(aby pobrać kliknij na dużą zieloną strzałkę po prawej).
:Files
C:\Documents and Settings\Jacek.DOM.000\wgsdgsdgdsgsd.exe
C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\dsgsdgdsgdsgw.pad
C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\dsgsdgdsgdsgw.js
%USERPROFILE%\Start Menu\Programs\Startup\runctf.lnk
:OTL
MOD - [2013-01-08 16:05:18 | 000,711,112 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
SRV - [2013-01-08 16:05:18 | 000,711,112 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe -- (vToolbarUpdater13.2.0)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\ynbixbfu.sys -- (ynbixbfu)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\wkdtssku.sys -- (wkdtssku)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\raofpqfi.sys -- (raofpqfi)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\qvngyukt.sys -- (qvngyukt)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\qhytgvpu.sys -- (qhytgvpu)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\qcjbauhr.sys -- (qcjbauhr)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\prgtflum.sys -- (prgtflum)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\orjagalp.sys -- (orjagalp)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\okfrtcwd.sys -- (okfrtcwd)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\metsnljf.sys -- (metsnljf)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\meqycaoz.sys -- (meqycaoz)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\lzulglzb.sys -- (lzulglzb)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\leamqyvs.sys -- (leamqyvs)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\kadpimcr.sys -- (kadpimcr)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\JACEKD~1.000\USTAWI~1\Temp\iMSPCLOj.sys -- (iMSPCLOj)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\igefwtwj.sys -- (igefwtwj)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\gmvuhjha.sys -- (gmvuhjha)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\etzvnuxt.sys -- (etzvnuxt)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\bqthipoy.sys -- (bqthipoy)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\bnknqphx.sys -- (bnknqphx)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\beqbbxey.sys -- (beqbbxey)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (apkeilpb)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\afuqijck.sys -- (afuqijck)
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://isearch.avg.com/?cid={5480B5A5-8F8E-417F-9F79-2E59086F1EAC}&mid=94e132887dc04fcb82b2500eb990e029-5167cd3b95b74979fce4a10d9b44278efc5c39bb&lang=pl&ds=ax011&pr=&d=2013-01-08 16:05:37&v=13.2.0.5&sap=hp
FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.startup.homepage: "http://isearch.avg.com/?cid={5480B5A5-8F8E-417F-9F79-2E59086F1EAC}&mid=94e132887dc04fcb82b2500eb990e029-5167cd3b95b74979fce4a10d9b44278efc5c39bb&lang=pl&ds=ax011&pr=&d=2013-01-08 16:05:37&v=13.2.0.5&sap=hp"
FF - prefs.js..keyword.URL: "http://isearch.avg.com/search?cid={5480B5A5-8F8E-417F-9F79-2E59086F1EAC}&mid=94e132887dc04fcb82b2500eb990e029-5167cd3b95b74979fce4a10d9b44278efc5c39bb&lang=pl&ds=ax011&pr=&d=2013-01-08 16:05:37&v=13.2.0.5&sap=ku&q="
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\\npsitesafety.dll ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\avg@toolbar: C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\AVG Secure Search\FireFoxExt\13.2.0.5 [2013-01-10 07:52:01 | 000,000,000 | ---D | M]
[2013-01-10 07:51:53 | 000,003,571 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012-01-23 08:17:08 | 000,002,310 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012-02-18 01:14:53 | 000,000,158 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\Search the web.src
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Help the General-Search Project) - {CA4520F3-AE13-4FB1-A513-58E23991C86D} - C:\Documents and Settings\Jacek.DOM.000\Dane aplikacji\Media Finder\Extensions\gencrawler_gc.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (toolplugin) - {DFEFCDEE-CF1A-4FC8-89AF-189327213627} - C:\Documents and Settings\Jacek.DOM.000\Dane aplikacji\toolplugin\toolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (toolplugin) - {DFEFCDEE-CF1A-4FC8-89AF-189327213627} - C:\Documents and Settings\Jacek.DOM.000\Dane aplikacji\toolplugin\toolbar.dll ()
O4 - HKLM..\Run: [ROC_roc_ssl_v12] C:\Program Files\AVG Secure Search\ROC_roc_ssl_v12.exe ()
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKCU..\Run: [Media Finder] "C:\Program Files\Media Finder\Media Finder.exe" /opentotray File not found
O4 - HKCU..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent File not found
O8 - Extra context menu item: Download with &Media Finder - C:\Program Files\Media Finder\hook.html File not found
[2013-01-08 16:05:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jacek.DOM.000\Ustawienia lokalne\Dane aplikacji\AVG Secure Search
[2013-01-08 16:05:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\AVG Secure Search
[2013-01-08 16:05:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jacek.DOM.000\Dane aplikacji\AVG Secure Search
[2013-01-08 16:05:35 | 000,026,984 | ---- | C] (AVG Technologies) -- C:\WINDOWS\System32\drivers\avgtpx86.sys
[2013-01-08 16:05:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVG Secure Search
[2013-01-08 16:05:32 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search
[2013-01-10 07:56:00 | 000,000,234 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\winmgmt\Parameters]
"ServiceDll"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,\
00,74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,\
77,00,62,00,65,00,6d,00,5c,00,57,00,4d,00,49,00,73,00,76,00,63,00,2e,00,64,\
00,6c,00,6c,00,00,00
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
[-HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}]
:Commands
[emptytemp]
. Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie.
.
Pokaż nowy log OTL.txt oraz raport z usuwania Skryptem.
i pokaż raport.
.
OTL.Txt
