http://i60.tinypic.com/4j80mv.png
AVG nie może tego usunąć, CCleaner też nie i Spy doctor też nie daje rady. Jak to cholerstwo znaleźć i usunąć?:/
Aktualizacje na programosy.pl:
Telegram Desktop Portable • Telegram Desktop • MediaInfo • HashTools Portable • HashTools • YT Downloader • HD Video Converter Factory Pro • Mozilla Firefox • Futuremark SystemInfo
-
- Ogłoszenie:
Koń trojański downloader.generic_r.qc jak usunąć??
14 posty(ów) • Strona 1 z 1
Koń trojański downloader.generic_r.qc jak usunąć??
przez mic93 28 Kwi 2014, 16:18
http://i60.tinypic.com/4j80mv.png
AVG nie może tego usunąć, CCleaner też nie i Spy doctor też nie daje rady. Jak to cholerstwo znaleźć i usunąć?:/
-
mic93 - ~user
- Posty: 301
- Dołączenie: 03 Gru 2006, 13:28
- Pochwały: 4
Koń trojański downloader.generic_r.qc jak usunąć??
przez NieWiem 28 Kwi 2014, 16:25
Cześć.
Musisz wyłączyć program AV na czas trwania tego skanowania.
Pobierz ZOEK.
Uruchom jako administrator.
W oknie programu wklej następujący skrypt:
Upewnij się, że opcja Scan All Users jest zaznaczona.
Wciśnij Run Script i poczekaj na wynikowy raport. Przeklej go.
Musisz wyłączyć program AV na czas trwania tego skanowania.
Pobierz ZOEK.
Uruchom jako administrator.
W oknie programu wklej następujący skrypt:
- Kod: Zaznacz wszystko
process;
systemspecs;
startupall;
filescrm;
firefoxlook;
chromelook;
skipfix-iedefaults;
installedprogs;
uninstall-list;
installer-list;
autoclean;
Upewnij się, że opcja Scan All Users jest zaznaczona.
Wciśnij Run Script i poczekaj na wynikowy raport. Przeklej go.
1. Pomocy udzielam wyłącznie na licencji beerware!
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
-
NieWiem - ~user
- Posty: 2183
- Dołączenie: 19 Cze 2009, 17:01
- Miejscowość: Okolice Okolic
- Pochwały: 171
-
Koń trojański downloader.generic_r.qc jak usunąć??
przez mic93 28 Kwi 2014, 16:43
Cześć
Dzięki za szybkie zainteresowanie się tematem
Log
Dzięki za szybkie zainteresowanie się tematem
Log
- Kod: Zaznacz wszystko
Zoek.exe v5.0.0.0 Updated 14-April-2014
Tool run by Loozak on 2014-04-28 at 16:27:15,92.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Loozak\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
2014-04-28 16:28:55 Zoek.exe System Restore Point Created Succesfully.
==== Windows Installer Info ======================
Adobe Reader XI (11.0.06) - Polish [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\68AB67CA7DA75401B744BA0000000010]C:\Windows\Installer\548a6.msi
AVG 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\02BD31FEEB30DDE4C98450DE303E8E25]C:\Windows\Installer\4b3a0.msi
AVG 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5D7D7890E747A55448FA080F8594F2DA]C:\Windows\Installer\ab4e94.msi
Google Update Helper [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\93BAD29AC2E44034A96BCB446EB8552E]C:\Windows\Installer\548b1.msi
Java 7 Update 51 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4EA42A62D9304AC4784BF238120715FF]C:\Windows\Installer\5dbfca.msi
Java 8 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4EA42A62D9304AC4784BF238120800FF]C:\Windows\Installer\16e19e7.msi
Java Auto Updater [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F60730A4A66673047777F5728467D401]C:\Windows\Installer\16e19fd.msi
Microsoft .NET Framework 4.5.1 (PLK) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\477F1F544B833CC3ABFA50E1D6914EE8]C:\Windows\Installer\14e60e.msi
Microsoft .NET Framework 4.5.1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\BE4EBED704B66673BB53C5BB3C58AD73]C:\Windows\Installer\1e92236.msi
Microsoft Access MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109510051400100000000F01FEC]C:\Windows\Installer\224292.msi
Microsoft DCF MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109090051400100000000F01FEC]C:\Windows\Installer\2242bf.msi
Microsoft Excel MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109610051400100000000F01FEC]C:\Windows\Installer\2242c8.msi
Microsoft Groove MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109AB0051400100000000F01FEC]C:\Windows\Installer\2242d1.msi
Microsoft InfoPath MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109440051400100000000F01FEC]C:\Windows\Installer\22429b.msi
Microsoft Lync MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109B21051400100000000F01FEC]C:\Windows\Installer\2242ad.msi
Microsoft Office 32-bit Components 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000051091C0000000100000000F01FEC]C:\Windows\Installer\224335.msi
Microsoft Office Korrekturhilfen 2013 - Deutsch [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109F10070400100000000F01FEC]C:\Windows\Installer\2242f5.msi
Microsoft Office OSM MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000051091E0051400100000000F01FEC]C:\Windows\Installer\224310.msi
Microsoft Office OSM UX MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000051092E0051400100000000F01FEC]C:\Windows\Installer\224319.msi
Microsoft Office Professional Plus 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109110000000100000000F01FEC]C:\Windows\Installer\224340.msi
Microsoft Office Proofing (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109C20051400100000000F01FEC]C:\Windows\Installer\224307.msi
