000,134 | ---- | C] () -- D:\Documents and Settings\Agnieszka\Ustawienia lokalne\Dane aplikacji\fusioncache.dat

[2011-03-28 20:07:15 | 000,004,293 | ---- | C] () -- D:\WINDOWS\ODBCINST.INI

[2011-03-28 20:04:30 | 000,191,384 | ---- | C] () -- D:\WINDOWS\System32\FNTCACHE.DAT

[2011-03-28 18:33:22 | 000,000,266 | R--- | C] () -- D:\WINDOWS\System32\raidmgmt.ini

[2011-03-28 18:33:10 | 000,005,700 | ---- | C] () -- D:\WINDOWS\Ascd_tmp.ini

[2011-03-28 18:33:08 | 000,005,810 | R--- | C] () -- D:\WINDOWS\System32\drivers\ASACPI.sys

[2011-03-28 18:33:05 | 000,005,824 | ---- | C] () -- D:\WINDOWS\System32\drivers\ASUSHWIO.SYS

[2011-03-28 18:30:07 | 000,005,627 | R--- | C] () -- D:\WINDOWS\System32\Ludap17.ini

[2011-03-28 18:30:07 | 000,000,039 | R--- | C] () -- D:\WINDOWS\System32\ctzapxx.ini

[2011-03-28 18:23:08 | 000,354,816 | ---- | C] () -- D:\WINDOWS\System32\psisdecd.dll

[2011-03-28 18:20:45 | 000,516,096 | ---- | C] () -- D:\WINDOWS\System32\ati2sgag.exe

[2011-03-28 18:20:40 | 000,095,617 | R--- | C] () -- D:\WINDOWS\System32\atiicdxx.dat

[2011-03-28 18:15:25 | 000,002,048 | --S- | C] () -- D:\WINDOWS\bootstat.dat

[2011-03-28 18:10:24 | 000,021,856 | ---- | C] () -- D:\WINDOWS\System32\emptyregdb.dat

[2009-10-16 19:45:00 | 013,107,200 | ---- | C] () -- D:\WINDOWS\System32\oembios.bin

[2009-10-16 19:45:00 | 000,673,088 | ---- | C] () -- D:\WINDOWS\System32\mlang.dat

[2009-10-16 19:45:00 | 000,435,978 | ---- | C] () -- D:\WINDOWS\System32\perfh015.dat

[2009-10-16 19:45:00 | 000,380,350 | ---- | C] () -- D:\WINDOWS\System32\perfh009.dat

[2009-10-16 19:45:00 | 000,313,828 | ---- | C] () -- D:\WINDOWS\System32\perfi015.dat

[2009-10-16 19:45:00 | 000,272,128 | ---- | C] () -- D:\WINDOWS\System32\perfi009.dat

[2009-10-16 19:45:00 | 000,218,003 | ---- | C] () -- D:\WINDOWS\System32\dssec.dat

[2009-10-16 19:45:00 | 000,067,078 | ---- | C] () -- D:\WINDOWS\System32\perfc015.dat

[2009-10-16 19:45:00 | 000,052,764 | ---- | C] () -- D:\WINDOWS\System32\perfc009.dat

[2009-10-16 19:45:00 | 000,046,258 | ---- | C] () -- D:\WINDOWS\System32\mib.bin

[2009-10-16 19:45:00 | 000,034,990 | ---- | C] () -- D:\WINDOWS\System32\perfd015.dat

[2009-10-16 19:45:00 | 000,028,626 | ---- | C] () -- D:\WINDOWS\System32\perfd009.dat

[2009-10-16 19:45:00 | 000,004,569 | ---- | C] () -- D:\WINDOWS\System32\secupd.dat

[2009-10-16 19:45:00 | 000,004,463 | ---- | C] () -- D:\WINDOWS\System32\oembios.dat

[2009-10-16 19:45:00 | 000,001,804 | ---- | C] () -- D:\WINDOWS\System32\Dcache.bin

[2009-10-16 19:45:00 | 000,000,741 | ---- | C] () -- D:\WINDOWS\System32\noise.dat

[2005-05-03 13:38:42 | 000,064,512 | R--- | C] () -- D:\WINDOWS\System32\P17.dll

[2003-10-02 12:48:18 | 000,053,248 | R--- | C] () -- D:\WINDOWS\System32\P17CPI.dll

[2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- D:\WINDOWS\System32\OUTLPERF.INI

[2003-01-01 02:40:52 | 000,000,038 | ---- | C] () -- D:\WINDOWS\avisplitter.ini

[2003-01-01 02:40:51 | 000,631,808 | ---- | C] () -- D:\WINDOWS\System32\xvidcore.dll

[2003-01-01 02:40:51 | 000,243,200 | ---- | C] () -- D:\WINDOWS\System32\xvidvfw.dll

[2003-01-01 02:40:50 | 000,080,896 | ---- | C] () -- D:\WINDOWS\System32\ff_vfw.dll

[2003-01-01 00:31:55 | 000,175,616 | ---- | C] () -- D:\WINDOWS\System32\unrar.dll

[2003-01-01 00:12:15 | 000,000,376 | ---- | C] () -- D:\WINDOWS\mozregistry.dat

[2003-01-01 00:09:49 | 000,000,421 | ---- | C] () -- D:\WINDOWS\ODBC.INI

[2003-01-01 00:04:33 | 000,018,944 | ---- | C] () -- D:\Documents and Settings\Agnieszka\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini


[color=#E56717]========== LOP Check ==========[/color]


[2011-05-09 19:39:02 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Agnieszka\Dane aplikacji\DAEMON Tools Lite

[2011-06-17 21:49:28 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Agnieszka\Dane aplikacji\FastestTube

[2011-05-09 19:57:42 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Agnieszka\Dane aplikacji\Leadertech

[2003-01-01 01:27:37 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Agnieszka\Dane aplikacji\LucasArts

[2003-01-01 00:04:03 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite

[2011-04-15 23:51:14 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Dane aplikacji\Installations

[2011-04-15 23:34:50 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Dane aplikacji\WombatUpdater

[2011-07-06 08:57:39 | 000,000,376 | ---- | M] () -- D:\WINDOWS\Tasks\Updater.job


[color=#E56717]========== Purity Check ==========[/color]




< End of report >

(Spandau) #2

Logi wklejaj na http://www.wklej.org bo te bardzo źle się analizuje, a w poście podaj linka do wklejki

W okno Własne opcje skanowania / skrypt w OTL wklej:

Klikasz na Wykonaj skrypt. Zgadzasz się na restart komputera. Log z usuwania na forum

Następnie ponownie uruchamiasz OTL klikasz raz jeszcze Skanuj i dajesz nowy log na forum Czyli dwa logi jeden z usuwania drugi z nowego skanowania po usuwaniu.


(Patrykwalkowicz) #3

Dziękuję. Link do loga po usunięciu:

http://www.wklej.org/id/557990/


(Spandau) #4

Poprzez Aplet Dodaj Usuń Programy proszę odinstalować DAEMON Tools Toolbar

Następnie Uruchom OTL klikasz Sprzątanie

Następnie Wykonaj pełny skan Malwarebytes http://www.dobreprogramy.pl/Malwarebyte ... 13117.html Jak program coś znajdzie podaj raport na forum