Ukash, nie działa tryb poleceń

ogqozo · 15 Sierpnia 2013

Dzień dobry,

Moja utalentowana rodzina zainstalowała sobie słynnego Ukasha na swoim Windowsie 7. Problem jest taki, że komputer nie rusza, tryb awaryjny nie rusza, także tryb linii poleceń - po ich włączeniu komputer w momencie startu od razu się restartuje. Trochę to utrudnia mi najczęstsze działania jakie widziałem w sieci z tym wirusem. Co można zrobić? Myślałem o puszczeniu płytyki z Linuxem i na nim włączeniu jakiegoś programu, ale czy to ma sens i jak by to dokładnie zrobić?

diox · 15 Sierpnia 2013

Zrób raport z FRST ( F8 przed startem systemu > Napraw komputer > Wiersz polecenia ).

ogqozo · 15 Sierpnia 2013

Dzięki, nie wiedziałem o tej opcji!

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-08-2013 01
Ran by SYSTEM on 15-08-2013 15:26:44
Running from F:\
Windows 7 Ultimate (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and Addition.txt log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [1352272 2010-10-28] (Logitech, Inc.)
HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [761946 2006-04-21] (Synaptics, Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM\...\Run: [VMonitorVMUVC] - C:\Program Files\Vimicro Corporation\VMUVC\VMonitor.exe [143360 2008-08-29] (Vimicro Corporation)
HKLM\...\Run: [sunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252296 2012-01-17] (Sun Microsystems, Inc.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [X]
HKU\ogqozo\...\Run: [ALLUpdate] - D:\ALLPlayer\ALLUpdate.exe [ 2012-10-08] (ALLCinema)
HKU\ogqozo\...\Run: [qcgce2mrvjq91kk1e7pnbb19m52fx] - C:\Users\ogqozo\AppData\Local\Temp\lmylgebghllgqlfmo.exe [ 2013-08-14] (Valve Corporation) <===== ATTENTION
HKU\ogqozo\...\Winlogon: [shell] cmd.exe [ 2009-07-13] (Microsoft Corporation) <==== ATTENTION
HKU\ogqozo\...\Command Processor: "C:\Users\ogqozo\AppData\Local\Temp\lmylgebghllgqlfmo.exe" <===== ATTENTION!

========================== Services (Whitelisted) =================

S2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
S2 Internet Manager. RunOuc; C:\Program Files\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [224096 2012-02-23] ()
S2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2011-10-30] ()
S2 PnkBstrB; C:\Windows\system32\PnkBstrB.exe [189248 2011-10-30] ()
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)

