przez ostry99 21 Kwi 2014, 14:31
przez ordynat 21 Kwi 2014, 16:09
komputer sam się resetuje, bez wyskakiwania jakichś błędów
Disk \Device\Harddisk0\DR0 unknown MBR code
:OTL
MOD - [2014-03-21 10:41:07 | 002,544,664 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
MOD - [2014-03-21 10:41:07 | 000,519,704 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\log4cplusU.dll
DRV:64bit: - [2014-03-21 10:41:08 | 000,049,952 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=opc&from=opc&uid=TOSHIBA_MK5056GSY_30AEF79IS__30AEF79IS&ts=1347144985
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://search.babylon.com/?affID=1 [Binary data over 200 bytes]
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\URLSearchHook: {6dfc55bb-bfff-485a-9709-90c3fdf6db58} - No CLSID value found
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\URLSearchHook: {a060276a-53be-45ec-8ebe-b94b1e803179} - No CLSID value found
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF}: "URL" = http://vshare.toolbarhome.com/search.aspx?q={searchTerms}&srch=dsp
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=4A8578E4003292EE&affID=128491&tsp=5175
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\SearchScopes\{250B4D3B-8591-4639-9A12-6F3E4E96B56A}: "URL" = http://search.sweetim.com/search.asp?src=6&st=1&q={searchTerms}&barid={886F62A8-71D4-4711-A975-389F686FF730}
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\SearchScopes\{83DDB62B-4619-49CF-98A7-02E85FB11B73}: "URL" = http://search.v9.com/web/?q={searchTerms}
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={E2E55C20-1DBD-4018-B75B-ED2729EEF193}&mid=714b454e56c84259abedf9b113e281f5-d5e228f5a1d11697b81d8883de2ea6d7adc056bc&lang=pl&ds=ik011&pr=&d=2012-10-03 19:52:31&v=15.5.0.2&pid=avg&sg=0&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1059861
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\SearchScopes\{C1FA3DB8-7CCF-48E8-AEB9-167A13DC43F6}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={886F62A8-71D4-4711-A975-389F686FF730}
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\SearchScopes\{C7BC6448-806F-44BA-A10E-C132E23D47F3}: "URL" = http://search.sweetim.com/search.asp?src=6&st=1&q={searchTerms}&barid={886F62A8-71D4-4711-A975-389F686FF730}
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://mystart.incredibar.com/mb178/?search={searchTerms}&loc=IB_DS&a=6R8CHhyjqs&i=26
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\SearchScopes\{DC679746-D4FC-4017-AD6C-6CB4E20EACE9}: "URL" = http://websearch.4shared.com/results?q={searchTerms}
IE - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\SearchScopes\FF86D05371CA497DAB062037DBD4FBDE: "URL" = http://search.babylon.com/?q={searchTerms}&babsrc=SP_ss_gin2g&mntrId=4A8578E4003292EE&affID=119357&tt=040713_rdrctful&tsp=4938
FF - HKLM\Software\MozillaPlugins\@veetle.com/vbp;version=0.9.17: C:\Program Files (x86)\Veetle\VLCBroadcast\npvbp.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\FireFoxExt\18.0.5.292 [2014-03-21 10:41:25 | 000,000,000 | ---D | M]
[2014-03-29 23:57:07 | 000,000,000 | ---D | M] (z) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{b64d6b70-8cb9-5cd7-519a-1a3faee53cff}
[2014-03-29 23:57:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\ffxtlbr@babylon.com
O2:64bit: - BHO: (no name) - {3706EE7C-3CAD-445D-8A43-03EBC3B75908} - No CLSID value found.
O2:64bit: - BHO: (no name) - {95525BD9-6136-4A26-8263-9CEE295D442D} - No CLSID value found.
O2 - BHO: (vShare Toolbar) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll ()
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.0.5.292\AVG Secure Search_toolbar.dll (AVG Secure Search)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll File not found
O3:64bit: - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - {95080B13-AA71-4EE8-B951-7E98221E1ED5} - No CLSID value found.
O3 - HKLM\..\Toolbar: (vShare Toolbar) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.0.5.292\AVG Secure Search_toolbar.dll (AVG Secure Search)
O3 - HKU\S-1-5-21-1243767424-2648834012-3029125701-1000\..\Toolbar\WebBrowser: (vShare Toolbar) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll ()
O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe File not found
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 10.5.1)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 10.5.1)
O20:64bit: - AppInit_DLLs: (c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll) - File not found
[2014-04-21 12:31:41 | 000,000,350 | ---- | M] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013-06-25 22:12:04 | 000,003,728 | ---- | C] () -- C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
@Alternate Data Stream - 1165 bytes -> C:\ProgramData\Microsoft:luiP2azOZmklWqNwWvWCSZp
@Alternate Data Stream - 1131 bytes -> C:\ProgramData\Microsoft:fMODiECo6njz6SZjT0AGTL49vmw
@Alternate Data Stream - 1098 bytes -> C:\ProgramData\Microsoft:JpNrOLjUuRNbyLOSrUnHiMlfhX0sXR
:Reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{12995981-2FD6-4BEE-9FB0-B1674E8E5E7E}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{250B4D3B-8591-4639-9A12-6F3E4E96B56A}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C1FA3DB8-7CCF-48E8-AEB9-167A13DC43F6}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C7BC6448-806F-44BA-A10E-C132E23D47F3}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2]
:Commands
[emptytemp]
przez ostry99 21 Kwi 2014, 16:51
przez ordynat 21 Kwi 2014, 17:24
:OTL
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?affID=119816&babsrc=HP_ss_gin2g&mntrId=4A8578E4003292EE
IE - HKCU\..\SearchScopes\FF86D05371CA497DAB062037DBD4FBDE: "URL" = http://search.babylon.com/?q={searchTerms}&babsrc=SP_ss_gin2g&mntrId=4A8578E4003292EE&affID=119357&tt=040713_rdrctful&tsp=4938
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {6DFC55BB-BFFF-485A-9709-90C3FDF6DB58} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A060276A-53BE-45EC-8EBE-B94B1E803179} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O8:64bit: - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
:Files
C:\Users\wangzhisong
:Commands
[emptytemp]
Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 26 gości