Microsoft Office Proofing Tools 2013 - English [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109F10090400100000000F01FEC]C:\Windows\Installer\2242fe.msi
Microsoft Office Shared 32-bit MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000051091C0051400100000000F01FEC]C:\Windows\Installer\2242a4.msi
Microsoft Office Shared MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109E60051400100000000F01FEC]C:\Windows\Installer\224289.msi
Microsoft OneNote MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000051091A0051400100000000F01FEC]C:\Windows\Installer\2242e3.msi
Microsoft Outlook MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109A10051400100000000F01FEC]C:\Windows\Installer\2242da.msi
Microsoft PowerPoint MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109810051400100000000F01FEC]C:\Windows\Installer\224322.msi
Microsoft Publisher MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109910051400100000000F01FEC]C:\Windows\Installer\2242b6.msi
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EFEE0228DC83E77358593193D847A0EC]C:\Windows\Installer\166c215.msi
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D20352A90C039D93DBF6126ECE614057]C:\Windows\Installer\117ae27.msi
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\C173E5AD3336A8D3394AF65D2BB0CCE6]C:\Windows\Installer\26390de.msi
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1D5E3C0FEDA1E123187686FED06E995A]C:\Windows\Installer\103fb6.msi
Microsoft Word MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109B10051400100000000F01FEC]C:\Windows\Installer\22432b.msi
Narz©dzia sprawdzajĄce pakietu Microsoft Office 2013 - polski [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109F10051400100000000F01FEC]C:\Windows\Installer\2242ec.msi
NVIDIA PhysX [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7AB7040836775934BA8925331F3BE456]C:\Windows\Installer\1e5488.msi
Visual Studio 2010 x64 Redistributables [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6D331B1297950F74EBC16F6A3B4096F3]C:\Windows\Installer\103fbf.msi
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3455150265-2190520703-2426473691-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Installed Programs ======================
AC3Filter 2.5b
Adobe Reader XI (11.0.06) - Polish
AVG
AVG 2013
Battle.net
Browser Guard 4.0
CCleaner
DAEMON Tools Lite
Diablo III
FIFA 14
GOM Player
Google Chrome
Google Update Helper
Intelliremote 2.8.2.918
Java 7 Update 51
Java 8
Java Auto Updater
JDownloader 0.9
Microsoft .NET Framework 4.5.1
Microsoft .NET Framework 4.5.1 (PLK)
Microsoft .NET Framework 4.5.1 (Polski)
Microsoft Access MUI (Polish) 2013
Microsoft DCF MUI (Polish) 2013
Microsoft Excel MUI (Polish) 2013
Microsoft Groove MUI (Polish) 2013
Microsoft InfoPath MUI (Polish) 2013
Microsoft Lync MUI (Polish) 2013
Microsoft Office 32-bit Components 2013
Microsoft Office Korrekturhilfen 2013 - Deutsch
Microsoft Office OSM MUI (Polish) 2013
Microsoft Office OSM UX MUI (Polish) 2013
Microsoft Office Professional Plus 2013
Microsoft Office Proofing (Polish) 2013
Microsoft Office Proofing Tools 2013 - English
Microsoft Office Shared 32-bit MUI (Polish) 2013
Microsoft Office Shared MUI (Polish) 2013
Microsoft OneNote MUI (Polish) 2013
Microsoft Outlook MUI (Polish) 2013
Microsoft PowerPoint MUI (Polish) 2013
Microsoft Publisher MUI (Polish) 2013
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Word MUI (Polish) 2013
Narz©dzia sprawdzajĄce pakietu Microsoft Office 2013 - polski
NVIDIA Install Application
NVIDIA Oprogramowanie systemu PhysX 9.13.1220
NVIDIA PhysX
NVIDIA Stereoscopic 3D Driver
NVIDIA Sterownik 3D Vision 335.23
NVIDIA Sterownik d«wi©ku HD 1.3.30.1
NVIDIA Sterownik graficzny 335.23
NVIDIA Sterownik kontrolera 3D Vision 335.21
Origin
Panel sterowania NVIDIA 335.23
PC Tools Spyware Doctor 9.1
Registry Life version 1.69
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
TeamSpeak 3 Client
TP-LINK TL-WN781ND Driver
Visual Studio 2010 x64 Redistributables
WinRAR 5.01 (32-bitowy)
WRC3 wersja 1.0
==== Running Processes ======================
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
C:\Program Files (x86)\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
G:\Program Files (x86)\Melloware\Intelliremote\Intelliservice.exe
G:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\PC Tools\PC Tools Security\pctsAuxs.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\PC Tools\PC Tools Security\pctsSvc.exe
C:\Program Files (x86)\PC Tools\PC Tools Security\pctsGui.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe
C:\Users\Loozak\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\Users\Loozak\.android deleted
==== System Specs ======================
Windows: Windows 7 Professional Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 2047 MB
CPU Info: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
CPU Speed: 2427,8 MHz
Sound Card: Głośniki (5 — 2.4G Wireless Hea |
Głośniki (Urządzenie zgodne ze |
Cyfrowe urządzenie audio (S/PDI |
42'' PDP-3 (NVIDIA High Definit |