==================== Drivers (Whitelisted) ====================

S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [38400 2009-06-08] (Samsung Electronics Co., Ltd.)
S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2013-08-03] (Disc Soft Ltd)
S3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [90368 2012-02-23] (Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [26624 2012-02-23] (Huawei Technologies Co., Ltd.)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [181760 2012-02-23] (Huawei Technologies Co., Ltd.)
S3 LMouFilt; C:\Windows\System32\DRIVERS\LMouFilt.Sys [37328 2010-08-24] (Logitech, Inc.)
S3 NETwLv32; C:\Windows\System32\DRIVERS\NETwLv32.sys [6639616 2010-10-07] (Intel Corporation)
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mdfl; C:\Windows\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation)
S3 s0016mdm; C:\Windows\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\Windows\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016nd5; C:\Windows\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\Windows\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\Windows\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
S3 s0017bus; C:\Windows\System32\DRIVERS\s0017bus.sys [86824 2008-10-21] (MCCI Corporation)
S3 s0017mdfl; C:\Windows\System32\DRIVERS\s0017mdfl.sys [15016 2008-10-21] (MCCI Corporation)
S3 s0017mdm; C:\Windows\System32\DRIVERS\s0017mdm.sys [114600 2008-10-21] (MCCI Corporation)
S3 s0017mgmt; C:\Windows\System32\DRIVERS\s0017mgmt.sys [108328 2008-10-21] (MCCI Corporation)
S3 s0017nd5; C:\Windows\System32\DRIVERS\s0017nd5.sys [26024 2008-10-21] (MCCI Corporation)
S3 s0017obex; C:\Windows\System32\DRIVERS\s0017obex.sys [104616 2008-10-21] (MCCI Corporation)
S3 s0017unic; C:\Windows\System32\DRIVERS\s0017unic.sys [109736 2008-10-21] (MCCI Corporation)
S3 s1039mdm; C:\Windows\System32\DRIVERS\s1039mdm.sys [124016 2010-03-15] (MCCI Corporation)
S3 s1039obex; C:\Windows\System32\DRIVERS\s1039obex.sys [113904 2010-03-15] ()
S2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [5120 2008-01-10] (Samsung Electronics)
S3 VMUVC; C:\Windows\System32\Drivers\VMUVC.sys [256512 2008-08-29] (Vimicro Corporation)
S3 vvftUVC; C:\Windows\System32\drivers\vvftUVC.sys [398720 2008-07-01] (Vimicro Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-08-14 09:08 - 2013-08-14 09:08 - 00106387 _____ C:\ProgramData\2433f433
2013-08-14 09:08 - 2013-08-14 09:08 - 00106382 _____ C:\Users\ogqozo\AppData\Local\2433f433
2013-08-14 09:08 - 2013-08-14 09:08 - 00106375 _____ C:\Users\ogqozo\AppData\Roaming\2433f433
2013-08-11 06:08 - 2013-08-11 06:08 - 00003343 _____ C:\Users\ogqozo\Desktop\Starcraft No Install - Shortcut.lnk
2013-08-03 07:36 - 2013-08-03 07:36 - 00889416 _____ (Microsoft Corporation) C:\Users\ogqozo\Downloads\dotNetFx40_Full_setup.exe
2013-08-03 07:34 - 2013-08-03 07:57 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-08-03 07:19 - 2009-11-25 02:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\System32\dfshim.dll
2013-08-03 07:19 - 2009-11-25 02:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\System32\mscoree.dll
2013-08-03 07:19 - 2009-11-25 02:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\System32\PresentationHost.exe
2013-08-03 07:19 - 2009-11-25 02:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\System32\PresentationHostProxy.dll
2013-08-03 07:19 - 2009-11-25 02:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\System32\netfxperf.dll
2013-08-03 07:17 - 2010-06-01 18:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_7.dll
2013-08-03 07:17 - 2010-06-01 18:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_7.dll
2013-08-03 07:17 - 2010-06-01 18:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_5.dll
2013-08-03 07:17 - 2010-05-26 01:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_43.dll
2013-08-03 07:17 - 2010-05-26 01:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_43.dll
2013-08-03 07:17 - 2010-05-26 01:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_43.dll
2013-08-03 07:17 - 2010-05-26 01:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_43.dll
2013-08-03 07:17 - 2010-05-26 01:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_43.dll
2013-08-03 07:17 - 2010-02-04 00:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_6.dll
2013-08-03 07:17 - 2010-02-04 00:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_6.dll
2013-08-03 07:17 - 2010-02-04 00:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_4.dll
2013-08-03 07:17 - 2010-02-04 00:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_7.dll
2013-08-03 07:17 - 2009-09-04 07:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll
2013-08-03 07:17 - 2009-09-04 07:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll
2013-08-03 07:17 - 2009-09-04 07:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll
2013-08-03 07:17 - 2009-09-04 07:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll
2013-08-03 07:17 - 2009-09-04 07:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll
2013-08-03 07:17 - 2009-09-04 07:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll
2013-08-03 07:17 - 2009-09-04 07:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_42.dll
2013-08-03 07:17 - 2009-09-04 07:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll
2013-08-03 07:17 - 2009-03-16 04:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_4.dll
2013-08-03 07:17 - 2009-03-16 04:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_4.dll
2013-08-03 07:17 - 2009-03-16 04:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_6.dll
2013-08-03 07:17 - 2009-03-09 05:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_41.dll
2013-08-03 07:17 - 2009-03-09 05:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_41.dll
2013-08-03 07:17 - 2009-03-09 05:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_41.dll
2013-08-03 07:17 - 2008-10-27 00:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_3.dll
2013-08-03 07:17 - 2008-10-27 00:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_3.dll
2013-08-03 07:17 - 2008-10-27 00:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_2.dll
2013-08-03 07:17 - 2008-10-27 00:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_5.dll
2013-08-03 07:17 - 2008-10-14 20:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_40.dll
2013-08-03 07:17 - 2008-10-14 20:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_40.dll
2013-08-03 07:17 - 2008-10-14 20:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_40.dll
2013-08-03 07:17 - 2008-07-31 00:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll
2013-08-03 07:17 - 2008-07-31 00:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll
2013-08-03 07:17 - 2008-05-30 04:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_1.dll
2013-08-03 07:17 - 2008-05-30 04:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_1.dll
2013-08-03 07:17 - 2008-05-30 04:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_0.dll
2013-08-03 07:17 - 2008-05-30 04:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_4.dll
2013-08-03 07:17 - 2008-05-30 04:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_38.dll
2013-08-03 07:17 - 2008-05-30 04:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_38.dll
2013-08-03 07:17 - 2008-05-30 04:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_38.dll
2013-08-03 07:17 - 2008-03-05 06:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_0.dll
2013-08-03 07:17 - 2008-03-05 06:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_0.dll
2013-08-03 07:17 - 2008-03-05 06:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_3.dll
2013-08-03 07:17 - 2008-03-05 05:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_37.dll
2013-08-03 07:17 - 2008-03-05 05:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_37.dll
2013-08-03 07:17 - 2008-02-05 13:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_37.dll
2013-08-03 07:17 - 2007-10-21 17:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_10.dll
2013-08-03 07:17 - 2007-10-21 17:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_2.dll
2013-08-03 07:17 - 2007-10-12 05:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_36.dll
2013-08-03 07:17 - 2007-10-12 05:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_36.dll
2013-08-03 07:17 - 2007-10-01 23:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_36.dll
2013-08-03 07:17 - 2007-07-19 14:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_9.dll
2013-08-03 07:17 - 2007-07-19 08:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_35.dll
2013-08-03 07:17 - 2007-07-19 08:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_35.dll
2013-08-03 07:17 - 2007-07-19 08:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_35.dll
2013-08-03 07:17 - 2007-06-20 10:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_8.dll
2013-08-03 07:17 - 2007-05-16 06:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_34.dll
2013-08-03 07:17 - 2007-05-16 06:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_34.dll
2013-08-03 07:17 - 2007-05-16 06:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_34.dll
2013-08-03 07:17 - 2007-04-04 08:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_7.dll
2013-08-03 07:17 - 2007-04-04 08:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_3.dll
2013-08-03 07:17 - 2007-03-15 06:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_33.dll
2013-08-03 07:17 - 2007-03-12 06:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_33.dll
2013-08-03 07:17 - 2007-03-12 06:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_33.dll
2013-08-03 07:17 - 2007-03-05 02:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\System32\x3daudio1_1.dll
2013-08-03 07:17 - 2007-01-24 05:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_6.dll
2013-08-03 07:17 - 2006-12-08 02:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_5.dll
2013-08-03 07:17 - 2006-11-29 03:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_32.dll
2013-08-03 07:17 - 2006-11-29 03:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10.dll
2013-08-03 07:17 - 2006-09-28 06:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_31.dll
2013-08-03 07:17 - 2006-09-28 06:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_4.dll
2013-08-03 07:17 - 2006-07-27 23:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_3.dll
2013-08-03 07:17 - 2006-07-27 23:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_2.dll
2013-08-03 07:17 - 2006-05-30 21:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_2.dll
2013-08-03 07:17 - 2006-03-31 02:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_30.dll
2013-08-03 07:17 - 2006-03-31 02:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_1.dll
2013-08-03 07:17 - 2006-03-31 02:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_1.dll
2013-08-03 07:17 - 2006-02-02 22:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_29.dll
2013-08-03 07:17 - 2006-02-02 22:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_0.dll
2013-08-03 07:17 - 2006-02-02 22:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\System32\x3daudio1_0.dll
2013-08-03 07:17 - 2005-12-05 08:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_28.dll
2013-08-03 07:17 - 2005-07-22 09:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_27.dll
2013-08-03 07:17 - 2005-05-26 05:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_26.dll
2013-08-03 07:17 - 2005-03-18 07:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_25.dll
2013-08-03 07:17 - 2005-02-05 09:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_24.dll
2013-08-03 07:00 - 2013-08-03 07:00 - 00243128 _____ (Disc Soft Ltd) C:\Windows\System32\Drivers\dtsoftbus01.sys
2013-08-03 06:56 - 2013-08-03 06:56 - 13867192 _____ (Disc Soft Ltd) C:\Users\ogqozo\Downloads\DTLite4471-0335(dobreprogramy.pl).exe
2013-07-27 21:54 - 2013-07-27 21:54 - 00000000 ____D C:\Users\ogqozo\Desktop\let_s_draw_____flying_poses___mega_pack_by_cheyenne75-d6fe7fn

