27.01.2012, 13:34
Nie mam liter w win 7 t,y,ozamiast "z"czasem jest "y" . co jest Problem od wczoraj, czasem działało, a teraz nie. Ciężko się pisze bo muszę wklejać literki. Język polski programisty.
[Aby zobaczyć linki, zarejestruj się tutaj]
OTL logfile created on: 2012-01-27 15:58:19 - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = H:\Antywirusy i antyspyware\Inne
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
3,75 Gb Total Physical Memory | 2,56 Gb Available Physical Memory | 68,18% Memory free
7,50 Gb Paging File | 6,08 Gb Available in Paging File | 81,14% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 96,34 Gb Total Space | 42,71 Gb Free Space | 44,33% Space Free | Partition Type: NTFS
Drive D: | 80,29 Gb Total Space | 80,20 Gb Free Space | 99,89% Space Free | Partition Type: NTFS
Drive E: | 77,47 Gb Total Space | 33,16 Gb Free Space | 42,79% Space Free | Partition Type: NTFS
Drive F: | 43,98 Gb Total Space | 25,09 Gb Free Space | 57,05% Space Free | Partition Type: NTFS
Drive H: | 7,39 Gb Total Space | 4,09 Gb Free Space | 55,27% Space Free | Partition Type: FAT32
Computer Name: RAFIK-KOMPUTER | User Name: rafik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2012-01-27 14:26:57 | 001,122,232 | ---- | M] () -- C:\Users\rafik\AppData\Local\Temp\ChromeplusDownload\online_installer.exe
PRC - [2012-01-24 14:05:52 | 000,404,216 | ---- | M] () -- C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
PRC - [2012-01-19 18:05:34 | 002,975,688 | ---- | M] (Zemana Ltd.) -- C:\Program Files (x86)\AntiLogger\AntiLogger.exe
PRC - [2012-01-11 20:45:31 | 003,020,992 | ---- | M] (Emsi Software GmbH) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
PRC - [2011-12-01 22:31:04 | 000,584,192 | ---- | M] (OldTimer Tools) -- H:\Antywirusy i antyspyware\Inne\OTL.exe
PRC - [2011-10-26 03:32:24 | 000,037,280 | ---- | M] (ArcSoft Inc.) -- C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
PRC - [2011-08-25 16:44:24 | 000,267,928 | ---- | M] (Steganos Software GmbH) -- C:\Program Files (x86)\Steganos Internet Anonym 2012\VPNService.exe
PRC - [2011-08-09 16:40:34 | 000,763,224 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 4\PMonitor.exe
PRC - [2011-08-09 16:38:38 | 000,328,536 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
PRC - [2011-06-29 09:29:44 | 000,217,256 | ---- | M] (Panda Security) -- C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filtering.exe
PRC - [2011-04-28 14:01:20 | 000,439,616 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUNMain.exe
PRC - [2011-04-28 13:58:54 | 000,140,608 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe
PRC - [2010-01-18 14:41:44 | 000,116,088 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Desktops_1.02\Desktops.exe
PRC - [2009-05-15 04:07:12 | 000,759,048 | ---- | M] (ABBYY) -- C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2012-01-27 14:26:57 | 001,122,232 | ---- | M] () -- C:\Users\rafik\AppData\Local\Temp\ChromeplusDownload\online_installer.exe
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV:[b]64bit:[/b] - [2011-12-19 19:58:59 | 002,779,416 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV:[b]64bit:[/b] - [2011-12-01 19:43:19 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:[b]64bit:[/b] - [2011-09-05 16:11:56 | 000,116,032 | ---- | M] () [Auto | Running] -- C:\Program Files\COMODO\COMODO Programs Manager\CPMservice.exe -- (CPMService)
SRV:[b]64bit:[/b] - [2010-12-09 13:08:14 | 000,371,648 | ---- | M] () [Auto | Running] -- C:\Program Files\COMODO\COMODO System-Cleaner\Cleaner_Validator.exe -- (Cleaner_Validator)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012-01-24 14:05:52 | 000,404,216 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe -- (DragonUpdater)
SRV - [2012-01-11 20:45:31 | 003,020,992 | ---- | M] (Emsi Software GmbH) [Auto | Running] -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe -- (a2AntiMalware)
SRV - [2011-10-26 03:32:24 | 000,037,280 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe -- (ADExchange)
SRV - [2011-09-22 10:47:20 | 000,712,520 | ---- | M] (Mister Group) [On_Demand | Running] -- C:\Program Files (x86)\System Explorer\SystemExplorerService64.exe -- (SystemExplorerHelpService)
SRV - [2011-08-25 16:44:24 | 000,267,928 | ---- | M] (Steganos Software GmbH) [Auto | Running] -- C:\Program Files (x86)\Steganos Internet Anonym 2012\VPNService.exe -- (Steganos Anonym VPN Starter Service)
SRV - [2011-08-09 16:38:38 | 000,328,536 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe -- (AdvancedSystemCareService)
SRV - [2011-04-28 13:58:54 | 000,140,608 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe -- (NanoServiceMain)