Display Adapters: NVIDIA GeForce GT 430 | NVIDIA GeForce GT 430 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Rodzajowy monitor PnP |
Screen Resolution: 1680 X 1050 - 32 bit
Network: Network Present
Network Adapters: TP-LINK 150Mbps Wireless N PCI Express Adapter | Atheros AR8131 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
CD / DVD Drives: 2x (H: | J: | ) H: TSSTcorpDVD+-RW TS-H653A | J: DTSOFT BDROM
Ports: COM1 LPT1
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C: 100,6GB | D: 100,0MB | E: 232,7GB | F: 100,0MB | G: 197,4GB
Hard Disks - Free: C: 67,3GB | D: 76,2MB | E: 217,9GB | F: 76,2MB | G: 165,8GB
Manufacturer *: Award Software International, Inc.
BIOS Info: AT/AT COMPATIBLE | 08/09/10 | GBT - 42302e31
Time Zone: Środkowoeuropejski czas stand.
Motherboard *: Gigabyte Technology Co., Ltd. G31M-ES2L
Country: Polska
Language: PLK
==== System Specs (Software) ======================
Anti-Virus: AVG Internet Security Business Edition On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: PC Tools Spyware Doctor disabled (Outdated)
Anti-Spyware: AVG Internet Security Business Edition disabled (Outdated)
Firewall: AVG Internet Security Business Edition disabled
Default Browser: Google Chrome 34.0.1847.131
Internet Explorer Version: 11.0.9600.17041
Google Chrome version: 34.0.1847.131
Adobe Reader version: 11.0.06.70
Sun Java version: 1.8.0 (32-bit)
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-21-3455150265-2190520703-2426473691-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="G:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601"
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2013\avgui.exe /TRAYONLY"
"ISTray"="C:\Program Files (x86)\PC Tools\PC Tools Security\pctsGui.exe /hideGUI"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="G:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
==== Task Scheduler Jobs ======================
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:76C:\ProgramC:FilesC:x86\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-02 12:57]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files (x86)\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{cb84136f-9c44-433a-9048-c5cd9df1dc16}"="C:\Program Files (x86)\PC Tools\PC Tools Security\BDT\Firefox" [2014-04-28 15:47]
==== Chrome Look ======================
Google Docs - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Logitech Smooth Scrolling - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk
AdBlock - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Water's Valley - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhpodmbdlgmgffpgbennemfkjhhaocfl
Google Wallet - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}] not found
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
==== Uninstall List x64 ======================
AC3Filter 2.5b [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AC3Filter_is1]
Adobe Reader XI (11.0.06) - Polish [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AC76BA86-7AD7-1045-7B44-AB0000000001}]
AVG [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG]
AVG 2013 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0987D7D5-747E-455A-84AF-80F058492FAD}]
AVG 2013 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EF13DB20-03BE-4EDD-9C48-05ED03E3E852}]
Battle.net [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Battle.net]
Browser Guard 4.0 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Browser Defender_is1]
CCleaner [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\CCleaner]
DAEMON Tools Lite [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DAEMON Tools Lite]
Diablo III [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Diablo III]
FIFA 14 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AA7A2800-1E75-4240-855B-03AFF8E5171E}]
GOM Player [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\GOM Player]
Google Chrome [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome]
Google Update Helper [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}]
Intelliremote 2.8.2.918 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Intelliremote_2.0]
Java 7 Update 51 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83217051FF}]
Java 8 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83218000FF}]
Java Auto Updater [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10}]
JDownloader 0.9 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\5513-1208-7298-9440]
Microsoft .NET Framework 4.5.1 (PLK) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{45F1F774-38B4-3CC3-BAAF-051E6D19E48E}]
Microsoft .NET Framework 4.5.1 (Polski) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045]
Microsoft .NET Framework 4.5.1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}]
Microsoft .NET Framework 4.5.1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033]
Microsoft Office Professional Plus 2013 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Office15.PROPLUS]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8220EEFE-38CD-377E-8595-13398D740ACE}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9A25302D-30C0-39D9-BD6F-21E6EC160475}]
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}]
