przez tenzin 07 Lut 2014, 11:05
. zaznaczam, ze szkrzynka na gmail jest do kontaktow z siedziba zeby nie bylo 
Extras.Txt OTL.Txt gmer.txt
przez ordynat 07 Lut 2014, 12:11
:OTL
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 10.9.2)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Reg Error: Key error.)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] C:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] C:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [] File not found
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (PopularScreensavers) - {f339a07f-9578-412d-85e0-b8a80277151a} - C:\Program Files\PopularScreensavers_7i\bar\1.bin\7ibar.dll (MindSpark)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (Toolbar BHO) - {0709f2cc-d1e6-4b43-9efc-1c0701cb173d} - C:\Program Files\PopularScreensavers_7i\bar\1.bin\7ibar.dll (MindSpark)
O2 - BHO: (Search Assistant BHO) - {3a6625a2-591b-4e83-ac3f-8c25eea30ac0} - C:\Program Files\PopularScreensavers_7i\bar\1.bin\7iSrcAs.dll (MindSpark)
[2012-12-29 08:54:13 | 000,009,631 | ---- | M] () -- C:\Users\CSIR\AppData\Roaming\mozilla\firefox\profiles\31vfi7pl.default\searchplugins\my-web-search.xml
[2014-02-07 08:48:35 | 000,000,000 | ---D | M] (PopularScreensavers) -- C:\Users\CSIR\AppData\Roaming\mozilla\Firefox\Profiles\31vfi7pl.default\extensions\7iffxtbr@PopularScreensavers_7i.com
[2012-12-09 14:38:38 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Users\CSIR\AppData\Roaming\mozilla\Firefox\Profiles\31vfi7pl.default\extensions\toolbar@ask.com
[2012-12-09 14:38:38 | 000,002,308 | ---- | M] () -- C:\Users\CSIR\AppData\Roaming\mozilla\firefox\profiles\31vfi7pl.default\searchplugins\askcom.xml
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\7iffxtbr@PopularScreensavers_7i.com: C:\Program Files\PopularScreensavers_7i\bar\1.bin [2012-12-29 08:54:38 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@popularscreensavers.com/Plugin: C:\Program Files\PopularScreensavers\NPp5Stub.dll (popularscreensavers.com)
FF - HKLM\Software\MozillaPlugins\@PopularScreensavers_7i.com/Plugin: C:\Program Files\PopularScreensavers_7i\bar\1.bin\NP7iStub.dll (MindSpark)
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2928751&SearchSource=2&CUI=UN61397558874136453&UM=false&q="
FF - prefs.js..extensions.enabledAddons: 7iffxtbr%40PopularScreensavers_7i.com:5.71.2.58714
FF - prefs.js..browser.startup.homepage: "http://home.mywebsearch.com/index.jhtml?ptb=2392644D-C808-41D0-9B18-02D14732000A&n=77ee8f1c&p2=^ZR^xdm510^YY^pl&si=CK_Op-WQv7QCFSTLtAodH0sAlA"
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
IE - HKU\S-1-5-21-2400207083-269764575-468001019-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.mywebsearch.com/index.jhtml?n=77DE8857&p2=^ZR^xdm510^YY^pl&ptb=2392644D-C808-41D0-9B18-02D14732000A&si=CK_Op-WQv7QCFSTLtAodH0sAlA
IE - HKU\S-1-5-21-2400207083-269764575-468001019-1000\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKU\S-1-5-21-2400207083-269764575-468001019-1000\..\URLSearchHook: {0953a3a2-9223-4990-a1c9-efb4d4686ef2} - No CLSID value found
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\RtsUCcid.sys -- (USBCCID)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\Rts516xIR.sys -- (RtsUIR)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\RtsUStor.sys -- (RSUSBSTOR)
SRV - [2012-12-29 08:54:09 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) [Auto | Running] -- C:\Program Files\PopularScreensavers_7i\bar\1.bin\7ibarsvc.exe -- (PopularScreensavers_7iService)
:Reg
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2]
[-HKEY_USERS\S-1-5-21-2400207083-269764575-468001019-1000\Software\Microsoft\Internet Explorer\SearchScopes\{8BAA058F-04BD-43B6-9C4B-F7E5CAE20365}]
:Commands
[emptytemp]
przez tenzin 07 Lut 2014, 12:38
02_w postaci txt.txt
przez ordynat 07 Lut 2014, 13:04
:OTL
[2012-12-29 19:22:05 | 000,001,048 | ---- | M] () -- C:\Users\CSIR\AppData\Roaming\mozilla\firefox\profiles\31vfi7pl.default\searchplugins\icy-tower-customized-web-search.xml
[2014-02-07 08:48:35 | 000,000,000 | ---D | M] (Icy Tower) -- C:\Users\CSIR\AppData\Roaming\mozilla\Firefox\Profiles\31vfi7pl.default\extensions\{ff65fdbc-5683-4dfd-9113-1fcb5b0a3447}
:Commands
[emptytemp]
Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 4 gości