SRV - [2010-03-18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009-05-15 04:07:12 | 000,759,048 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.ScreenshotReader.9.0)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV:[b]64bit:[/b] - [2012-01-05 00:01:54 | 000,037,888 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss.sys -- (taphss)
DRV:[b]64bit:[/b] - [2011-12-22 17:07:30 | 000,033,152 | ---- | M] (ITOS) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ShredderDriver64.sys -- (ShredderVolumeDriver)
DRV:[b]64bit:[/b] - [2011-12-19 19:59:15 | 000,022,696 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\SysNative\drivers\cmderd.sys -- (cmderd)
DRV:[b]64bit:[/b] - [2011-12-19 13:45:22 | 000,146,736 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:[b]64bit:[/b] - [2011-12-01 19:45:19 | 001,404,464 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2011-12-01 19:43:20 | 006,175,744 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:[b]64bit:[/b] - [2011-12-01 19:41:30 | 000,231,440 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:[b]64bit:[/b] - [2011-12-01 19:39:39 | 000,042,888 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btcusb.sys -- (Btcsrusb)
DRV:[b]64bit:[/b] - [2011-12-01 19:37:07 | 000,413,800 | ---- | M] (Realtek) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2011-09-29 08:04:22 | 000,027,136 | ---- | M] (ManyCam LLC.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ManyCam_x64.sys -- (ManyCam)
DRV:[b]64bit:[/b] - [2011-09-05 16:14:34 | 000,019,568 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\evdd.sys -- (Evdd)
DRV:[b]64bit:[/b] - [2011-09-05 16:14:00 | 000,205,512 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\cumon.sys -- (cumon)
DRV:[b]64bit:[/b] - [2011-08-01 12:23:26 | 000,160,520 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\PSINAflt.sys -- (PSINAflt)
DRV:[b]64bit:[/b] - [2011-06-27 01:37:00 | 002,753,536 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:[b]64bit:[/b] - [2011-04-28 13:57:43 | 000,128,072 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\PSINProt.sys -- (PSINProt)
DRV:[b]64bit:[/b] - [2011-04-28 13:57:43 | 000,121,928 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\PSINProc.sys -- (PSINProc)
DRV:[b]64bit:[/b] - [2011-04-28 13:57:42 | 000,149,576 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\PSINKNC.sys -- (PSINKNC)
DRV:[b]64bit:[/b] - [2011-04-28 13:57:42 | 000,114,760 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\PSINFile.sys -- (PSINFile)
DRV:[b]64bit:[/b] - [2011-04-26 10:21:06 | 000,031,232 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901)
DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010-12-13 10:16:42 | 000,028,264 | ---- | M] (Wondershare Software Co.,Ltd) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\MirDisk.sys -- (MirDisk)
DRV:[b]64bit:[/b] - [2010-12-13 10:16:34 | 000,037,992 | ---- | M] (Wondershare Software Co.,Ltd) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\HKDirFlt.sys -- (HKDirFlt)
DRV:[b]64bit:[/b] - [2010-12-09 13:15:04 | 000,041,472 | ---- | M] (Windows (R) Win 7 DDK provider) [File_System | System | Running] -- C:\Windows\SysNative\drivers\CFRPD.sys -- (CFRPD)
DRV:[b]64bit:[/b] - [2010-12-09 13:14:42 | 000,079,552 | ---- | M] (Windows (R) Win 7 DDK provider) [File_System | System | Running] -- C:\Windows\SysNative\drivers\CFRMD.sys -- (CFRMD)
DRV:[b]64bit:[/b] - [2010-11-20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010-11-20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009-02-24 18:35:44 | 000,255,552 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mcdbus.sys -- (mcdbus)
DRV:[b]64bit:[/b] - [2008-04-23 09:30:10 | 000,892,224 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\torususb.sys -- (TaurusUsb)
DRV:[b]64bit:[/b] - [2008-04-23 09:30:10 | 000,065,024 | ---- | M] (STMicroelectronics) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stmatm.sys -- (Stmatm)
DRV:[b]64bit:[/b] - [2007-08-09 01:21:00 | 000,013,680 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ATK64AMD.sys -- (MTsensor)
DRV - [2012-01-19 18:05:37 | 000,035,096 | ---- | M] (Zemana Ltd.) [Kernel | System | Running] -- C:\Program Files (x86)\AntiLogger\AntiLog64.sys -- (AntiLog32)
DRV - [2011-11-02 10:13:12 | 000,063,880 | ---- | M] (Emsi Software GmbH) [File_System | On_Demand | Stopped] -- C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys -- (a2acc)
DRV - [2011-05-19 13:10:34 | 000,023,208 | ---- | M] (Emsi Software GmbH) [Kernel | System | Running] -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys -- (A2DDA)
DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009-02-24 18:35:44 | 000,255,552 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\mcdbus.sys -- (mcdbus)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-01-27 14:26:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2011-11-30 22:27:25 | 000,000,000 | ---D | M]