==================== One Month Modified Files and Folders =======

2013-08-15 15:25 - 2013-08-15 15:25 - 00000000 ____D C:\FRST
2013-08-15 04:09 - 2009-07-13 20:34 - 00016160 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-15 04:09 - 2009-07-13 20:34 - 00016160 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-15 04:08 - 2011-03-30 05:36 - 00166286 _____ C:\Windows\setupact.log
2013-08-14 22:40 - 2006-02-12 18:25 - 01991139 _____ C:\Windows\WindowsUpdate.log
2013-08-14 10:25 - 2010-12-07 07:36 - 00710770 _____ C:\Windows\System32\PerfStringBackup.INI
2013-08-14 09:08 - 2013-08-14 09:08 - 00106387 _____ C:\ProgramData\2433f433
2013-08-14 09:08 - 2013-08-14 09:08 - 00106382 _____ C:\Users\ogqozo\AppData\Local\2433f433
2013-08-14 09:08 - 2013-08-14 09:08 - 00106375 _____ C:\Users\ogqozo\AppData\Roaming\2433f433
2013-08-14 03:39 - 2010-12-07 11:39 - 00000000 ____D C:\Users\ogqozo\AppData\Roaming\uTorrent
2013-08-13 09:43 - 2010-12-07 09:35 - 00000000 ____D C:\Users\ogqozo\AppData\Roaming\foobar2000
2013-08-12 08:54 - 2013-06-09 23:38 - 00000000 ____D C:\Users\ogqozo\Desktop\Raporty
2013-08-11 06:08 - 2013-08-11 06:08 - 00003343 _____ C:\Users\ogqozo\Desktop\Starcraft No Install - Shortcut.lnk
2013-08-11 04:20 - 2011-07-18 01:23 - 00040216 _____ C:\Windows\PFRO.log
2013-08-11 01:42 - 2011-04-17 14:35 - 00000000 ____D C:\Users\ogqozo\AppData\Roaming\DAEMON Tools Lite
2013-08-11 01:42 - 2011-04-17 14:35 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-08-10 10:20 - 2011-12-17 12:22 - 00010742 _____ C:\Users\ogqozo\Documents\filmy 2.txt
2013-08-03 09:25 - 2009-07-13 18:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-08-03 07:57 - 2013-08-03 07:34 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-08-03 07:36 - 2013-08-03 07:36 - 00889416 _____ (Microsoft Corporation) C:\Users\ogqozo\Downloads\dotNetFx40_Full_setup.exe
2013-08-03 07:00 - 2013-08-03 07:00 - 00243128 _____ (Disc Soft Ltd) C:\Windows\System32\Drivers\dtsoftbus01.sys
2013-08-03 06:56 - 2013-08-03 06:56 - 13867192 _____ (Disc Soft Ltd) C:\Users\ogqozo\Downloads\DTLite4471-0335(dobreprogramy.pl).exe
2013-07-27 21:54 - 2013-07-27 21:54 - 00000000 ____D C:\Users\ogqozo\Desktop\let_s_draw_____flying_poses___mega_pack_by_cheyenne75-d6fe7fn

Files to move or delete:
====================
C:\Users\ogqozo\AppData\Local\Temp\lmylgebghllgqlfmo.exe

==================== Known DLLs (Whitelisted) ============

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

==================== Memory info ===========================

Percentage of memory in use: 39%
Total physical RAM: 1014.12 MB
Available physical RAM: 617.18 MB
Total Pagefile: 1014.12 MB
Available Pagefile: 647.93 MB
Total Virtual: 2047.88 MB
Available Virtual: 1942.38 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:19.53 GB) (Free:4.37 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:92.25 GB) (Free:42.9 GB) NTFS
Drive f: () (Removable) (Total:3.74 GB) (Free:3.73 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: E9C06804)
Partition 1: (Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=92 GB) - (Type=OF Extended)

========================================================
Disk: 1 (Size: 4 GB) (Disk ID: 04030201)
Partition 1: (Not Active) - (Size=4 GB) - (Type=0B)

LastRegBack: 2013-08-13 04:03

==================== End Of Log ============================

diox · 15 Sierpnia 2013

Otwórz Notatnik i wklej:

HKU\ogqozo\...\Run: [qcgce2mrvjq91kk1e7pnbb19m52fx] - C:\Users\ogqozo\AppData\Local\Temp\lmylgebghllgqlfmo.exe [ 2013-08-14] (Valve Corporation) <===== ATTENTION
HKU\ogqozo\...\Winlogon: [shell] cmd.exe [ 2009-07-13] (Microsoft Corporation) <==== ATTENTION
HKU\ogqozo\...\Command Processor: "C:\Users\ogqozo\AppData\Local\Temp\lmylgebghllgqlfmo.exe" <===== ATTENTION!
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [X]
C:\Users\ogqozo\AppData\Local\Temp\lmylgebghllgqlfmo.exe

Zapisz jako fixlist.txt . Umieść obok FRST .

Uruchom FRST z opcji Fix, powstanie log Fixlog, podaj go .

Wyjdź do Windows w zrób wymagane logi: KLIK

ogqozo · 15 Sierpnia 2013

Fixlog:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 14-08-2013 01
Ran by SYSTEM at 2013-08-15 15:48:02 Run:1
Running from F:\
Boot Mode: Recovery

==============================================

HKU\ogqozo\Software\Microsoft\Windows\CurrentVersion\Run\\qcgce2mrvjq91kk1e7pnbb19m52fx => Value deleted successfully.
HKU\ogqozo\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value deleted successfully.
HKU\ogqozo\Software\Microsoft\Command Processor\\AutoRun => Value deleted successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn => Key deleted successfully.
C:\Users\ogqozo\AppData\Local\Temp\lmylgebghllgqlfmo.exe => Moved successfully.

==== End of Fixlog ====

Nie do końca rozumiem, co znaczy w tej sytuacji "wyjdź do Windows"? Tak na oko to Winda dalej nie rusza. Tryb awaryjny tak jak poprzednio od razu restartuje, tryb z wierszem poleceń się włącza, ale z niego nie włączy się OTL (jak wpisuję F:\OTL.exe, wyskakuje "device not ready", próba włączenia czegoś okienkowego jak Notepad rezultuje automatycznym restartem systemu).

diox · 15 Sierpnia 2013

Zrób nowy log z FRST .

ogqozo · 15 Sierpnia 2013

Oto on:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-08-2013 01
Ran by SYSTEM on 15-08-2013 16:42:32
Running from F:\
Windows 7 Ultimate (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and Addition.txt log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [1352272 2010-10-28] (Logitech, Inc.)
HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [761946 2006-04-21] (Synaptics, Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM\...\Run: [VMonitorVMUVC] - C:\Program Files\Vimicro Corporation\VMUVC\VMonitor.exe [143360 2008-08-29] (Vimicro Corporation)
HKLM\...\Run: [sunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252296 2012-01-17] (Sun Microsystems, Inc.)
HKU\ogqozo\...\Run: [ALLUpdate] - D:\ALLPlayer\ALLUpdate.exe [ 2012-10-08] (ALLCinema)

