Hidden Objects were found
Posty: 19
• Strona 1 z 1
-
Lucas820 - Nowicjusz
- Posty: 6
19 lis 2011, 17:18
tarting search for hidden objects.
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\System\oodefrag15.00.00.01professional
[NOTE] The registry entry is invisible.
Hidden driver
[NOTE] A memory modification has been detected, which could potentially be used to hide file access attempts.
-
Waves97 - Malware hunter
- Posty: 746
19 lis 2011, 18:27
Dodatkowo pokaż logi z OTL, RSIT oraz skan kompa : TDSS Killer oraz GMER
-
Flash999 - Specjalista
- Posty: 1142
19 lis 2011, 19:45
Drugi to ukryty sterownik - możliwe, że rootkit.
-
Waves97 - Malware hunter
- Posty: 746
19 lis 2011, 19:52
-
Lucas820 - Nowicjusz
- Posty: 6
20 lis 2011, 3:32
Starting search for hidden objects.
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\System\oodefrag15.00.00.01professional
[NOTE] The registry entry is invisible.
-
Flash999 - Specjalista
- Posty: 1142
20 lis 2011, 11:16
Ponawiam pytanie - masz zainstalowany O&O Defrag?
Logów dalej nie ma...
-
Lucas820 - Nowicjusz
- Posty: 6
20 lis 2011, 15:52
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\System\oodefrag15.00.00.01professional
[NOTE] The registry entry is invisible.
- Kod: Zaznacz cały
OTL Extras logfile created on: 20-11-2011 14:31:22 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Lucas\Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000413 | Country: Holandia | Language: NLD | Date Format: d-M-yyyy
3,00 Gb Total Physical Memory | 1,94 Gb Available Physical Memory | 64,78% Memory free
5,99 Gb Paging File | 4,82 Gb Available in Paging File | 80,41% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 288,32 Gb Total Space | 203,98 Gb Free Space | 70,75% Space Free | Partition Type: NTFS
Computer Name: LUCAS-PC | User Name: Lucas | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[color=#E56717]========== Firewall Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[color=#E56717]========== Authorized Applications List ==========[/color]
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{015C5B35-B678-451C-9AEE-821E8D69621C}_is1" = PeerBlock 1.1 (r518)
"{0654EA5D-308A-4196-882B-5C09744A5D81}" = Windows Live Photo Common
"{06A1D88C-E102-4527-AF70-29FFD7AF215A}" = Scan
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0C1931EB-8339-4837-8BEC-75029BF42734}" = Windows Live UX Platform Language Pack
"{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation(R)Store
"{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}" = DeviceDiscovery
"{14B441B7-774D-4170-98EA-A13667AE6218}" = Windows Live Writer Resources
"{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}" = HPProductAssistant
"{167A1F6A-9BF2-4B24-83DB-C6D659F680EA}" = Media Go
"{1B0FBB9A-995D-47cd-87CD-13E68B676E4F}" = Mass Effect
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java(TM) 6 Update 26
"{26E3C07C-7FF7-4362-9E99-9E49E383CF16}" = Windows Live Writer Resources
"{292F0F52-B62D-4E71-921B-89A682402201}" = Toolbox
"{29ED20C9-5E15-4969-9279-25BF3727A3DA}" = iTunes
"{2A07C35B-8384-4DA4-9A95-442B6C89A073}" = Windows Live Essentials
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2FB9EA69-51D4-4913-9AD5-762C034DE811}" = Status
"{34EF7358-ABC7-8469-5FB6-C5C0146F099E}" = Media Go Video Playback Engine 1.84.107.07010
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{48294D95-EE9A-4377-8213-44FC4265FB27}" = Windows Live Messenger
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5546F4E9-B0F4-4F54-B949-2AB006C9284F}" = DJ_AIO_06_F2400_SW_Min
"{55FD1D5A-7AEF-4DA3-8FAF-A71B2A52FFC7}_is1" = iolo technologies' System Mechanic
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5DCF0E4B-F8EA-4229-A0BD-5CA6D4AFB749}" = SolutionCenter
"{64376910-1860-4CEF-8B34-AA5D205FC5F1}" = Poczta usługi Windows Live
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6DBB66CD-38C7-472C-BBB9-06BFDA182A29}" = F2400
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74DC0593-6BC6-4001-AD5F-D810AFB68D86}" = HP Update
"{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}" = Mass Effect 2
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7A9D47BA-6D50-4087-866F-0800D8B89383}" = Podstawowe programy Windows Live