[2011-11-30 22:27:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\rafik\AppData\Roaming\mozilla\Extensions
[2012-01-27 14:29:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\rafik\AppData\Roaming\mozilla\Firefox\Profiles\gckgjm61.default\extensions
[2012-01-27 14:26:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
() (No name found) -- C:\USERS\RAFIK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\GCKGJM61.DEFAULT\EXTENSIONS\[email protected]
[2011-12-21 09:04:06 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011-12-21 06:04:32 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml
[2011-12-21 06:04:32 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml
[2011-12-21 06:04:32 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml
[2011-12-21 06:04:32 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml
[2011-12-21 06:04:32 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml
[2011-12-21 06:04:32 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml
O1 HOSTS File: ([2009-06-10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll File not found
O2 - BHO: (Panda Security Toolbar) - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\Panda Security\Panda Security Toolbar\PandaSecurityDx.dll ()
O3 - HKLM\..\Toolbar: (Panda Security Toolbar) - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\Panda Security\Panda Security Toolbar\PandaSecurityDx.dll ()
O4:[b]64bit:[/b] - HKLM..\Run: [AdslTaskBar] C:\Windows\SysNative\stmctrl.dll (STMicroelectronics)
O4:[b]64bit:[/b] - HKLM..\Run: [BootNaMir] C:\Program Files\Wondershare\Time Freeze\BootSP.exe (Wondershare Software Co.,Ltd)
O4:[b]64bit:[/b] - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [AntiLogger] C:\Program Files (x86)\AntiLogger\AntiLogger.exe (Zemana Ltd.)
O4 - HKLM..\Run: [Panda Security URL Filtering] C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filtering.exe (Panda Security)
O4 - HKLM..\Run: [PSUNMain] C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUNMain.exe (Panda Security, S.L.)
O4 - HKLM..\Run: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe (BillP Studios)
O4 - HKCU..\Run: [Advanced SystemCare 4] C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCTray.exe (IObit)
O4 - HKCU..\Run: [AnVir Task Manager] C:\Program Files (x86)\AnVir Task Manager\AnVir.exe (AnVir Software)
O4 - HKCU..\Run: [Sysinternals Desktops] C:\Desktops_1.02\Desktops.exe (Sysinternals - www.sysinternals.com)
O4 - HKCU..\Run: [SystemExplorerAutoStart] C:\Program Files (x86)\System Explorer\SystemExplorer.exe (Mister Group)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O8:[b]64bit:[/b] - Extra context menu item: 使用快车3下载 - Reg Error: Value error. File not found
O8:[b]64bit:[/b] - Extra context menu item: 使用快车3下载全部链接 - Reg Error: Value error. File not found
O8 - Extra context menu item: 使用快车3下载 - Reg Error: Value error. File not found
O8 - Extra context menu item: 使用快车3下载全部链接 - Reg Error: Value error. File not found
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6CCCC44F-D558-495C-834E-5F0E4AA2C573}: NameServer = 217.116.100.65 79.163.127.70
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{ED70D858-7917-44E4-B6BD-FA878A96077A}: DhcpNameServer = 87.106.187.251 195.20.224.99 195.20.224.234
O20:[b]64bit:[/b] - AppInit_DLLs: (C:\Windows\system32\guard64.dll) - C:\Windows\SysNative\guard64.dll (COMODO)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\guard32.dll) -C:\Windows\SysWOW64\guard32.dll (COMODO)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) -File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (c:\windows\syswow64\userinit.exe) -c:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O22:[b]64bit:[/b] - SharedTaskScheduler: {1984DD45-52CF-49cd-AB77-18F378FEA264} - FencesShellExt - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll (Stardock)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2012-01-27 14:37:44 | 000,000,000 | ---D | C] -- C:\ProgramData\SystemExplorer
[2012-01-27 14:37:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
[2012-01-27 14:37:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\System Explorer
[2012-01-27 14:35:52 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\Tencent
[2012-01-27 14:35:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Tencent
[2012-01-27 14:27:28 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Local\Mozilla
[2012-01-27 14:26:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012-01-27 14:08:46 | 000,000,000 | RHSD | C] -- C:\Winmend~Folder~Hidden
[2012-01-27 14:08:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMend
[2012-01-27 14:08:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinMend
[2012-01-27 13:59:51 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\Wireshark
[2012-01-27 13:57:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Wireshark
[2012-01-27 08:04:33 | 000,000,000 | ---D | C] -- C:\ProgramData\SpeedBit
[2012-01-27 08:04:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SpeedBit
[2012-01-26 22:33:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steganos Internet Anonym 2012
[2012-01-26 22:33:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steganos Internet Anonym 2012
[2012-01-26 14:51:45 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\Foxit Software
[2012-01-25 19:04:38 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\GlarySoft
[2012-01-25 18:58:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities
[2012-01-25 18:57:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Glary Utilities
[2012-01-23 21:19:45 | 000,000,000 | -H-D | C] -- C:\ProgramData\{AEAE6F50-4DC3-42A5-B8F3-AFBA0E2F7AFB}
[2012-01-23 21:19:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AntiLogger
[2012-01-19 21:11:21 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2012-01-19 20:39:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steganos
[2012-01-19 13:41:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 4
[2012-01-19 13:41:41 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\IObit
[2012-01-16 07:41:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinUtilities
[2012-01-16 07:41:13 | 000,544,768 | ---- | C] (Stardock Corporation) -- C:\Windows\SysWow64\wbocx.ocx
[2012-01-16 07:41:13 | 000,258,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unicows.dll
[2012-01-16 07:41:13 | 000,056,496 | ---- | C] (Stardock.Net, Inc) -- C:\Windows\SysWow64\wbhelp2.dll
[2012-01-16 07:41:13 | 000,033,968 | ---- | C] (Neil Banfield) -- C:\Windows\SysWow64\anim.dll
[2012-01-16 07:41:13 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\W95INF32.DLL
[2012-01-16 07:41:13 | 000,002,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\W95INF16.DLL
[2012-01-16 07:41:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinUtilities
[2012-01-16 07:39:26 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\MAGIX
[2012-01-16 07:28:34 | 000,000,000 | ---D | C] -- C:\ProgramData\HitmanPro
[2012-01-15 22:07:04 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\BITS
[2012-01-15 22:05:51 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\FlashGetBHO
[2012-01-14 22:04:40 | 000,000,000 | ---D | C] -- C:\tdsskiller
[2012-01-14 15:42:39 | 001,731,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2012-01-14 15:42:02 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2012-01-14 15:42:02 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2012-01-14 15:42:02 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2012-01-14 15:42:02 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2012-01-14 15:41:58 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2012-01-14 15:41:58 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2012-01-13 22:10:14 | 000,027,616 | ---- | C] (MAGIX) -- C:\Windows\SysNative\drivers\disksec.sys
[2012-01-13 22:09:54 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\OnDemandDump
[2012-01-13 22:09:54 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\CrashLog
[2012-01-13 22:09:46 | 000,000,000 | ---D | C] -- C:\Users\rafik\Documents\CrashLog
[2012-01-13 22:09:45 | 000,000,000 | ---D | C] -- C:\Users\rafik\Documents\OnDemandDump
[2012-01-12 20:51:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smarty Uninstaller
[2012-01-12 20:51:15 | 004,603,616 | ---- | C] (DevComponents.com) -- C:\Windows\SysWow64\DevComponents.DotNetBar2.dll
[2012-01-12 19:08:49 | 000,000,000 | ---D | C] -- C:\Users\rafik\Documents\OCCT
[2012-01-11 20:55:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2012-01-11 20:53:30 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Local\AdFender
[2012-01-11 20:38:53 | 000,000,000 | ---D | C] -- C:\CCE
[2012-01-11 20:28:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
[2012-01-11 20:28:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Emsisoft Anti-Malware
[2012-01-11 20:28:18 | 000,000,000 | ---D | C] -- C:\Users\rafik\Documents\Anti-Malware
[2012-01-11 20:04:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader 5.1
[2012-01-11 20:04:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Foxit Software
[2012-01-11 19:34:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2012-01-10 21:59:06 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\Panda Security
[2012-01-10 21:57:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Toolbar Cleaner
[2012-01-10 21:57:44 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Local\panda2_0dn
