Sprawdzenie loga

Adrianyn · 10 Wrzesień 2011 13:57

Byłbym wdzięczny za sprawdzenie loga :>

((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\program files\ASUS\AASP\1.00.24\AsRunHelp.exe

c:\users\Adrian\AppData\Local\ApplicationHistory

c:\users\Adrian\AppData\Local\ApplicationHistory\Comrade.exe.bacfe152.ini

c:\users\Adrian\AppData\Local\ApplicationHistory\csc.exe.3e4ac0af.ini

c:\users\Adrian\AppData\Local\Microsoft\Windows\Temporary Internet Files\udRemove.exe

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\auth.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\burnlib.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\dsp_sps.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\enc_aacplus.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\enc_flac.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\enc_lame.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\enc_vorbis.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\enc_wav.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\enc_wma.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_classicart.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_crasher.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_ff.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_find_on_disk.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_hotkeys.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_jumpex.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_ml.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_nopro.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_orgler.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_skinmanager.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_timerestore.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_tray.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\gen_undo.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_avi.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_cdda.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_dshow.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_flac.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_flv.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_linein.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_midi.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_mkv.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_mod.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_mp3.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_mp4.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_nsv.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_swf.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_vorbis.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_wav.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_wave.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_wm.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\in_wv.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_addons.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_autotag.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_bookmarks.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_devices.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_disc.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_downloads.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_enqplay.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_history.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_impex.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_local.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_nowplaying.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_online.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_orb.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_playlists.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_plg.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_pmp.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_rg.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_transcode.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ml_wire.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\ombrowser.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\out_disk.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\out_ds.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\out_wave.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\playlist.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\pmp_activesync.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\pmp_android.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\pmp_ipod.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\pmp_njb.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\pmp_p4s.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\pmp_usb.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\pmp_wifi.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\tagz.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\vis_avs.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\vis_milk2.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\vis_nsfs.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\winamp.lng

c:\users\Adrian\AppData\Local\Temp\WLZ5BF5.tmp\winampa.lng

c:\users\Adrian\AppData\Roaming\KYL

c:\users\Adrian\AppData\Roaming\KYL\fi.dat

c:\users\Adrian\Documents\2003.doc

c:\windows\IsUn0415.exe

c:\windows\system32\nvdispco3220150.dll

.

((((((((((((((((((((((((( Pliki utworzone od 2011-08-10 do 2011-09-10 )))))))))))))))))))))))))))))))

.

2011-09-10 13:38 . 2011-09-10 13:43 -------- d-----w- c:\users\Adrian\AppData\Local\temp

2011-09-10 13:38 . 2011-09-10 13:39 -------- d-----w- c:\users\postgres\AppData\Local\temp

2011-09-10 13:38 . 2011-09-10 13:38 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp

2011-09-10 13:38 . 2011-09-10 13:38 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-09-10 13:03 . 2011-09-10 13:04 -------- d-----w- c:\users\Adrian\AppData\Local\eSupport.com

2011-09-10 13:03 . 2011-09-10 13:03 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys

2011-09-08 15:22 . 2011-09-08 15:22 -------- d-----w- c:\users\Adrian\AppData\Roaming\dVJ3Nfxw5IcOi17

2011-09-08 15:22 . 2011-09-08 15:22 218112 --s—r- c:\users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\igfxtray.exe

2011-09-07 09:26 . 2011-09-10 13:43 -------- d-----w- c:\users\Adrian\AppData\Roaming\MicroST

2011-08-24 14:00 . 2011-07-11 13:25 2048 ----a-w- c:\windows\system32\tzres.dll

.

(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-08-12 02:44 . 2011-09-09 10:30 7152464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates{832227BB-EF0E-4D62-95E5-EEE128A48979}\mpengine.dll

2011-07-22 13:54 . 2011-08-10 07:53 1383424 ----a-w- c:\windows\system32\mshtml.tlb

2011-07-06 15:31 . 2011-08-10 07:53 214016 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys

2011-06-21 15:49 . 2011-08-10 07:53 834048 ----a-w- c:\windows\system32\wininet.dll

2011-06-21 14:13 . 2011-08-10 07:53 389632 ----a-w- c:\windows\system32\html.iec

2011-06-20 08:54 . 2011-08-10 07:52 3602832 ----a-w- c:\windows\system32\ntkrnlpa.exe

2011-06-20 08:54 . 2011-08-10 07:52 3550096 ----a-w- c:\windows\system32\ntoskrnl.exe

2011-06-17 20:13 . 2011-08-10 07:52 905104 ----a-w- c:\windows\system32\drivers\tcpip.sys

2011-06-17 16:03 . 2011-08-10 07:53 375808 ----a-w- c:\windows\system32\winsrv.dll

2010-02-09 15:42 . 2010-02-09 15:42 27958 ----a-w- c:\program files\Common Files\logonInit.dll

.