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}]
NVIDIA Install Application [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer]
NVIDIA Oprogramowanie systemu PhysX 9.13.1220 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX]
NVIDIA PhysX [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{80407BA7-7763-4395-AB98-5233F1B34E65}]
NVIDIA Stereoscopic 3D Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\NVIDIAStereo]
NVIDIA Sterownik 3D Vision 335.23 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision]
NVIDIA Sterownik d«wi©ku HD 1.3.30.1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver]
NVIDIA Sterownik graficzny 335.23 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver]
NVIDIA Sterownik kontrolera 3D Vision 335.21 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB]
Origin [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Origin]
Panel sterowania NVIDIA 335.23 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel]
PC Tools Spyware Doctor 9.1 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Spyware Doctor]
Registry Life version 1.69 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Registry Life_is1]
TeamSpeak 3 Client [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TeamSpeak 3 Client]
TP-LINK TL-WN781ND Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{87C7B472-9BC2-43C8-9F03-86D2908E1A51}]
Visual Studio 2010 x64 Redistributables [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{21B133D6-5979-47F0-BE1C-F6A6B304693F}]
WinRAR 5.01 (32-bitowy) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinRAR archiver]
WRC3 wersja 1.0 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B4BF2667-112C-45EF-B8CB-1168E4EB5BA8}_is1]
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Browser Defender_is1 deleted successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Loozak\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Loozak\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Loozak\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=28 folders=3 277085 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Loozak\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Loozak\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on 2014-04-28 at 16:41:24,47 ======================
-
mic93 - ~user
- Posty: 301
- Dołączenie: 03 Gru 2006, 13:28
- Pochwały: 4
-
Koń trojański downloader.generic_r.qc jak usunąć??
przez NieWiem 28 Kwi 2014, 19:43
Z panelu sterowania odinstalować:
Browser Guard 4.0
Pobierz AdwCleaner.
Uruchom i wciśnij Scan.
Kiedy skończy wciśnij Clean i zgodź się na restart.
Wyświetlony po restarcie raport załącz.
Browser Guard 4.0
Pobierz AdwCleaner.
Uruchom i wciśnij Scan.
Kiedy skończy wciśnij Clean i zgodź się na restart.
Wyświetlony po restarcie raport załącz.
1. Pomocy udzielam wyłącznie na licencji beerware!
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
-
NieWiem - ~user
- Posty: 2183
- Dołączenie: 19 Cze 2009, 17:01
- Miejscowość: Okolice Okolic
- Pochwały: 171
-
Koń trojański downloader.generic_r.qc jak usunąć??
przez mic93 28 Kwi 2014, 21:59
- Kod: Zaznacz wszystko
# AdwCleaner v3.205 - Log utworzony 28/04/2014 o 21:55:16
# Aktualizacja 28/04/2014 przez Xplode
# System operacyjny : Windows 7 Professional Service Pack 1 (64 bits)
# Użytkownik : Loozak - LOOZAK-KOMPUTER
# Ścieżka : C:\Users\Loozak\Desktop\adwcleaner.exe
# Opcja : Usuń
***** [ Usługi ] *****
Usługa Usunięto : wStLibG64
***** [ Pliki / Foldery ] *****
***** [ Skróty ] *****
***** [ Rejestr ] *****
Klucz Usunięto : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klucz Usunięto : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klucz Usunięto : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klucz Usunięto : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2C774641-5504-46A8-B63F-6715AE3FE376}
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Wartość Usunięto : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Klucz Usunięto : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klucz Usunięto : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Wartość Usunięto : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Klucz Usunięto : HKCU\Software\dt soft\daemon tools toolbar
Klucz Usunięto : HKCU\Software\InstallCore
Klucz Usunięto : HKCU\Software\Softonic
***** [ Przeglądarki internetowe ] *****
-\\ Internet Explorer v11.0.9600.17041
-\\ Google Chrome v34.0.1847.131
[ Plik : C:\Users\Loozak\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Usunięto [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
Usunięto [Search Provider] : hxxp://www.daemon-search.com/search?q={searchTerms}
Usunięto [Search Provider] : hxxp://www.softonic.pl/s/{searchTerms}
*************************
AdwCleaner[R0].txt - [2287 octets] - [28/04/2014 21:54:13]
AdwCleaner[S0].txt - [2213 octets] - [28/04/2014 21:55:16]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2273 octets] ##########
-
mic93 - ~user
- Posty: 301
- Dołączenie: 03 Gru 2006, 13:28
- Pochwały: 4
-
Koń trojański downloader.generic_r.qc jak usunąć??
przez NieWiem 28 Kwi 2014, 22:03
Musisz wyłączyć program AV na czas trwania tego skanowania.