"{7B6CCF96-6F2B-48AF-AA6A-A83267AFE8AD}" = Oefenexamens inburgering Elektronisch Praktijkexamen Werk A2
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{819CA3BC-2FF8-4811-B42F-421F7BFD3559}" = HP Deskjet F2400 All-in-One Driver Software 14.0 Rel. 6
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}" = HPDiagnosticAlert
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8EE94FD8-5F52-4463-A340-185D16328158}" = WebReg
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{90850413-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{934EEB3B-2EF5-7561-A806-0C08EB87AB12}" = ATI Catalyst Install Manager
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BD262D0-B788-4546-A0A5-F4F56EC3834B}" = Windows Live Photo Common
"{9BE466FF-70B7-4DA8-807C-DB4C3610FDAA}" = Copy
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9E0F1FA9-771E-4E6F-81EB-BDA8662AF971}" = Diskeeper 2011
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{A00B9A50-3090-4CFF-9CDA-82DA0BEDAA21}" = Apple Mobile Device Support
"{A80FA752-C491-4ED9-ABF0-4278563160B2}" = 32 Bit HP CIO Components Installer
"{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}" = PlayStation(R)Network Downloader
"{BB3447F6-9553-4AA9-960E-0DB5310C5779}" = GPBaseService2
"{BC30E5E7-047D-4232-A7E8-F2CB7CC7B2E0}_is1" = Emsisoft Anti-Malware
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CD31E63D-47FD-491C-8117-CF201D0AFAB5}" = TrayApp
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D588365A-AE39-4F27-BDAE-B4E72C8E900C}" = Windows Live Mail
"{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}" = Windows Live UX Platform Language Pack
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E9AD2143-26D5-4201-BED1-19DCC03B407D}" = Windows Live Messenger
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 2.01.217
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F47BEA79-07F3-5602-76B4-B9B9042269A1}" = Catalyst Control Center InstallProxy
"{FA0FF682-CC70-4C57-93CD-E276F3E7537E}" = BufferChm
"{FD8E178D-8B4E-42DA-B434-EFF270329B1C}" = COMODO Internet Security
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"284D9B4A58796481EC5A61D01DCC5E654761629C" = ENE CIR Receiver Driver
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AQQ" = WapSter AQQ
"Ashampoo Burning Studio 2010 Advanced_is1" = Ashampoo Burning Studio 2010 Advanced 9.25
"Avira AntiVir Desktop" = Avira Internet Security 2012
"CCleaner" = CCleaner
"CZATeriaKam" = CZATeriaKam 2.6.4
"eMule" = eMule
"Foxit Reader_is1" = Foxit Reader 5.1
"Free M4a to MP3 Converter_is1" = Free M4a to MP3 Converter 7.0
"HP Imaging Device Functions" = HP Imaging Device Functions 14.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center 14.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware wersja 1.51.2.1300
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"SpywareBlaster_is1" = SpywareBlaster 4.4
"SuperMp3Download" = Super Mp3 Download
"TomTom HOME" = TomTom HOME 2.8.2.2264
"Trojan Remover_is1" = Trojan Remover 6.8.2
"uTorrent" = µTorrent
"Windows 7 - Codec Pack" = Windows 7 Codec Pack 3.3.0
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR 4.00 (32-bit)
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
[HKEY_USERS\S-1-5-21-3366484147-1993600042-1058738830-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
[ Application Events ]
Error - 16-11-2011 18:35:44 | Computer Name = Lucas-PC | Source = Application Error | ID = 1000
Description = Naam van toepassing met fout: MassEffect2.exe, versie: 1.0.1593.2,
tijdstempel: 0x4b2845cd Naam van module met fout: MassEffect2.exe, versie: 1.0.1593.2,
tijdstempel: 0x4b2845cd Uitzonderingscode: 0x80000003 Foutoffset: 0x00548113 Id van
proces met fout: 0xa58 Starttijd van toepassing met fout: 0x01cca4af9a76c248 Pad
naar toepassing met fout: C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe
Pad
naar module met fout: C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe Rapport-id:
51eb932d-10a3-11e1-90ce-9497395e5da1
Error - 16-11-2011 18:40:56 | Computer Name = Lucas-PC | Source = Application Error | ID = 1000