((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))

.

*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

“Sidebar”=“c:\program files\Windows Sidebar\sidebar.exe” [2009-04-11 1233920]

“BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}”=“c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe” [2007-05-04 149040]

“swg”=“c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe” [2009-03-16 39408]

“ISUSPM Startup”=“c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe” [2004-04-17 196608]

“Steam”=“c:\program files\steam\steam.exe” [2011-08-02 1242448]

“ALLUpdate”=“c:\program files\ALLPlayer\ALLUpdate.exe” [2009-06-04 869888]

“WMPNSCFG”=“c:\program files\Windows Media Player\WMPNSCFG.exe” [2008-01-19 202240]

“DAEMON Tools Lite”=“c:\program files\DAEMON Tools Lite\DTLite.exe” [2011-01-20 1305408]

“Nowe Gadu-Gadu”=“c:\program files\Nowe Gadu-Gadu\gg.exe” [2009-05-28 10486376]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

“HP Software Update”=“c:\program files\HP\HP Software Update\HPWuSchd2.exe” [2007-03-11 49152]

“WinampAgent”=“c:\program files\Winamp\winampa.exe” [2011-03-22 74752]

“NeroFilterCheck”=“c:\program files\Common Files\Ahead\Lib\NeroCheck.exe” [2007-05-04 161328]

“Adobe Reader Speed Launcher”=“c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe” [2008-01-11 39792]

“SunJavaUpdateSched”=“c:\program files\Java\jre1.6.0_07\bin\jusched.exe” [2008-06-10 144784]

“ISUSScheduler”=“c:\program files\Common Files\InstallShield\UpdateService\issch.exe” [2004-04-13 69632]

“QuickTime Task”=“c:\program files\QuickTime\QTTask.exe” [2010-11-29 421888]

“iTunesHelper”=“c:\program files\iTunes\iTunesHelper.exe” [2011-04-26 421160]

“MRT”=“c:\windows\system32\MRT.exe” [2011-08-11 52390856]

“Windows Mobile-based device management”=“c:\windows\WindowsMobile\wmdSync.exe” [2006-11-02 215552]

.

c:\users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

igfxtray.exe [2011-9-8 218112]

wostock412.exe [2011-2-24 920576]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-3-11 210520]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

“EnableUIADesktopToggle”= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

“aux”=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]

2007-04-19 12:26 484904 ----a-w- c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]

2009-02-06 16:50 3885408 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSLauncher]

2007-08-02 14:30 3096576 ----a-w- c:\program files\Nokia\Nokia Software Launcher\NSLauncher.exe

.

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 gupdate;Usługa Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-02-07 135664]

R3 DrvAgent32;DrvAgent32;c:\windows\system32\Drivers\DrvAgent32.sys [2011-09-10 23456]

R3 gupdatem;Usługa Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-02-07 135664]

R3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [2010-07-01 34896]

R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-09 218688]

S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-05-25 2214504]

S2 pgsql-8.3;PostgreSQL Database Server 8.3;c:\program files\PostgreSQL\8.3\bin\pg_ctl.exe [2008-09-19 65536]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc

HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache

WindowsMobile REG_MULTI_SZ wcescomm rapimgr

LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr

.

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components{10880D85-AAD9-4558-ABDC-2AB1552D831F}]

2007-04-19 12:23 452136 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe

.

Zawartość folderu ‘Zaplanowane zadania’

.

2011-09-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

c:\program files\Google\Update\GoogleUpdate.exe [2010-02-07 21:52]

.

2011-09-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

c:\program files\Google\Update\GoogleUpdate.exe [2010-02-07 21:52]

.

2011-09-03 c:\windows\Tasks\Norton Security Scan for Adrian.job

c:\progra~1\NORTON~1\NORTON~1\Engine\301~1.8\Nss.exe [2011-01-20 02:19]

.