[2012-01-10 21:57:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security URL Filtering
[2012-01-10 21:56:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Cloud Antivirus
[2012-01-10 21:56:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Panda Security
[2012-01-05 00:01:54 | 000,037,888 | ---- | C] (AnchorFree Inc) -- C:\Windows\SysNative\drivers\taphss.sys
[2012-01-03 14:00:47 | 001,882,104 | ---- | C] (Codejock Software) -- C:\Windows\SysWow64\Codejock.Controls.v15.0.1.ocx
[2012-01-03 14:00:47 | 000,526,184 | ---- | C] (Xceed Software Inc(450) [email protected]) -- C:\Windows\SysWow64\XceedCry.dll
[2012-01-03 14:00:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Magician
[2012-01-03 14:00:46 | 001,081,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mscomctl.ocx
[2012-01-03 14:00:46 | 000,456,536 | ---- | C] (Xceed Software Inc(450) [email protected]) -- C:\Windows\SysWow64\XCEEDZIP.DLL
[2012-01-03 14:00:46 | 000,152,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Comdlg32.ocx
[2012-01-03 14:00:46 | 000,132,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Msinet.ocx
[2012-01-03 14:00:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver Magician
[2012-01-02 18:47:25 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\Stardock
[2012-01-02 18:47:16 | 000,000,000 | -H-D | C] -- C:\ProgramData\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6}
[2012-01-02 18:47:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
[2012-01-02 18:47:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Stardock
[2012-01-02 18:46:54 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Local\PackageAware
[2012-01-02 16:35:30 | 000,000,000 | ---D | C] -- C:\Users\rafik\Documents\Abelssoft
[2012-01-01 23:22:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cleanse Uninstaller Pro
[2012-01-01 23:22:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Zards software
[2012-01-01 15:04:28 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2012-01-01 15:00:00 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\WinPatrol
[2012-01-01 14:59:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPatrol
[2012-01-01 14:59:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BillP Studios
[2012-01-01 13:07:40 | 000,000,000 | ---D | C] -- C:\Users\rafik\AppData\Roaming\AIMP3
[2012-01-01 13:07:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
[2012-01-01 13:07:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AIMP3
[2011-12-31 06:51:17 | 000,027,568 | ---- | C] (Wondershare Software Co.,Ltd) -- C:\Windows\SysNative\NaBootMir.exe
[2011-12-31 06:51:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
[2011-12-31 06:51:10 | 000,037,992 | ---- | C] (Wondershare Software Co.,Ltd) -- C:\Windows\SysNative\drivers\HKDirFlt.sys
[2011-12-31 06:51:10 | 000,028,264 | ---- | C] (Wondershare Software Co.,Ltd) -- C:\Windows\SysNative\drivers\MirDisk.sys
[2011-12-31 06:51:09 | 000,000,000 | ---D | C] -- C:\Program Files\Wondershare
[2011-12-28 19:34:55 | 000,000,000 | ---D | C] -- C:\Desktops_1.02
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2012-01-27 16:05:34 | 001,474,832 | ---- | M] () -- C:\Windows\SysNative\drivers\sfi.dat
[2012-01-27 15:54:41 | 000,014,832 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-01-27 15:54:41 | 000,014,832 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-01-27 14:37:43 | 000,001,086 | ---- | M] () -- C:\Users\Public\Desktop\System Explorer.lnk
[2012-01-27 14:26:46 | 000,001,138 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012-01-27 14:08:26 | 000,001,094 | ---- | M] () -- C:\Users\rafik\Desktop\WinMend Folder Hidden.lnk
[2012-01-27 13:58:12 | 000,001,726 | ---- | M] () -- C:\Users\Public\Desktop\Wireshark.lnk
[2012-01-27 13:15:59 | 000,000,322 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
[2012-01-27 13:15:43 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-01-27 13:14:49 | 000,016,972 | ---- | M] () -- C:\Windows\cscmondump.bin
[2012-01-27 13:14:49 | 000,016,308 | ---- | M] () -- C:\Windows\CUAppUsage.Dat
[2012-01-27 13:11:57 | 000,772,706 | ---- | M] () -- C:\Windows\CSC_ServiceDump.dat
[2012-01-27 13:11:57 | 000,095,018 | ---- | M] () -- C:\Windows\CSC_ActiveCleanLog.dat
[2012-01-27 08:04:04 | 000,109,216 | ---- | M] () -- C:\Windows\SysWow64\EasyHook64.dll
[2012-01-27 08:04:04 | 000,084,480 | ---- | M] () -- C:\Windows\SysWow64\EasyHook32.dll
[2012-01-26 22:33:57 | 000,001,164 | ---- | M] () -- C:\Users\Public\Desktop\Steganos Internet Anonym 2012.lnk
[2012-01-26 10:47:04 | 000,000,036 | ---- | M] () -- C:\Windows\mafosav.INI
[2012-01-25 18:58:02 | 000,001,066 | ---- | M] () -- C:\Users\rafik\Desktop\Glary Utilities.lnk