Description = Naam van toepassing met fout: MassEffect2.exe, versie: 1.0.1593.2,
tijdstempel: 0x4b2845cd Naam van module met fout: MassEffect2.exe, versie: 1.0.1593.2,
tijdstempel: 0x4b2845cd Uitzonderingscode: 0xc0000005 Foutoffset: 0x005055e2 Id van
proces met fout: 0x888 Starttijd van toepassing met fout: 0x01cca4b0303e6596 Pad
naar toepassing met fout: C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe
Pad
naar module met fout: C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe Rapport-id:
0bc94219-10a4-11e1-90ce-9497395e5da1
Error - 16-11-2011 18:45:46 | Computer Name = Lucas-PC | Source = Application Error | ID = 1000
Description = Naam van toepassing met fout: MassEffect2.exe, versie: 1.0.1593.2,
tijdstempel: 0x4b2845cd Naam van module met fout: MassEffect2.exe, versie: 1.0.1593.2,
tijdstempel: 0x4b2845cd Uitzonderingscode: 0xc0000005 Foutoffset: 0x005055e2 Id van
proces met fout: 0x11f0 Starttijd van toepassing met fout: 0x01cca4b1524323c5 Pad
naar toepassing met fout: C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe
Pad
naar module met fout: C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe Rapport-id:
b8851896-10a4-11e1-90ce-9497395e5da1
Error - 16-11-2011 18:47:16 | Computer Name = Lucas-PC | Source = Application Error | ID = 1000
Description = Naam van toepassing met fout: MassEffect2.exe, versie: 1.0.1593.2,
tijdstempel: 0x4b2845cd Naam van module met fout: MassEffect2.exe, versie: 1.0.1593.2,
tijdstempel: 0x4b2845cd Uitzonderingscode: 0xc0000005 Foutoffset: 0x005055e2 Id van
proces met fout: 0xcc4 Starttijd van toepassing met fout: 0x01cca4b186dad947 Pad
naar toepassing met fout: C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe
Pad
naar module met fout: C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe Rapport-id:
ee763804-10a4-11e1-90ce-9497395e5da1
Error - 16-11-2011 18:47:21 | Computer Name = Lucas-PC | Source = Application Error | ID = 1000
Description = Naam van toepassing met fout: MassEffect2.exe, versie: 1.0.1593.2,
tijdstempel: 0x4b2845cd Naam van module met fout: ntdll.dll, versie: 6.1.7601.17514,
tijdstempel: 0x4ce7b96e Uitzonderingscode: 0xc0000005 Foutoffset: 0x000477b2 Id van
proces met fout: 0xcc4 Starttijd van toepassing met fout: 0x01cca4b186dad947 Pad
naar toepassing met fout: C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe
Pad
naar module met fout: C:\Windows\SYSTEM32\ntdll.dll Rapport-id: f122c46a-10a4-11e1-90ce-9497395e5da1
Error - 16-11-2011 19:40:48 | Computer Name = Lucas-PC | Source = Application Error | ID = 1000
Description = Naam van toepassing met fout: MassEffect2.exe, versie: 1.2.1604.0,
tijdstempel: 0x4bd60ba2 Naam van module met fout: MassEffect2.exe, versie: 1.2.1604.0,
tijdstempel: 0x4bd60ba2 Uitzonderingscode: 0xc0000005 Foutoffset: 0x000005c2 Id van
proces met fout: 0x10e0 Starttijd van toepassing met fout: 0x01cca4b8f91ebc7c Pad
naar toepassing met fout: C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe
Pad
naar module met fout: C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe Rapport-id:
68afd20c-10ac-11e1-90ce-9497395e5da1
Error - 16-11-2011 22:06:34 | Computer Name = Lucas-PC | Source = SideBySide | ID = 16842815
Description = Kan activeringscontext voor 'c:\program files\WapSter\wapster aqq\System\DelZip179.dll'
niet maken. Fout in manifest of beleidsbestand 'c:\program files\WapSter\wapster
aqq\System\DelZip179.dll' op regel 8. De waarde * van kenmerk language in element
assemblyIdentity is ongeldig.
Error - 16-11-2011 22:07:38 | Computer Name = Lucas-PC | Source = SideBySide | ID = 16842785
Description = Kan activeringscontext voor 'c:\program files\sony ericsson\sony ericsson
pc companion\Drivers\DPInst64.exe' niet maken. Kan afhankelijke assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose.
Error - 19-11-2011 11:37:49 | Computer Name = Lucas-PC | Source = SideBySide | ID = 16842815
Description = Kan activeringscontext voor 'c:\program files\WapSter\wapster aqq\System\DelZip179.dll'
niet maken. Fout in manifest of beleidsbestand 'c:\program files\WapSter\wapster
aqq\System\DelZip179.dll' op regel 8. De waarde * van kenmerk language in element
assemblyIdentity is ongeldig.