========================== Services (Whitelisted) =================

S2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
S2 Internet Manager. RunOuc; C:\Program Files\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [224096 2012-02-23] ()
S2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2011-10-30] ()
S2 PnkBstrB; C:\Windows\system32\PnkBstrB.exe [189248 2011-10-30] ()
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)

==================== Drivers (Whitelisted) ====================

S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [38400 2009-06-08] (Samsung Electronics Co., Ltd.)
S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2013-08-03] (Disc Soft Ltd)
S3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [90368 2012-02-23] (Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [26624 2012-02-23] (Huawei Technologies Co., Ltd.)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [181760 2012-02-23] (Huawei Technologies Co., Ltd.)
S3 LMouFilt; C:\Windows\System32\DRIVERS\LMouFilt.Sys [37328 2010-08-24] (Logitech, Inc.)
S3 NETwLv32; C:\Windows\System32\DRIVERS\NETwLv32.sys [6639616 2010-10-07] (Intel Corporation)
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mdfl; C:\Windows\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation)
S3 s0016mdm; C:\Windows\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\Windows\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016nd5; C:\Windows\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\Windows\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\Windows\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
S3 s0017bus; C:\Windows\System32\DRIVERS\s0017bus.sys [86824 2008-10-21] (MCCI Corporation)
S3 s0017mdfl; C:\Windows\System32\DRIVERS\s0017mdfl.sys [15016 2008-10-21] (MCCI Corporation)
S3 s0017mdm; C:\Windows\System32\DRIVERS\s0017mdm.sys [114600 2008-10-21] (MCCI Corporation)
S3 s0017mgmt; C:\Windows\System32\DRIVERS\s0017mgmt.sys [108328 2008-10-21] (MCCI Corporation)
S3 s0017nd5; C:\Windows\System32\DRIVERS\s0017nd5.sys [26024 2008-10-21] (MCCI Corporation)
S3 s0017obex; C:\Windows\System32\DRIVERS\s0017obex.sys [104616 2008-10-21] (MCCI Corporation)
S3 s0017unic; C:\Windows\System32\DRIVERS\s0017unic.sys [109736 2008-10-21] (MCCI Corporation)
S3 s1039mdm; C:\Windows\System32\DRIVERS\s1039mdm.sys [124016 2010-03-15] (MCCI Corporation)
S3 s1039obex; C:\Windows\System32\DRIVERS\s1039obex.sys [113904 2010-03-15] ()
S2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [5120 2008-01-10] (Samsung Electronics)
S3 VMUVC; C:\Windows\System32\Drivers\VMUVC.sys [256512 2008-08-29] (Vimicro Corporation)
S3 vvftUVC; C:\Windows\System32\drivers\vvftUVC.sys [398720 2008-07-01] (Vimicro Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-08-14 09:08 - 2013-08-14 09:08 - 00106387 _____ C:\ProgramData\2433f433
2013-08-14 09:08 - 2013-08-14 09:08 - 00106382 _____ C:\Users\ogqozo\AppData\Local\2433f433
2013-08-14 09:08 - 2013-08-14 09:08 - 00106375 _____ C:\Users\ogqozo\AppData\Roaming\2433f433
2013-08-11 06:08 - 2013-08-11 06:08 - 00003343 _____ C:\Users\ogqozo\Desktop\Starcraft No Install - Shortcut.lnk
2013-08-03 07:36 - 2013-08-03 07:36 - 00889416 _____ (Microsoft Corporation) C:\Users\ogqozo\Downloads\dotNetFx40_Full_setup.exe
2013-08-03 07:34 - 2013-08-03 07:57 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-08-03 07:19 - 2009-11-25 02:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\System32\dfshim.dll
2013-08-03 07:19 - 2009-11-25 02:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\System32\mscoree.dll
2013-08-03 07:19 - 2009-11-25 02:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\System32\PresentationHost.exe
2013-08-03 07:19 - 2009-11-25 02:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\System32\PresentationHostProxy.dll
2013-08-03 07:19 - 2009-11-25 02:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\System32\netfxperf.dll
2013-08-03 07:17 - 2010-06-01 18:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_7.dll
2013-08-03 07:17 - 2010-06-01 18:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_7.dll
2013-08-03 07:17 - 2010-06-01 18:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_5.dll
2013-08-03 07:17 - 2010-05-26 01:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_43.dll
2013-08-03 07:17 - 2010-05-26 01:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_43.dll
2013-08-03 07:17 - 2010-05-26 01:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_43.dll
2013-08-03 07:17 - 2010-05-26 01:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_43.dll
2013-08-03 07:17 - 2010-05-26 01:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_43.dll
2013-08-03 07:17 - 2010-02-04 00:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_6.dll
2013-08-03 07:17 - 2010-02-04 00:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_6.dll
2013-08-03 07:17 - 2010-02-04 00:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_4.dll
2013-08-03 07:17 - 2010-02-04 00:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_7.dll
2013-08-03 07:17 - 2009-09-04 07:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll
2013-08-03 07:17 - 2009-09-04 07:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll
2013-08-03 07:17 - 2009-09-04 07:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll
2013-08-03 07:17 - 2009-09-04 07:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll
2013-08-03 07:17 - 2009-09-04 07:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll
2013-08-03 07:17 - 2009-09-04 07:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll
2013-08-03 07:17 - 2009-09-04 07:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_42.dll
2013-08-03 07:17 - 2009-09-04 07:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll
2013-08-03 07:17 - 2009-03-16 04:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_4.dll
2013-08-03 07:17 - 2009-03-16 04:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_4.dll
2013-08-03 07:17 - 2009-03-16 04:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_6.dll
2013-08-03 07:17 - 2009-03-09 05:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_41.dll
2013-08-03 07:17 - 2009-03-09 05:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_41.dll
2013-08-03 07:17 - 2009-03-09 05:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_41.dll
2013-08-03 07:17 - 2008-10-27 00:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_3.dll
2013-08-03 07:17 - 2008-10-27 00:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_3.dll
2013-08-03 07:17 - 2008-10-27 00:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_2.dll
2013-08-03 07:17 - 2008-10-27 00:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_5.dll
2013-08-03 07:17 - 2008-10-14 20:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_40.dll
2013-08-03 07:17 - 2008-10-14 20:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_40.dll
2013-08-03 07:17 - 2008-10-14 20:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_40.dll
2013-08-03 07:17 - 2008-07-31 00:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll
2013-08-03 07:17 - 2008-07-31 00:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll
2013-08-03 07:17 - 2008-05-30 04:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_1.dll
2013-08-03 07:17 - 2008-05-30 04:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_1.dll
2013-08-03 07:17 - 2008-05-30 04:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_0.dll
2013-08-03 07:17 - 2008-05-30 04:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_4.dll
2013-08-03 07:17 - 2008-05-30 04:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_38.dll
2013-08-03 07:17 - 2008-05-30 04:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_38.dll
2013-08-03 07:17 - 2008-05-30 04:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_38.dll
2013-08-03 07:17 - 2008-03-05 06:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_0.dll
2013-08-03 07:17 - 2008-03-05 06:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_0.dll
2013-08-03 07:17 - 2008-03-05 06:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_3.dll
2013-08-03 07:17 - 2008-03-05 05:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_37.dll
2013-08-03 07:17 - 2008-03-05 05:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_37.dll
2013-08-03 07:17 - 2008-02-05 13:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_37.dll
2013-08-03 07:17 - 2007-10-21 17:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_10.dll
2013-08-03 07:17 - 2007-10-21 17:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_2.dll
2013-08-03 07:17 - 2007-10-12 05:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_36.dll
2013-08-03 07:17 - 2007-10-12 05:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_36.dll
2013-08-03 07:17 - 2007-10-01 23:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_36.dll
2013-08-03 07:17 - 2007-07-19 14:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_9.dll
2013-08-03 07:17 - 2007-07-19 08:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_35.dll
2013-08-03 07:17 - 2007-07-19 08:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_35.dll
2013-08-03 07:17 - 2007-07-19 08:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_35.dll
2013-08-03 07:17 - 2007-06-20 10:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_8.dll
2013-08-03 07:17 - 2007-05-16 06:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_34.dll
2013-08-03 07:17 - 2007-05-16 06:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_34.dll
2013-08-03 07:17 - 2007-05-16 06:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_34.dll
2013-08-03 07:17 - 2007-04-04 08:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_7.dll
2013-08-03 07:17 - 2007-04-04 08:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_3.dll
2013-08-03 07:17 - 2007-03-15 06:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_33.dll
2013-08-03 07:17 - 2007-03-12 06:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_33.dll
2013-08-03 07:17 - 2007-03-12 06:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_33.dll
2013-08-03 07:17 - 2007-03-05 02:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\System32\x3daudio1_1.dll
2013-08-03 07:17 - 2007-01-24 05:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_6.dll
2013-08-03 07:17 - 2006-12-08 02:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_5.dll
2013-08-03 07:17 - 2006-11-29 03:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_32.dll
2013-08-03 07:17 - 2006-11-29 03:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10.dll
2013-08-03 07:17 - 2006-09-28 06:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_31.dll
2013-08-03 07:17 - 2006-09-28 06:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_4.dll
2013-08-03 07:17 - 2006-07-27 23:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_3.dll
2013-08-03 07:17 - 2006-07-27 23:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_2.dll
2013-08-03 07:17 - 2006-05-30 21:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_2.dll
2013-08-03 07:17 - 2006-03-31 02:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_30.dll
2013-08-03 07:17 - 2006-03-31 02:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_1.dll
2013-08-03 07:17 - 2006-03-31 02:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_1.dll
2013-08-03 07:17 - 2006-02-02 22:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_29.dll
2013-08-03 07:17 - 2006-02-02 22:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_0.dll
2013-08-03 07:17 - 2006-02-02 22:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\System32\x3daudio1_0.dll
2013-08-03 07:17 - 2005-12-05 08:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_28.dll
2013-08-03 07:17 - 2005-07-22 09:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_27.dll
2013-08-03 07:17 - 2005-05-26 05:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_26.dll
2013-08-03 07:17 - 2005-03-18 07:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_25.dll
2013-08-03 07:17 - 2005-02-05 09:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_24.dll
2013-08-03 07:00 - 2013-08-03 07:00 - 00243128 _____ (Disc Soft Ltd) C:\Windows\System32\Drivers\dtsoftbus01.sys
2013-08-03 06:56 - 2013-08-03 06:56 - 13867192 _____ (Disc Soft Ltd) C:\Users\ogqozo\Downloads\DTLite4471-0335(dobreprogramy.pl).exe
2013-07-27 21:54 - 2013-07-27 21:54 - 00000000 ____D C:\Users\ogqozo\Desktop\let_s_draw_____flying_poses___mega_pack_by_cheyenne75-d6fe7fn