------- Skan uzupełniający -------

.

uStart Page = hxxp://search.babylon.com/?babsrc=HP_ss … ffID=17160

uInternet Settings,ProxyOverride = *.local

IE: E&ksport do programu Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

IE: Google Sidewiki… - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html

Trusted Zone: electroradio.ch\www

TCP: DhcpNameServer = 192.168.2.1

DPF: {F7EDBBEA-1AD2-4EBF-AA07-D453CC29EE65} - hxxps://plugins.valueactive.eu/flashax/iefax.cab

FF - ProfilePath - c:\users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\i4edvkzs.default\

FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as … ource=3&q={searchTerms}

FF - prefs.js: browser.search.selectedEngine - Google

FF - prefs.js: browser.startup.homepage - hxxp://www.google.pl/

FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?babsrc=SP_ss … D=17160&q=

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}

FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com

FF - Ext: Veoh Video Compass: searchrecs@veoh.com - %profile%\extensions\searchrecs@veoh.com

FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions{20a82645-c095-46ed-80e3-08825760534b}

FF - Ext: Stylish: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8} - %profile%\extensions{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}

FF - Ext: MyAshampoo Community Toolbar: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - %profile%\extensions{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}

FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension

.

- - - USUNIĘTO PUSTE WPISY - - - -

.

URLSearchHooks-{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - (no file)

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)

HKCU-Run-Gadu-Gadu - c:\program files\Gadu-Gadu\gg.exe

HKCU-Run-{2132-3423-1421} - c:\program files\temp\usrdata32.exe

HKLM-Run-AsusStartupHelp - c:\program files\ASUS\AASP\1.00.24\AsRunHelp.exe

Notify-LogonInit - logonInit.dll

AddRemove-ALLPlayer V3.0_is1 - c:\program files\MarBit\ALLPlayer\unins001.exe

AddRemove-ALLPlayer V3.1_is1 - c:\program files\MarBit\ALLPlayer\unins000.exe

AddRemove-ElfBot NG_is1 - c:\bott\ElfBot NG\unins000.exe

AddRemove-Expressivo - c:\program files\ivo\Expressivo\UsunExpressivo.exe

AddRemove-Gadu-Gadu - c:\program files\Gadu-Gadu\Setup.exe

AddRemove-IVONA - syntezator mowy, wersja demonstracyjna - c:\program files\ivo\Ivona_Demo-1.0\UsunIvonaDemoBeta.exe

AddRemove-Kultura. Szkolna encyklopedia multimedialna - c:\windows\IsUn0415.exe

AddRemove-Talaturen’s IP Changer - c:\program files\Talaturen’s IP Changer\uninst.exe

AddRemove-Tibia Testserver_is1 - c:\testserv\unins000.exe

AddRemove-{ACC75323-DB4A-4F7F-9AF3-1D1DEFF2D1B5} - c:\heroes of might and magic v - dzikie hordy\unins000.exe

AddRemove-{ACC75323-DB4A-4f7f-9AF3-1D1DEFF2D1B5}_is1 - c:\heroes of might and magic v - dzikie hordy\unins000.exe

.

**************************************************************************

.

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2011-09-10 15:45

Windows 6.0.6002 Service Pack 2 NTFS

.

skanowanie ukrytych procesów …

.

skanowanie ukrytych wpisów autostartu …

.

skanowanie ukrytych plików …

.

c:\users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\igfxtray.exe 218112 bytes executable

.

skanowanie pomyślnie ukończone

ukryte pliki: 1

.

**************************************************************************

.

--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

“BlindDial”=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

“BlindDial”=dword:00000000

.

--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------

.

- - - - > ‘Explorer.exe’(1156)

c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

c:\program files\Common Files\Ahead\Lib\MediaLibraryNSE.dll

c:\program files\Common Files\Ahead\Lib\MFC71U.DLL

.

------------------------ Pozostałe uruchomione procesy ------------------------

.

c:\windows\system32\nvvsvc.exe

c:\program files\NVIDIA Corporation\Display\nvxdsync.exe

c:\windows\system32\nvvsvc.exe

c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

c:\program files\Bonjour\mDNSResponder.exe

c:\program files\Common Files\LightScribe\LSSrvc.exe

c:\windows\system32\PnkBstrA.exe

c:\program files\PostgreSQL\8.3\bin\postgres.exe

c:\windows\system32\WUDFHost.exe

c:\windows\system32\conime.exe

c:\program files\Common Files\Ahead\Lib\NMIndexingService.exe

c:\program files\Windows Media Player\wmpnetwk.exe

c:\program files\iPod\bin\iPodService.exe

c:\program files\Mozilla Firefox\firefox.exe

c:\program files\Mozilla Firefox\plugin-container.exe

.

**************************************************************************

Acorus · 10 Wrzesień 2011 16:26

No to teraz daj porządne logi z OTL otl-gmer-rsit-dss-inne-instrukcje-t370405.html

golden_finger · 10 Wrzesień 2011 16:29

Adrianyn , Zmień tytuł, by był związany z problemem, korzystając z przycisku EDYTUJ.

Zapoznaj się z TYMI informacjami.

Popraw log w poście przeczytaj