Uruchom jako administrator ZOEK.
W oknie programu wklej następujący skrypt:
Upewnij się, że opcja Scan All Users jest zaznaczona.
Wciśnij Run Script i poczekaj na wynikowy raport. Przeklej go.
Uruchom jako administrator ZOEK.
W oknie programu wklej następujący skrypt:
- Kod: Zaznacz wszystko
process;
systemspecs;
startupall;
filescrm;
firefoxlook;
chromelook;
skipfix-iedefaults;
installedprogs;
uninstall-list;
installer-list;
autoclean;
Upewnij się, że opcja Scan All Users jest zaznaczona.
Wciśnij Run Script i poczekaj na wynikowy raport. Przeklej go.
1. Pomocy udzielam wyłącznie na licencji beerware!
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
-
NieWiem - ~user
- Posty: 2183
- Dołączenie: 19 Cze 2009, 17:01
- Miejscowość: Okolice Okolic
- Pochwały: 171
-
Koń trojański downloader.generic_r.qc jak usunąć??
przez mic93 28 Kwi 2014, 23:59
- Kod: Zaznacz wszystko
Zoek.exe v5.0.0.0 Updated 14-April-2014
Tool run by Loozak on 2014-04-28 at 23:44:50,67.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Loozak\Desktop\zoek.exe [Scan all users] [Script inserted]
==== Older Logs ======================
C:\zoek-results2014-04-28-144124.log 27259 bytes
==== Windows Installer Info ======================
Adobe Reader XI (11.0.06) - Polish [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\68AB67CA7DA75401B744BA0000000010]C:\Windows\Installer\548a6.msi
AVG 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\02BD31FEEB30DDE4C98450DE303E8E25]C:\Windows\Installer\4b3a0.msi
AVG 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5D7D7890E747A55448FA080F8594F2DA]C:\Windows\Installer\ab4e94.msi
Google Update Helper [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\93BAD29AC2E44034A96BCB446EB8552E]C:\Windows\Installer\548b1.msi
Java 7 Update 51 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4EA42A62D9304AC4784BF238120715FF]C:\Windows\Installer\5dbfca.msi
Java 8 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4EA42A62D9304AC4784BF238120800FF]C:\Windows\Installer\16e19e7.msi
Java Auto Updater [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F60730A4A66673047777F5728467D401]C:\Windows\Installer\16e19fd.msi
Microsoft .NET Framework 4.5.1 (PLK) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\477F1F544B833CC3ABFA50E1D6914EE8]C:\Windows\Installer\14e60e.msi
Microsoft .NET Framework 4.5.1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\BE4EBED704B66673BB53C5BB3C58AD73]C:\Windows\Installer\1e92236.msi
Microsoft Access MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109510051400100000000F01FEC]C:\Windows\Installer\224292.msi
Microsoft DCF MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109090051400100000000F01FEC]C:\Windows\Installer\2242bf.msi
Microsoft Excel MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109610051400100000000F01FEC]C:\Windows\Installer\2242c8.msi
Microsoft Groove MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109AB0051400100000000F01FEC]C:\Windows\Installer\2242d1.msi
Microsoft InfoPath MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109440051400100000000F01FEC]C:\Windows\Installer\22429b.msi
Microsoft Lync MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109B21051400100000000F01FEC]C:\Windows\Installer\2242ad.msi
Microsoft Office 32-bit Components 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000051091C0000000100000000F01FEC]C:\Windows\Installer\224335.msi
Microsoft Office Korrekturhilfen 2013 - Deutsch [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109F10070400100000000F01FEC]C:\Windows\Installer\2242f5.msi
Microsoft Office OSM MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000051091E0051400100000000F01FEC]C:\Windows\Installer\224310.msi
Microsoft Office OSM UX MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000051092E0051400100000000F01FEC]C:\Windows\Installer\224319.msi
Microsoft Office Professional Plus 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109110000000100000000F01FEC]C:\Windows\Installer\224340.msi
Microsoft Office Proofing (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109C20051400100000000F01FEC]C:\Windows\Installer\224307.msi
Microsoft Office Proofing Tools 2013 - English [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109F10090400100000000F01FEC]C:\Windows\Installer\2242fe.msi
Microsoft Office Shared 32-bit MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000051091C0051400100000000F01FEC]C:\Windows\Installer\2242a4.msi
Microsoft Office Shared MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109E60051400100000000F01FEC]C:\Windows\Installer\224289.msi
Microsoft OneNote MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000051091A0051400100000000F01FEC]C:\Windows\Installer\2242e3.msi
Microsoft Outlook MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109A10051400100000000F01FEC]C:\Windows\Installer\2242da.msi