==================== One Month Modified Files and Folders =======

2013-08-15 15:25 - 2013-08-15 15:25 - 00000000 ____D C:\FRST
2013-08-15 05:58 - 2011-03-30 05:36 - 00166398 _____ C:\Windows\setupact.log
2013-08-15 04:09 - 2009-07-13 20:34 - 00016160 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-15 04:09 - 2009-07-13 20:34 - 00016160 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-14 22:40 - 2006-02-12 18:25 - 01991139 _____ C:\Windows\WindowsUpdate.log
2013-08-14 10:25 - 2010-12-07 07:36 - 00710770 _____ C:\Windows\System32\PerfStringBackup.INI
2013-08-14 09:08 - 2013-08-14 09:08 - 00106387 _____ C:\ProgramData\2433f433
2013-08-14 09:08 - 2013-08-14 09:08 - 00106382 _____ C:\Users\ogqozo\AppData\Local\2433f433
2013-08-14 09:08 - 2013-08-14 09:08 - 00106375 _____ C:\Users\ogqozo\AppData\Roaming\2433f433
2013-08-14 03:39 - 2010-12-07 11:39 - 00000000 ____D C:\Users\ogqozo\AppData\Roaming\uTorrent
2013-08-13 09:43 - 2010-12-07 09:35 - 00000000 ____D C:\Users\ogqozo\AppData\Roaming\foobar2000
2013-08-12 08:54 - 2013-06-09 23:38 - 00000000 ____D C:\Users\ogqozo\Desktop\Raporty
2013-08-11 06:08 - 2013-08-11 06:08 - 00003343 _____ C:\Users\ogqozo\Desktop\Starcraft No Install - Shortcut.lnk
2013-08-11 04:20 - 2011-07-18 01:23 - 00040216 _____ C:\Windows\PFRO.log
2013-08-11 01:42 - 2011-04-17 14:35 - 00000000 ____D C:\Users\ogqozo\AppData\Roaming\DAEMON Tools Lite
2013-08-11 01:42 - 2011-04-17 14:35 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-08-10 10:20 - 2011-12-17 12:22 - 00010742 _____ C:\Users\ogqozo\Documents\filmy 2.txt
2013-08-03 09:25 - 2009-07-13 18:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-08-03 07:57 - 2013-08-03 07:34 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-08-03 07:36 - 2013-08-03 07:36 - 00889416 _____ (Microsoft Corporation) C:\Users\ogqozo\Downloads\dotNetFx40_Full_setup.exe
2013-08-03 07:00 - 2013-08-03 07:00 - 00243128 _____ (Disc Soft Ltd) C:\Windows\System32\Drivers\dtsoftbus01.sys
2013-08-03 06:56 - 2013-08-03 06:56 - 13867192 _____ (Disc Soft Ltd) C:\Users\ogqozo\Downloads\DTLite4471-0335(dobreprogramy.pl).exe
2013-07-27 21:54 - 2013-07-27 21:54 - 00000000 ____D C:\Users\ogqozo\Desktop\let_s_draw_____flying_poses___mega_pack_by_cheyenne75-d6fe7fn