[2012-01-24 22:27:45 | 000,001,038 | ---- | M] () -- C:\Users\Public\Desktop\Comodo Dragon.lnk
[2012-01-23 21:19:42 | 000,000,927 | ---- | M] () -- C:\Users\Public\Desktop\Zemana AntiLogger.lnk
[2012-01-19 14:38:01 | 000,001,632 | ---- | M] () -- C:\Users\rafik\Desktop\comodo.lnk
[2012-01-19 13:41:58 | 000,001,221 | ---- | M] () -- C:\Users\Public\Desktop\Advanced SystemCare 4.lnk
[2012-01-17 05:26:06 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2012-01-16 07:50:06 | 000,000,107 | ---- | M] () -- C:\Windows\SysWow64\_WKERNEL.SYL
[2012-01-16 07:41:27 | 000,000,956 | ---- | M] () -- C:\Users\Public\Desktop\WinUtilities.lnk
[2012-01-16 07:31:56 | 000,025,160 | ---- | M] () -- C:\Windows\SysNative\drivers\hitmanpro36.sys
[2012-01-15 22:09:35 | 000,000,025 | ---- | M] () -- C:\Windows\libem.INI
[2012-01-14 22:05:01 | 000,000,961 | ---- | M] () -- C:\Users\rafik\Desktop\TDSSKiller.exe — skrót.lnk
[2012-01-13 22:46:20 | 000,001,145 | ---- | M] () -- C:\Users\Public\Desktop\JetClean.lnk
[2012-01-13 18:58:27 | 000,339,344 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012-01-12 21:51:36 | 000,001,829 | ---- | M] () -- C:\Users\rafik\Desktop\IZArc.lnk
[2012-01-12 20:51:19 | 000,001,122 | ---- | M] () -- C:\Users\rafik\Desktop\Smarty Uninstaller.lnk
[2012-01-11 21:06:00 | 2621,440,000 | -HS- | M] () -- C:\Windows\SysNative\MirSwap
[2012-01-11 20:39:21 | 000,000,860 | ---- | M] () -- C:\Users\rafik\Desktop\Autoruns.exe — skrót.lnk
[2012-01-11 20:39:17 | 000,000,809 | ---- | M] () -- C:\Users\rafik\Desktop\CCE.exe — skrót.lnk
[2012-01-11 20:39:13 | 000,000,878 | ---- | M] () -- C:\Users\rafik\Desktop\KillSwitch.exe — skrót.lnk
[2012-01-11 20:28:41 | 000,001,091 | ---- | M] () -- C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
[2012-01-11 20:04:51 | 000,001,126 | ---- | M] () -- C:\Users\Public\Desktop\Foxit Reader 5.1.lnk
[2012-01-10 21:57:01 | 000,000,276 | ---- | M] () -- C:\Windows\SysNative\PSUNCpl.dat
[2012-01-10 21:44:42 | 001,637,966 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012-01-10 21:44:42 | 000,737,800 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2012-01-10 21:44:42 | 000,651,968 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012-01-10 21:44:42 | 000,154,456 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2012-01-10 21:44:42 | 000,120,900 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012-01-10 21:44:19 | 001,637,966 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012-01-05 14:23:56 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012-01-05 00:01:54 | 000,037,888 | ---- | M] (AnchorFree Inc) -- C:\Windows\SysNative\drivers\taphss.sys
[2012-01-03 14:00:47 | 000,001,091 | ---- | M] () -- C:\Users\rafik\Desktop\Driver Magician.lnk
[2012-01-02 18:47:28 | 000,002,026 | ---- | M] () -- C:\Users\rafik\Desktop\Customize Fences.lnk
[2012-01-01 14:45:53 | 000,001,676 | ---- | M] () -- C:\Users\rafik\Desktop\WinPatrol.exe — skrót.lnk
[2012-01-01 13:07:37 | 000,000,905 | ---- | M] () -- C:\Users\Public\Desktop\AIMP3.lnk
[2011-12-31 06:52:15 | 000,051,200 | ---- | M] () -- C:\Windows\SysNative\MirFolder.cfg
[2011-12-31 06:52:11 | 000,131,072 | ---- | M] () -- C:\Windows\SysNative\mkdw48.acy
[2011-12-31 06:51:47 | 000,131,072 | ---- | M] () -- C:\Windows\SysNative\MirDisk.cfg
[2011-12-31 06:51:12 | 000,001,883 | ---- | M] () -- C:\Users\rafik\Desktop\Wondershare Time Freeze.lnk
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2012-01-27 14:37:43 | 000,001,086 | ---- | C] () -- C:\Users\Public\Desktop\System Explorer.lnk
[2012-01-27 14:26:45 | 000,001,138 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012-01-27 14:26:39 | 000,001,150 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012-01-27 14:08:26 | 000,001,094 | ---- | C] () -- C:\Users\rafik\Desktop\WinMend Folder Hidden.lnk
[2012-01-27 13:58:12 | 000,001,738 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
[2012-01-27 13:58:12 | 000,001,726 | ---- | C] () -- C:\Users\Public\Desktop\Wireshark.lnk
[2012-01-27 08:04:26 | 000,109,216 | ---- | C] () -- C:\Windows\SysWow64\EasyHook64.dll
[2012-01-27 08:04:26 | 000,084,480 | ---- | C] () -- C:\Windows\SysWow64\EasyHook32.dll
[2012-01-26 22:33:57 | 000,001,164 | ---- | C] () -- C:\Users\Public\Desktop\Steganos Internet Anonym 2012.lnk
[2012-01-25 18:58:09 | 000,000,322 | ---- | C] () -- C:\Windows\tasks\GlaryInitialize.job
[2012-01-25 18:58:02 | 000,001,066 | ---- | C] () -- C:\Users\rafik\Desktop\Glary Utilities.lnk
[2012-01-23 21:19:42 | 000,000,927 | ---- | C] () -- C:\Users\Public\Desktop\Zemana AntiLogger.lnk
[2012-01-23 19:20:29 | 000,001,038 | ---- | C] () -- C:\Users\Public\Desktop\Comodo Dragon.lnk
[2012-01-19 14:38:01 | 000,001,632 | ---- | C] () -- C:\Users\rafik\Desktop\comodo.lnk