Microsoft PowerPoint MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109810051400100000000F01FEC]C:\Windows\Installer\224322.msi
Microsoft Publisher MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109910051400100000000F01FEC]C:\Windows\Installer\2242b6.msi
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EFEE0228DC83E77358593193D847A0EC]C:\Windows\Installer\166c215.msi
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D20352A90C039D93DBF6126ECE614057]C:\Windows\Installer\117ae27.msi
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\C173E5AD3336A8D3394AF65D2BB0CCE6]C:\Windows\Installer\26390de.msi
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1D5E3C0FEDA1E123187686FED06E995A]C:\Windows\Installer\103fb6.msi
Microsoft Word MUI (Polish) 2013 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109B10051400100000000F01FEC]C:\Windows\Installer\22432b.msi
Narz©dzia sprawdzajĄce pakietu Microsoft Office 2013 - polski [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00005109F10051400100000000F01FEC]C:\Windows\Installer\2242ec.msi
NVIDIA PhysX [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7AB7040836775934BA8925331F3BE456]C:\Windows\Installer\1e5488.msi
Visual Studio 2010 x64 Redistributables [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6D331B1297950F74EBC16F6A3B4096F3]C:\Windows\Installer\103fbf.msi
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Installed Programs ======================
AC3Filter 2.5b
Adobe Flash Player 11 Plugin
Adobe Reader XI (11.0.06) - Polish
AVG
AVG 2013
Battle.net
CCleaner
DAEMON Tools Lite
Diablo III
FIFA 14
GOM Player
Google Chrome
Google Update Helper
Intelliremote 2.8.2.918
Java 7 Update 51
Java 8
Java Auto Updater
JDownloader 0.9
Microsoft .NET Framework 4.5.1
Microsoft .NET Framework 4.5.1 (PLK)
Microsoft .NET Framework 4.5.1 (Polski)
Microsoft Access MUI (Polish) 2013
Microsoft DCF MUI (Polish) 2013
Microsoft Excel MUI (Polish) 2013
Microsoft Groove MUI (Polish) 2013
Microsoft InfoPath MUI (Polish) 2013
Microsoft Lync MUI (Polish) 2013
Microsoft Office 32-bit Components 2013
Microsoft Office Korrekturhilfen 2013 - Deutsch
Microsoft Office OSM MUI (Polish) 2013
Microsoft Office OSM UX MUI (Polish) 2013
Microsoft Office Professional Plus 2013
Microsoft Office Proofing (Polish) 2013
Microsoft Office Proofing Tools 2013 - English
Microsoft Office Shared 32-bit MUI (Polish) 2013
Microsoft Office Shared MUI (Polish) 2013
Microsoft OneNote MUI (Polish) 2013
Microsoft Outlook MUI (Polish) 2013
Microsoft PowerPoint MUI (Polish) 2013
Microsoft Publisher MUI (Polish) 2013
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Word MUI (Polish) 2013
Narz©dzia sprawdzajĄce pakietu Microsoft Office 2013 - polski
NVIDIA Install Application
NVIDIA Oprogramowanie systemu PhysX 9.13.1220
NVIDIA PhysX
NVIDIA Stereoscopic 3D Driver
NVIDIA Sterownik 3D Vision 335.23
NVIDIA Sterownik d«wi©ku HD 1.3.30.1
NVIDIA Sterownik graficzny 335.23
NVIDIA Sterownik kontrolera 3D Vision 335.21
OpenFM
Origin
Panel sterowania NVIDIA 335.23
Registry Life version 1.69
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
TeamSpeak 3 Client
TP-LINK TL-WN781ND Driver
Visual Studio 2010 x64 Redistributables
WinRAR 5.01 (32-bitowy)
WRC3 wersja 1.0
==== Running Processes ======================
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
G:\Program Files (x86)\Melloware\Intelliremote\Intelliservice.exe
G:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
G:\Program Files (x86)\Origin\Origin.exe
C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe
C:\Users\Loozak\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
==== Deleting Services ======================
==== System Specs ======================
Windows: Windows 7 Professional Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 2047 MB
CPU Info: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
CPU Speed: 2493,9 MHz
Sound Card: Głośniki (5 — 2.4G Wireless Hea |
Głośniki (Urządzenie zgodne ze |
Cyfrowe urządzenie audio (S/PDI |
42'' PDP-3 (NVIDIA High Definit |
Display Adapters: NVIDIA GeForce GT 430 | NVIDIA GeForce GT 430 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Rodzajowy monitor PnP |
Screen Resolution: 1680 X 1050 - 32 bit
Network: Network Present
Network Adapters: TP-LINK 150Mbps Wireless N PCI Express Adapter | Atheros AR8131 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
CD / DVD Drives: 2x (H: | J: | ) H: TSSTcorpDVD+-RW TS-H653A | J: DTSOFT BDROM
Ports: COM1 LPT1
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C: 100,6GB | D: 100,0MB | E: 232,7GB | F: 100,0MB | G: 197,4GB
Hard Disks - Free: C: 68,2GB | D: 76,2MB | E: 217,9GB | F: 76,2MB | G: 165,8GB
Manufacturer *: Award Software International, Inc.