==================== Known DLLs (Whitelisted) ============

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

==================== Memory info ===========================

Percentage of memory in use: 39%
Total physical RAM: 1014.12 MB
Available physical RAM: 614.25 MB
Total Pagefile: 1014.12 MB
Available Pagefile: 643.77 MB
Total Virtual: 2047.88 MB
Available Virtual: 1934.59 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:19.53 GB) (Free:4.27 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:92.25 GB) (Free:42.9 GB) NTFS
Drive f: () (Removable) (Total:3.74 GB) (Free:3.73 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: E9C06804)
Partition 1: (Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=92 GB) - (Type=OF Extended)

========================================================
Disk: 1 (Size: 4 GB) (Disk ID: 04030201)
Partition 1: (Not Active) - (Size=4 GB) - (Type=0B)

LastRegBack: 2013-08-13 04:03

==================== End Of Log ============================

diox · 15 Sierpnia 2013

Otwórz Notatnik i wklej:

C:\ProgramData\2433f433
C:\Users\ogqozo\AppData\Local\2433f433
C:\Users\ogqozo\AppData\Roaming\2433f433

Zapisz jako fixlist.txt .

Zrób tak samo jak poprzednio, jak system odpali, to zrób wymagane logi .

ogqozo · 15 Sierpnia 2013

Ciągle to samo. Start systemu - Ukash, tryb awaryjny - restart.

Fixlog:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 14-08-2013 01

Ran by SYSTEM at 2013-08-15 17:25:59 Run:2

Running from F:\

Boot Mode: Recovery

==============================================

C:\ProgramData\2433f433 => Moved successfully.

C:\Users\ogqozo\AppData\Local\2433f433 => Moved successfully.

C:\Users\ogqozo\AppData\Roaming\2433f433 => Moved successfully.

==== End of Fixlog ====

FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-08-2013 01

Ran by SYSTEM on 15-08-2013 17:36:33

Running from F:\

Windows 7 Ultimate (X86) OS Language: English(US)

Internet Explorer Version 8

Boot Mode: Recovery

The current controlset is ControlSet001

ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and Addition.txt log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [1352272 2010-10-28] (Logitech, Inc.)

HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [761946 2006-04-21] (Synaptics, Inc.)

HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)

HKLM\...\Run: [VMonitorVMUVC] - C:\Program Files\Vimicro Corporation\VMUVC\VMonitor.exe [143360 2008-08-29] (Vimicro Corporation)

HKLM\...\Run: [sunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252296 2012-01-17] (Sun Microsystems, Inc.)

HKU\ogqozo\...\Run: [ALLUpdate] - D:\ALLPlayer\ALLUpdate.exe [ 2012-10-08] (ALLCinema)

========================== Services (Whitelisted) =================

S2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()

S2 Internet Manager. RunOuc; C:\Program Files\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [224096 2012-02-23] ()

S2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2011-10-30] ()

S2 PnkBstrB; C:\Windows\system32\PnkBstrB.exe [189248 2011-10-30] ()

S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)

==================== Drivers (Whitelisted) ====================

S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [38400 2009-06-08] (Samsung Electronics Co., Ltd.)

S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2013-08-03] (Disc Soft Ltd)

S3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [90368 2012-02-23] (Huawei Technologies Co., Ltd.)

S3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [26624 2012-02-23] (Huawei Technologies Co., Ltd.)

S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [181760 2012-02-23] (Huawei Technologies Co., Ltd.)

S3 LMouFilt; C:\Windows\System32\DRIVERS\LMouFilt.Sys [37328 2010-08-24] (Logitech, Inc.)

S3 NETwLv32; C:\Windows\System32\DRIVERS\NETwLv32.sys [6639616 2010-10-07] (Intel Corporation)

S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)

S3 s0016mdfl; C:\Windows\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation)

S3 s0016mdm; C:\Windows\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation)

S3 s0016mgmt; C:\Windows\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)

S3 s0016nd5; C:\Windows\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation)

S3 s0016obex; C:\Windows\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)

S3 s0016unic; C:\Windows\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)

S3 s0017bus; C:\Windows\System32\DRIVERS\s0017bus.sys [86824 2008-10-21] (MCCI Corporation)

S3 s0017mdfl; C:\Windows\System32\DRIVERS\s0017mdfl.sys [15016 2008-10-21] (MCCI Corporation)

S3 s0017mdm; C:\Windows\System32\DRIVERS\s0017mdm.sys [114600 2008-10-21] (MCCI Corporation)

S3 s0017mgmt; C:\Windows\System32\DRIVERS\s0017mgmt.sys [108328 2008-10-21] (MCCI Corporation)

S3 s0017nd5; C:\Windows\System32\DRIVERS\s0017nd5.sys [26024 2008-10-21] (MCCI Corporation)

S3 s0017obex; C:\Windows\System32\DRIVERS\s0017obex.sys [104616 2008-10-21] (MCCI Corporation)

S3 s0017unic; C:\Windows\System32\DRIVERS\s0017unic.sys [109736 2008-10-21] (MCCI Corporation)

S3 s1039mdm; C:\Windows\System32\DRIVERS\s1039mdm.sys [124016 2010-03-15] (MCCI Corporation)

S3 s1039obex; C:\Windows\System32\DRIVERS\s1039obex.sys [113904 2010-03-15] ()

S2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [5120 2008-01-10] (Samsung Electronics)

S3 VMUVC; C:\Windows\System32\Drivers\VMUVC.sys [256512 2008-08-29] (Vimicro Corporation)

S3 vvftUVC; C:\Windows\System32\drivers\vvftUVC.sys [398720 2008-07-01] (Vimicro Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-08-11 06:08 - 2013-08-11 06:08 - 00003343 _____ C:\Users\ogqozo\Desktop\Starcraft No Install - Shortcut.lnk

2013-08-03 07:36 - 2013-08-03 07:36 - 00889416 _____ (Microsoft Corporation) C:\Users\ogqozo\Downloads\dotNetFx40_Full_setup.exe