[2012-01-19 13:41:58 | 000,001,221 | ---- | C] () -- C:\Users\Public\Desktop\Advanced SystemCare 4.lnk
[2012-01-17 05:26:03 | 000,000,001 | -HS- | C] () -- C:\BOOTNXT
[2012-01-16 07:41:39 | 000,000,107 | ---- | C] () -- C:\Windows\SysWow64\_WKERNEL.SYL
[2012-01-16 07:41:27 | 000,000,956 | ---- | C] () -- C:\Users\Public\Desktop\WinUtilities.lnk
[2012-01-16 07:41:12 | 000,000,439 | ---- | C] () -- C:\Windows\SysWow64\shfolder.inf
[2012-01-16 07:31:56 | 000,025,160 | ---- | C] () -- C:\Windows\SysNative\drivers\hitmanpro36.sys
[2012-01-15 22:09:35 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI
[2012-01-14 22:05:01 | 000,000,961 | ---- | C] () -- C:\Users\rafik\Desktop\TDSSKiller.exe — skrót.lnk
[2012-01-12 20:51:19 | 000,001,122 | ---- | C] () -- C:\Users\rafik\Desktop\Smarty Uninstaller.lnk
[2012-01-11 22:45:13 | 000,016,972 | ---- | C] () -- C:\Windows\cscmondump.bin
[2012-01-11 21:06:00 | 2621,440,000 | -HS- | C] () -- C:\Windows\SysNative\MirSwap
[2012-01-11 20:39:21 | 000,000,860 | ---- | C] () -- C:\Users\rafik\Desktop\Autoruns.exe — skrót.lnk
[2012-01-11 20:39:17 | 000,000,809 | ---- | C] () -- C:\Users\rafik\Desktop\CCE.exe — skrót.lnk
[2012-01-11 20:39:13 | 000,000,878 | ---- | C] () -- C:\Users\rafik\Desktop\KillSwitch.exe — skrót.lnk
[2012-01-11 20:28:41 | 000,001,091 | ---- | C] () -- C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
[2012-01-11 20:04:51 | 000,001,126 | ---- | C] () -- C:\Users\Public\Desktop\Foxit Reader 5.1.lnk
[2012-01-10 21:57:01 | 000,000,276 | ---- | C] () -- C:\Windows\SysNative\PSUNCpl.dat
[2012-01-05 14:23:56 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012-01-03 14:00:47 | 000,110,602 | ---- | C] () -- C:\Windows\SysWow64\xcdsfx32.bin
[2012-01-03 14:00:47 | 000,001,091 | ---- | C] () -- C:\Users\rafik\Desktop\Driver Magician.lnk
[2012-01-02 18:47:28 | 000,002,026 | ---- | C] () -- C:\Users\rafik\Desktop\Customize Fences.lnk
[2012-01-02 16:29:06 | 001,637,966 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012-01-01 14:45:53 | 000,001,676 | ---- | C] () -- C:\Users\rafik\Desktop\WinPatrol.exe — skrót.lnk
[2012-01-01 13:07:37 | 000,000,905 | ---- | C] () -- C:\Users\Public\Desktop\AIMP3.lnk
[2011-12-31 06:52:14 | 000,051,200 | ---- | C] () -- C:\Windows\SysNative\MirFolder.cfg
[2011-12-31 06:51:47 | 000,131,072 | ---- | C] () -- C:\Windows\SysNative\mkdw48.acy
[2011-12-31 06:51:47 | 000,131,072 | ---- | C] () -- C:\Windows\SysNative\MirDisk.cfg
[2011-12-31 06:51:12 | 000,001,883 | ---- | C] () -- C:\Users\rafik\Desktop\Wondershare Time Freeze.lnk
[2011-12-31 06:51:11 | 000,000,512 | ---- | C] () -- C:\Windows\MirDetected.bin
[2011-12-26 22:39:20 | 000,016,308 | ---- | C] () -- C:\Windows\CUAppUsage.Dat
[2011-12-26 22:39:15 | 000,772,706 | ---- | C] () -- C:\Windows\CSC_ServiceDump.dat
[2011-12-26 22:39:15 | 000,095,018 | ---- | C] () -- C:\Windows\CSC_ActiveCleanLog.dat
[2011-12-19 19:20:45 | 000,003,584 | ---- | C] () -- C:\Users\rafik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-12-09 21:54:58 | 000,000,036 | ---- | C] () -- C:\Windows\mafosav.INI
[2011-12-04 19:53:34 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011-12-04 19:53:28 | 000,650,752 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011-12-04 19:53:28 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2011-12-04 19:53:28 | 000,074,752 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011-12-01 19:45:20 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2011-11-30 21:02:14 | 000,000,161 | ---- | C] () -- C:\Windows\DSLSetup.ini
[2011-11-30 20:54:55 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2009-07-14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009-07-14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009-07-14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009-07-14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009-07-14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009-07-13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009-06-10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2007-04-27 10:43:58 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll
[color=#E56717]========== LOP Check ==========[/color]
[2011-12-01 15:10:02 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\.polipo-uncachable
[2011-12-23 20:24:49 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Abelssoft
[2012-01-01 13:08:36 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\AIMP3
[2011-12-22 21:15:56 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Ashampoo
[2011-12-23 22:17:51 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Ashisoft
[2012-01-16 07:22:11 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\BITS
[2011-12-14 18:49:01 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\BlueSprig