BIOS Info: AT/AT COMPATIBLE | 08/09/10 | GBT - 42302e31
Time Zone: Środkowoeuropejski czas stand.
Motherboard *: Gigabyte Technology Co., Ltd. G31M-ES2L
Country: Polska
Language: PLK
==== System Specs (Software) ======================
Anti-Virus: AVG Internet Security Business Edition On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: AVG Internet Security Business Edition disabled (Outdated)
Firewall: AVG Internet Security Business Edition disabled
Default Browser: Google Chrome 34.0.1847.131
Internet Explorer Version: 11.0.9600.17041
Google Chrome version: 34.0.1847.131
Adobe Reader version: 11.0.06.70
Sun Java version: 1.8.0 (32-bit)
Flash Player version: 11.9.900.170
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-21-3455150265-2190520703-2426473691-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="G:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601"
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2013\avgui.exe /TRAYONLY"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="G:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
==== Task Scheduler Jobs ======================
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\6C:\ProgramC:FilesC:x86\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-02 12:57]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files (x86)\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]
==== Firefox Extensions ======================
==== Firefox Plugins ======================
==== Chrome Look ======================
Google Docs - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Logitech Smooth Scrolling - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk
AdBlock - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Water's Valley - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhpodmbdlgmgffpgbennemfkjhhaocfl
Google Wallet - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Loozak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
==== Uninstall List x64 ======================
AC3Filter 2.5b [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AC3Filter_is1]
Adobe Flash Player 11 Plugin [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Flash Player Plugin]
Adobe Reader XI (11.0.06) - Polish [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AC76BA86-7AD7-1045-7B44-AB0000000001}]
AVG [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG]
AVG 2013 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0987D7D5-747E-455A-84AF-80F058492FAD}]
AVG 2013 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EF13DB20-03BE-4EDD-9C48-05ED03E3E852}]
Battle.net [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Battle.net]
CCleaner [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\CCleaner]
DAEMON Tools Lite [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DAEMON Tools Lite]
Diablo III [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Diablo III]
FIFA 14 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AA7A2800-1E75-4240-855B-03AFF8E5171E}]
GOM Player [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\GOM Player]
Google Chrome [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome]
Google Update Helper [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}]
Intelliremote 2.8.2.918 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Intelliremote_2.0]
Java 7 Update 51 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83217051FF}]
Java 8 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83218000FF}]
Java Auto Updater [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10}]
JDownloader 0.9 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\5513-1208-7298-9440]
Microsoft .NET Framework 4.5.1 (PLK) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{45F1F774-38B4-3CC3-BAAF-051E6D19E48E}]
Microsoft .NET Framework 4.5.1 (Polski) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045]
Microsoft .NET Framework 4.5.1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}]
Microsoft .NET Framework 4.5.1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033]
Microsoft Office Professional Plus 2013 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Office15.PROPLUS]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8220EEFE-38CD-377E-8595-13398D740ACE}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9A25302D-30C0-39D9-BD6F-21E6EC160475}]
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}]
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}]
NVIDIA Install Application [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer]
NVIDIA Oprogramowanie systemu PhysX 9.13.1220 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX]
NVIDIA PhysX [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{80407BA7-7763-4395-AB98-5233F1B34E65}]
NVIDIA Stereoscopic 3D Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\NVIDIAStereo]
NVIDIA Sterownik 3D Vision 335.23 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision]
NVIDIA Sterownik d«wi©ku HD 1.3.30.1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver]
NVIDIA Sterownik graficzny 335.23 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver]
NVIDIA Sterownik kontrolera 3D Vision 335.21 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB]
OpenFM [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\OpenFM]
Origin [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Origin]
Panel sterowania NVIDIA 335.23 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel]
Registry Life version 1.69 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Registry Life_is1]
TeamSpeak 3 Client [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TeamSpeak 3 Client]
TP-LINK TL-WN781ND Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{87C7B472-9BC2-43C8-9F03-86D2908E1A51}]
Visual Studio 2010 x64 Redistributables [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{21B133D6-5979-47F0-BE1C-F6A6B304693F}]
WinRAR 5.01 (32-bitowy) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinRAR archiver]
WRC3 wersja 1.0 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B4BF2667-112C-45EF-B8CB-1168E4EB5BA8}_is1]
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Loozak\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Loozak\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Loozak\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=28 folders=3 277085 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Loozak\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Loozak\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on 2014-04-28 at 23:57:23,46 ======================
-
mic93 - ~user
- Posty: 301
- Dołączenie: 03 Gru 2006, 13:28
- Pochwały: 4
-
Koń trojański downloader.generic_r.qc jak usunąć??
przez NieWiem 29 Kwi 2014, 07:58
Pobierz i zainstaluj Malwarebytes' Anti-Malware.