2013-08-03 07:34 - 2013-08-03 07:57 - 00000000 ____D C:\Program Files\Microsoft.NET

2013-08-03 07:19 - 2009-11-25 02:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\System32\dfshim.dll

2013-08-03 07:19 - 2009-11-25 02:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\System32\mscoree.dll

2013-08-03 07:19 - 2009-11-25 02:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\System32\PresentationHost.exe

2013-08-03 07:19 - 2009-11-25 02:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\System32\PresentationHostProxy.dll

2013-08-03 07:19 - 2009-11-25 02:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\System32\netfxperf.dll

2013-08-03 07:17 - 2010-06-01 18:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_7.dll

2013-08-03 07:17 - 2010-06-01 18:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_7.dll

2013-08-03 07:17 - 2010-06-01 18:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_5.dll

2013-08-03 07:17 - 2010-05-26 01:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_43.dll

2013-08-03 07:17 - 2010-05-26 01:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_43.dll

2013-08-03 07:17 - 2010-05-26 01:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_43.dll

2013-08-03 07:17 - 2010-05-26 01:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_43.dll

2013-08-03 07:17 - 2010-05-26 01:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_43.dll

2013-08-03 07:17 - 2010-02-04 00:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_6.dll

2013-08-03 07:17 - 2010-02-04 00:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_6.dll

2013-08-03 07:17 - 2010-02-04 00:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_4.dll

2013-08-03 07:17 - 2010-02-04 00:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_7.dll

2013-08-03 07:17 - 2009-09-04 07:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll

2013-08-03 07:17 - 2009-09-04 07:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll

2013-08-03 07:17 - 2009-09-04 07:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll

2013-08-03 07:17 - 2009-09-04 07:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll

2013-08-03 07:17 - 2009-09-04 07:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll

2013-08-03 07:17 - 2009-09-04 07:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll

2013-08-03 07:17 - 2009-09-04 07:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_42.dll

2013-08-03 07:17 - 2009-09-04 07:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll

2013-08-03 07:17 - 2009-03-16 04:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_4.dll

2013-08-03 07:17 - 2009-03-16 04:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_4.dll

2013-08-03 07:17 - 2009-03-16 04:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_6.dll

2013-08-03 07:17 - 2009-03-09 05:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_41.dll

2013-08-03 07:17 - 2009-03-09 05:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_41.dll

2013-08-03 07:17 - 2009-03-09 05:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_41.dll

2013-08-03 07:17 - 2008-10-27 00:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_3.dll

2013-08-03 07:17 - 2008-10-27 00:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_3.dll

2013-08-03 07:17 - 2008-10-27 00:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_2.dll

2013-08-03 07:17 - 2008-10-27 00:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_5.dll

2013-08-03 07:17 - 2008-10-14 20:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_40.dll

2013-08-03 07:17 - 2008-10-14 20:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_40.dll

2013-08-03 07:17 - 2008-10-14 20:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_40.dll

2013-08-03 07:17 - 2008-07-31 00:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll

2013-08-03 07:17 - 2008-07-31 00:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll

2013-08-03 07:17 - 2008-05-30 04:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_1.dll

2013-08-03 07:17 - 2008-05-30 04:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_1.dll

2013-08-03 07:17 - 2008-05-30 04:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_0.dll

2013-08-03 07:17 - 2008-05-30 04:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_4.dll

2013-08-03 07:17 - 2008-05-30 04:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_38.dll

2013-08-03 07:17 - 2008-05-30 04:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_38.dll

2013-08-03 07:17 - 2008-05-30 04:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_38.dll

2013-08-03 07:17 - 2008-03-05 06:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_0.dll

2013-08-03 07:17 - 2008-03-05 06:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_0.dll

2013-08-03 07:17 - 2008-03-05 06:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_3.dll

2013-08-03 07:17 - 2008-03-05 05:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_37.dll

2013-08-03 07:17 - 2008-03-05 05:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_37.dll

2013-08-03 07:17 - 2008-02-05 13:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_37.dll

2013-08-03 07:17 - 2007-10-21 17:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_10.dll

2013-08-03 07:17 - 2007-10-21 17:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_2.dll

2013-08-03 07:17 - 2007-10-12 05:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_36.dll

2013-08-03 07:17 - 2007-10-12 05:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_36.dll

2013-08-03 07:17 - 2007-10-01 23:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_36.dll

2013-08-03 07:17 - 2007-07-19 14:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_9.dll

2013-08-03 07:17 - 2007-07-19 08:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_35.dll

2013-08-03 07:17 - 2007-07-19 08:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_35.dll

2013-08-03 07:17 - 2007-07-19 08:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_35.dll

2013-08-03 07:17 - 2007-06-20 10:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_8.dll

2013-08-03 07:17 - 2007-05-16 06:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_34.dll

2013-08-03 07:17 - 2007-05-16 06:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_34.dll

2013-08-03 07:17 - 2007-05-16 06:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_34.dll

2013-08-03 07:17 - 2007-04-04 08:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_7.dll

2013-08-03 07:17 - 2007-04-04 08:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_3.dll

2013-08-03 07:17 - 2007-03-15 06:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_33.dll

2013-08-03 07:17 - 2007-03-12 06:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_33.dll

2013-08-03 07:17 - 2007-03-12 06:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_33.dll

2013-08-03 07:17 - 2007-03-05 02:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\System32\x3daudio1_1.dll

2013-08-03 07:17 - 2007-01-24 05:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_6.dll

2013-08-03 07:17 - 2006-12-08 02:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_5.dll

2013-08-03 07:17 - 2006-11-29 03:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_32.dll

2013-08-03 07:17 - 2006-11-29 03:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10.dll

2013-08-03 07:17 - 2006-09-28 06:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_31.dll

2013-08-03 07:17 - 2006-09-28 06:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_4.dll

2013-08-03 07:17 - 2006-07-27 23:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_3.dll

2013-08-03 07:17 - 2006-07-27 23:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_2.dll

2013-08-03 07:17 - 2006-05-30 21:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_2.dll

2013-08-03 07:17 - 2006-03-31 02:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_30.dll

2013-08-03 07:17 - 2006-03-31 02:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_1.dll

2013-08-03 07:17 - 2006-03-31 02:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_1.dll

2013-08-03 07:17 - 2006-02-02 22:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_29.dll

2013-08-03 07:17 - 2006-02-02 22:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_0.dll

2013-08-03 07:17 - 2006-02-02 22:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\System32\x3daudio1_0.dll

2013-08-03 07:17 - 2005-12-05 08:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_28.dll

2013-08-03 07:17 - 2005-07-22 09:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_27.dll