[2012-01-13 22:10:07 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\CrashLog
[2011-12-16 18:40:39 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Engelmann Media
[2011-12-09 18:50:12 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\FaceOffMax
[2011-12-04 20:37:42 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\FarmingSimulator2008
[2011-12-23 20:46:00 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\FILEminimizerPictures
[2012-01-16 07:44:03 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\FlashGetBHO
[2012-01-26 14:51:45 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Foxit Software
[2012-01-25 19:04:38 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\GlarySoft
[2012-01-19 13:41:41 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\IObit
[2011-12-25 09:35:34 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\LifeSniffer
[2012-01-16 07:39:26 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\MAGIX
[2011-12-25 21:28:55 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\ManyCam
[2011-12-05 20:31:31 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\NeoDownloader
[2011-12-01 15:48:39 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Nik Software
[2012-01-13 22:10:06 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\OnDemandDump
[2012-01-10 21:59:06 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Panda Security
[2011-12-13 15:34:32 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Serif
[2012-01-26 21:53:03 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Smarty Uninstaller
[2011-11-30 22:00:14 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Softland
[2011-12-19 19:20:44 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Solveig Multimedia
[2012-01-02 18:47:25 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Stardock
[2012-01-19 20:52:34 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Steganos
[2011-12-03 19:27:45 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Steganos VPN
[2012-01-27 14:35:56 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Tencent
[2011-11-30 22:27:38 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Thunderbird
[2011-12-11 18:53:04 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\TuneUp Software
[2011-12-01 19:21:38 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Uniblue
[2012-01-01 15:00:00 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\WinPatrol
[2012-01-27 13:59:51 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Wireshark
[2012-01-23 22:47:21 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Wise Disk Cleaner
[2011-12-06 16:11:17 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Wise Registry Cleaner
[2011-12-16 14:58:27 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\xVideoServiceThief
[2011-12-14 19:24:04 | 000,000,000 | ---D | M] -- C:\Users\rafik\AppData\Roaming\Zentimo
[2012-01-27 13:15:59 | 000,000,322 | ---- | M] () -- C:\Windows\Tasks\GlaryInitialize.job
[2012-01-15 22:16:31 | 000,032,592 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 141 bytes -> C:\ProgramData\Temp:CAEDBDA6
@Alternate Data Stream - 126 bytes -> C:\ProgramData\Temp:553CA6CA
< End of report >
rafikrafiki napisał(a):Jak naprawić.
[Aby zobaczyć linki, zarejestruj się tutaj]
Nie mam tego programu, ale po tym screenie widać, że jest taka opcja. Pewnie ten menadżer.[Aby zobaczyć linki, zarejestruj się tutaj]
slawektor napisał(a):Ma znaczeniektóre klawisze używamy do przełączania leweCtrl+Shift.
Jeśli ATIjuż napisał.
Jeśli przyczyna jest Intel Extreme Graphics Driver. Start Uruchom msconfig i w zakładce Uruchamianie odznaczyć hkcmd (Intel''s Hotkey Command Module)
Zobacz wciskając 5 razy klawisz Shiftczy są włączone klawisze trwałe. Jeśli są włączone to je Wyłącz.
Ewentualnie zmiana na nie przypisane:
[Aby zobaczyć linki, zarejestruj się tutaj]
slawektor napisał(a):Ma znaczeniektóre klawisze używamy do przełączania leweCtrl+Shift.
Jeśli ATIjuż napisał.
Jeśli przyczyna jest Intel Extreme Graphics Driver. Start Uruchom msconfig i w zakładce Uruchamianie odznaczyć hkcmd (Intel''s Hotkey Command Module)
Zobacz wciskając 5 razy klawisz Shiftczy są włączone klawisze trwałe. Jeśli są włączone to je Wyłącz.
Ewentualnie zmiana na nie przypisane:
rafikrafiki napisał(a):Usuniecie wszystkich języków, oprócz programistyRozumiem że został tylko polski programisty?
ja też mam ylk plski i jak widać
[Aby zobaczyć linki, zarejestruj się tutaj]
[Aby zobaczyć linki, zarejestruj się tutaj]
Hotkey Commander można sprawdzić to jakie programy korzystają z jakich skrótów następnie istnieje możliwość wyłączenia ich lub też powielenia na inne aplikacje).rafikrafiki napisał(a):czyżby uszkodziła się klawiatura w laptopie.