Podczas instalacji odznacz opcję "free pro-version trial" czy jakoś tak.
Uaktualnij i przeprowadź skanowanie.
Załącz wynikowy raport.
Podczas instalacji odznacz opcję "free pro-version trial" czy jakoś tak.
Uaktualnij i przeprowadź skanowanie.
Załącz wynikowy raport.
1. Pomocy udzielam wyłącznie na licencji beerware!
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
-
NieWiem - ~user
- Posty: 2183
- Dołączenie: 19 Cze 2009, 17:01
- Miejscowość: Okolice Okolic
- Pochwały: 171
Koń trojański downloader.generic_r.qc jak usunąć??
przez mic93 29 Kwi 2014, 17:55
- Kod: Zaznacz wszystko
Malwarebytes Anti-Malware
http://www.malwarebytes.org
Scan Date: 2014-04-29
Scan Time: 17:54:16
Logfile: log.txt
Administrator: Yes
Version: 2.00.1.1004
Malware Database: v2014.04.29.04
Rootkit Database: v2014.03.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Chameleon: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Loozak
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 245551
Time Elapsed: 8 min, 28 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
-
mic93 - ~user
- Posty: 301
- Dołączenie: 03 Gru 2006, 13:28
- Pochwały: 4
-
Koń trojański downloader.generic_r.qc jak usunąć??
przez NieWiem 30 Kwi 2014, 11:38
To chyba kończy sprawę 
Pobierz DelFix na pulpit.
Uruchom jako administrator.
Zaznacz opcje:
Delfix powinien posprzątać po wszystkim.
Pobierz DelFix na pulpit.
Uruchom jako administrator.
Zaznacz opcje:
- Remove disinfection tools
- Create registry backup
- Purge system restore
Delfix powinien posprzątać po wszystkim.
1. Pomocy udzielam wyłącznie na licencji beerware!
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
-
NieWiem - ~user
- Posty: 2183
- Dołączenie: 19 Cze 2009, 17:01
- Miejscowość: Okolice Okolic
- Pochwały: 171
-
Koń trojański downloader.generic_r.qc jak usunąć??
przez mic93 30 Kwi 2014, 15:56
- Kod: Zaznacz wszystko
# DelFix v10.7 - Logfile created 30/04/2014 at 15:53:50
# Updated 27/04/2014 by Xplode
# Username : Loozak - LOOZAK-KOMPUTER
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
~ Removing disinfection tools ...
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\Users\Loozak\Desktop\adwcleaner.exe
Deleted : C:\Users\Loozak\Desktop\zoek.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
~ Creating registry backup ... OK
~ Cleaning system restore ...
Deleted : RP #37 [Removed Command & Conquer 3. | 04/22/2014 12:18:20]
Deleted : RP #38 [Removed Command & Conquer™ 3: Gniew Kane'a. | 04/22/2014 12:19:53]
Deleted : RP #39 [Zainstalowany program DirectX | 04/22/2014 13:06:17]
Deleted : RP #40 [zoek.exe restore point | 04/28/2014 14:28:15]
Deleted : RP #41 [Removed Microsoft Silverlight | 04/30/2014 11:00:45]
New restore point created !
########## - EOF - ##########
-
mic93 - ~user
- Posty: 301
- Dołączenie: 03 Gru 2006, 13:28
- Pochwały: 4
-
Koń trojański downloader.generic_r.qc jak usunąć??
przez NieWiem 30 Kwi 2014, 19:16
1. Pomocy udzielam wyłącznie na licencji beerware!
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
-
NieWiem - ~user
- Posty: 2183
- Dołączenie: 19 Cze 2009, 17:01
- Miejscowość: Okolice Okolic
- Pochwały: 171
-
Koń trojański downloader.generic_r.qc jak usunąć??
przez mic93 30 Kwi 2014, 20:53
Dziękuje bardzo za pomoc
-
mic93 - ~user
- Posty: 301
- Dołączenie: 03 Gru 2006, 13:28
- Pochwały: 4
-
Odp: Koń trojański downloader.generic_r.qc jak usunąć??
przez NieWiem 01 Maj 2014, 00:49
Nie ma za co
1. Pomocy udzielam wyłącznie na licencji beerware!
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
-
NieWiem - ~user
- Posty: 2183
- Dołączenie: 19 Cze 2009, 17:01
- Miejscowość: Okolice Okolic
- Pochwały: 171
-
14 posty(ów) • Strona 1 z 1
Kto jest na forum
Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 13 gości