2013-08-03 07:17 - 2005-05-26 05:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_26.dll

2013-08-03 07:17 - 2005-03-18 07:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_25.dll

2013-08-03 07:17 - 2005-02-05 09:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_24.dll

2013-08-03 07:00 - 2013-08-03 07:00 - 00243128 _____ (Disc Soft Ltd) C:\Windows\System32\Drivers\dtsoftbus01.sys

2013-08-03 06:56 - 2013-08-03 06:56 - 13867192 _____ (Disc Soft Ltd) C:\Users\ogqozo\Downloads\DTLite4471-0335(dobreprogramy.pl).exe

2013-07-27 21:54 - 2013-07-27 21:54 - 00000000 ____D C:\Users\ogqozo\Desktop\let_s_draw_____flying_poses___mega_pack_by_cheyenne75-d6fe7fn

==================== One Month Modified Files and Folders =======

2013-08-15 15:25 - 2013-08-15 15:25 - 00000000 ____D C:\FRST

2013-08-15 07:27 - 2011-03-30 05:36 - 00166454 _____ C:\Windows\setupact.log

2013-08-15 04:09 - 2009-07-13 20:34 - 00016160 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-08-15 04:09 - 2009-07-13 20:34 - 00016160 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-08-14 22:40 - 2006-02-12 18:25 - 01991139 _____ C:\Windows\WindowsUpdate.log

2013-08-14 10:25 - 2010-12-07 07:36 - 00710770 _____ C:\Windows\System32\PerfStringBackup.INI

2013-08-14 03:39 - 2010-12-07 11:39 - 00000000 ____D C:\Users\ogqozo\AppData\Roaming\uTorrent

2013-08-13 09:43 - 2010-12-07 09:35 - 00000000 ____D C:\Users\ogqozo\AppData\Roaming\foobar2000

2013-08-12 08:54 - 2013-06-09 23:38 - 00000000 ____D C:\Users\ogqozo\Desktop\Raporty

2013-08-11 06:08 - 2013-08-11 06:08 - 00003343 _____ C:\Users\ogqozo\Desktop\Starcraft No Install - Shortcut.lnk

2013-08-11 04:20 - 2011-07-18 01:23 - 00040216 _____ C:\Windows\PFRO.log

2013-08-11 01:42 - 2011-04-17 14:35 - 00000000 ____D C:\Users\ogqozo\AppData\Roaming\DAEMON Tools Lite

2013-08-11 01:42 - 2011-04-17 14:35 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite

2013-08-10 10:20 - 2011-12-17 12:22 - 00010742 _____ C:\Users\ogqozo\Documents\filmy 2.txt

2013-08-03 09:25 - 2009-07-13 18:37 - 00000000 ____D C:\Windows\Microsoft.NET

2013-08-03 07:57 - 2013-08-03 07:34 - 00000000 ____D C:\Program Files\Microsoft.NET

2013-08-03 07:36 - 2013-08-03 07:36 - 00889416 _____ (Microsoft Corporation) C:\Users\ogqozo\Downloads\dotNetFx40_Full_setup.exe

2013-08-03 07:00 - 2013-08-03 07:00 - 00243128 _____ (Disc Soft Ltd) C:\Windows\System32\Drivers\dtsoftbus01.sys

2013-08-03 06:56 - 2013-08-03 06:56 - 13867192 _____ (Disc Soft Ltd) C:\Users\ogqozo\Downloads\DTLite4471-0335(dobreprogramy.pl).exe

2013-07-27 21:54 - 2013-07-27 21:54 - 00000000 ____D C:\Users\ogqozo\Desktop\let_s_draw_____flying_poses___mega_pack_by_cheyenne75-d6fe7fn

==================== Known DLLs (Whitelisted) ============

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK

HKLM\...\exefile\DefaultIcon: %1 => OK

HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

==================== Memory info ===========================

Percentage of memory in use: 34%

Total physical RAM: 1014.12 MB

Available physical RAM: 666.11 MB

Total Pagefile: 1014.12 MB

Available Pagefile: 672.44 MB

Total Virtual: 2047.88 MB

Available Virtual: 1941.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:19.53 GB) (Free:4.28 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

Drive d: () (Fixed) (Total:92.25 GB) (Free:42.9 GB) NTFS

Drive f: () (Removable) (Total:3.74 GB) (Free:3.73 GB) FAT32

Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: E9C06804)

Partition 1: (Active) - (Size=20 GB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=92 GB) - (Type=OF Extended)

========================================================

Disk: 1 (Size: 4 GB) (Disk ID: 04030201)

Partition 1: (Not Active) - (Size=4 GB) - (Type=0B)

LastRegBack: 2013-08-13 04:03

==================== End Of Log ============================

Rozumiem, że nikt już nie ma pomysłu dalej?

picasso · 19 Sierpnia 2013

Ciągle to samo. Start systemu - Ukash, tryb awaryjny - restart.

W ostatnim logu z FRST nic już nie widać. Skoro nadal jest problem, jest obiekt nie objęty skanem FRST lub sytuacja się zmieniła. Poproszę o:

1. Nowy tracycyjny log z FRST z opcji Scan, gdyż minęło kilka dni.

2. Dodatkowy skan na zawartość folderu Startup. W Notatniku utwórz plik o zawartości:

Folder: C:\Users\ogqozo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Folder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

Zapisz pod nazwą fixlist.txt. Uruchom w taki sam sposób jak poprzednio. Podaj wynikowy plik fixlog.txt.

.

ogqozo · 20 Sierpnia 2013

Ok, problem jednak załatwiony, mój brat puścił sobie w międzyczasie Kaspersky Recovery Disk i po trwającym wieeele godzin skanie naprawiło i Windows działa normalnie.

picasso · 22 Sierpnia 2013

W związku z tym przejdź do Windows i zrób nowe raporty z FRST. Ma powstać też plik Addition.

Zaloguj się

Ukash, nie działa tryb poleceń

Rekomendowane odpowiedzi

ogqozo

Odnośnik do komentarza

diox

Odnośnik do komentarza

ogqozo

Odnośnik do komentarza

diox

Odnośnik do komentarza

ogqozo

Odnośnik do komentarza

diox

Odnośnik do komentarza

ogqozo

Odnośnik do komentarza

diox

Odnośnik do komentarza

ogqozo

Odnośnik do komentarza

picasso

Odnośnik do komentarza

ogqozo

Odnośnik do komentarza

picasso

Odnośnik do komentarza

Jeśli chcesz dodać odpowiedź, zaloguj się lub zarejestruj nowe konto

Zarejestruj nowe konto

Zaloguj się

Ostatnio przeglądający 0 użytkowników

Przeglądaj

Cała aktywność