Error - 19-11-2011 11:39:04 | Computer Name = Lucas-PC | Source = SideBySide | ID = 16842785
Description = Kan activeringscontext voor 'c:\program files\sony ericsson\sony ericsson
pc companion\Drivers\DPInst64.exe' niet maken. Kan afhankelijke assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose.
[ System Events ]
Error - 19-11-2011 21:25:32 | Computer Name = Lucas-PC | Source = Service Control Manager | ID = 7000
Description = De UPnP Device Host-service kan vanwege de volgende fout niet worden
gestart: %%1069
Error - 19-11-2011 21:25:32 | Computer Name = Lucas-PC | Source = Service Control Manager | ID = 7038
Description = De wscsvc-service kan niet als NT AUTHORITY\LocalService met het huidig
ingestelde wachtwoord worden aangemeld vanwege de volgende fout: %%50 Gebruik de
module Services in de Microsoft Management Console (MMC) om te controleren of de
service juist is geconfigureerd.
Error - 19-11-2011 21:25:32 | Computer Name = Lucas-PC | Source = Service Control Manager | ID = 7000
Description = De Centrum zabezpieczen-service kan vanwege de volgende fout niet
worden gestart: %%1069
Error - 19-11-2011 21:25:37 | Computer Name = Lucas-PC | Source = Service Control Manager | ID = 7023
Description = De Windows Update-service is gestopt met de volgende foutcode: %%-2147467243.
Error - 19-11-2011 21:26:06 | Computer Name = Lucas-PC | Source = atikmdag | ID = 52236
Description =
Error - 19-11-2011 21:26:06 | Computer Name = Lucas-PC | Source = atikmdag | ID = 43029
Description =
Error - 19-11-2011 21:36:09 | Computer Name = Lucas-PC | Source = atikmdag | ID = 52236
Description =
Error - 19-11-2011 21:36:09 | Computer Name = Lucas-PC | Source = atikmdag | ID = 43029
Description =
Error - 20-11-2011 9:23:09 | Computer Name = Lucas-PC | Source = atikmdag | ID = 52236
Description =
Error - 20-11-2011 9:23:09 | Computer Name = Lucas-PC | Source = atikmdag | ID = 43029
Description =
< End of report >
Drugiego załącznika nie umiem dać bo pisze iż nie mogę wstawić z rozszerzeniem txt i za dużo znaków ma
-
Waves97 - Malware hunter
- Posty: 746
20 lis 2011, 16:42
Wrzuć to jak każdego loga na www.wklej.org
-
Lucas820 - Nowicjusz
- Posty: 6
20 lis 2011, 21:36
http://www.sendspace.pl/file/5fe98212d67a7f42b0706f1 log otl
http://www.sendspace.pl/file/1621f426e77c6821e48a88b extras
-
Waves97 - Malware hunter
- Posty: 746
21 lis 2011, 18:29
-
Lucas820 - Nowicjusz
- Posty: 6
21 lis 2011, 20:58
http://www.wklej.org/id/632012/ extras
http://www.wklej.org/id/632071/ gmer log
-
Waves97 - Malware hunter
- Posty: 746
21 lis 2011, 22:51
Dodatkowo widzę jakieś trainery do gier . Tak?
-
Flash999 - Specjalista
- Posty: 1142
21 lis 2011, 22:56
-
Waves97 - Malware hunter
- Posty: 746
22 lis 2011, 8:38
-
Lucas820 - Nowicjusz
- Posty: 6
22 lis 2011, 17:18
-
Flash999 - Specjalista
- Posty: 1142
22 lis 2011, 17:53
Czegoś jeszcze nie rozumiem.
Masz Comodo Firewall i Avire, ale jako sam AV?
W logach czysto, pomijając nielegalny system i bawienie się trainerami.
Uruchom OTL -> Sprzątanie
-
Borzuck - Użytkownik
- Posty: 552
22 lis 2011, 18:11
-
Waves97 - Malware hunter
- Posty: 746
22 lis 2011, 19:46
-
Flash999 - Specjalista
- Posty: 1142
22 lis 2011, 19:59
Posty: 19
• Strona 1 z 1
Wróć do Pomoc po zainfekowaniu
Kto jest online
Użytkownicy przeglądający ten temat: Obecnie na forum nie ma żadnego zarejestrowanego użytkownika i 1 gość