Problem z dostępem do komputera!

Witam!
Mam pewien problem. pewnego dnia jak zwykle uruchomiłem komputer. Chciałem usunąć grę w którą juz nie gram, w Dodaj/Usuń programy. włączając Mój komputer nie mam dostępu do Panelu sterowania. Nawet tapety nie mogę zmnienic bo gdy klikam prawym przyciskiem na pulpist to wyskakuje mi komunikat ze nie moge uruchomic wlasciwosci ponieważ nie mam praw do tego i musze sie skontaktowac z administratorem komputera. na komputerze jest tylko jedno konto uzytkownika na którym dotychczas moglem ingerowac w system. Proszę o pomoc poniewaz nic nie mogę z tym zrobić.

Sprawdź komputer pod kątem wirusów, trojanów, spyware itp.

Podaj log z programu HijcakThis i Silent Runners

Przeskanowałem kompa Avastem i wykryło mi kilka trojanów, usunąłem je i nadal to samo. A moglbys powiedziec jak podać ten log z programu HijcakThis i Silent Runners?? Bo jestem noobkiem i nie wiem o co chodzi:((

/index.php?showtopic=5073

/index.php?showtopic=5072

HijcakThis:Logfile of HijackThis v1.99.1Scan saved at 16:22:03, on 2007-09-19Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:I:\WINDOWS\System32\smss.exeI:\WINDOWS\system32\winlogon.exeI:\WINDOWS\system32\services.exeI:\WINDOWS\system32\lsass.exeI:\WINDOWS\system32\svchost.exeI:\WINDOWS\System32\svchost.exeI:\WINDOWS\system32\svchost.exeI:\Program Files\Common Files\Symantec Shared\ccSvcHst.exeI:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exeI:\Program Files\Avast4\aswUpdSv.exeI:\Program Files\Avast4\ashServ.exeI:\WINDOWS\Explorer.EXEI:\WINDOWS\system32\spoolsv.exeI:\Program Files\VDOTool\TBPanel.exeI:\Program Files\Java\jre1.5.0_11\bin\jusched.exeI:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exeI:\DOCUME~1\DITTMA~1\MOJEDO~1\DOKUME~2\NOKIAP~1\LAUNCH~1.EXEI:\Program Files\Picasa2\PicasaMediaDetector.exeI:\Program Files\Internet Explorer\Setup\svchost.exeI:\PROGRA~1\Avast4\ashDisp.exeI:\Program Files\Common Files\Symantec Shared\ccApp.exeI:\WINDOWS\system32\ctfmon.exeI:\Documents and Settings\Dittmajerki\Moje dokumenty\Dokumenty Gosi\Nokia PC Suite 6\PcSync2.exeI:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeI:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exeI:\PROGRA~1\COMMON~1\Nokia\MPAPI\MPAPI3s.exeI:\WINDOWS\system32\nvsvc32.exeI:\Program Files\Avast4\ashMaiSv.exeI:\Program Files\Avast4\ashWebSv.exeI:\WINDOWS\system32\svchost.exeI:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exeI:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exeI:\Program Files\Internet Explorer\IEXPLORE.EXEI:\Program Files\Java\jre1.5.0_11\bin\jucheck.exeI:\Documents and Settings\Dittmajerki\Pulpit\Gadu-gadu,Skype\Gadu-Gadu\gg.exeI:\Program Files\Skype\Phone\Skype.exeI:\Program Files\Skype\Plugin Manager\SkypePM.exeI:\WINDOWS\System32\WScript.exeI:\WINDOWS\System32\WScript.exeI:\Program Files\Internet Explorer\iexplore.exeI:\Documents and Settings\Dittmajerki\Pulpit\cs\winRAR polski\WinRAR.exeI:\DOCUME~1\DITTMA~1\USTAWI~1\Temp\Rar$EX00.844\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssbR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = ŁączaR3 - URLSearchHook: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - I:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll (file missing)O2 - BHO: IEHlprObj Class - {ABCDECF0-4B15-11D1-ABED-709549C10000} - I:\WINDOWS\system32\vtr.dll (file missing)O3 - Toolbar: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - I:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll (file missing)O3 - Toolbar: AOL Security Toolbar - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - I:\Program Files\AOL Security Toolbar\AOL_security_toolbar.dllO3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - I:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLLO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - i:\program files\google\googletoolbar2.dllO4 - HKLM\..\Run: [Gainward] I:\Program Files\VDOTool\TBPanel.exe /AO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE I:\WINDOWS\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [nwiz] nwiz.exe /installO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE I:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [NeroFilterCheck] I:\WINDOWS\system32\NeroCheck.exeO4 - HKLM\..\Run: [QuickTime Task] "I:\Program Files\QuickTime\qttask.exe" -atboottimeO4 - HKLM\..\Run: [SunJavaUpdateSched] "I:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"O4 - HKLM\..\Run: [Adobe Photo Downloader] "I:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"O4 - HKLM\..\Run: [PCSuiteTrayApplication] I:\DOCUME~1\DITTMA~1\MOJEDO~1\DOKUME~2\NOKIAP~1\LAUNCH~1.EXE -startupO4 - HKLM\..\Run: [Picasa Media Detector] I:\Program Files\Picasa2\PicasaMediaDetector.exeO4 - HKLM\..\Run: [svchost] I:\Program Files\Internet Explorer\Setup\svchost.exeO4 - HKLM\..\Run: [avast!] I:\PROGRA~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [ccApp] "I:\Program Files\Common Files\Symantec Shared\ccApp.exe"O4 - HKLM\..\Run: [osCheck] "I:\Program Files\Norton AntiVirus\osCheck.exe"O4 - HKLM\..\Run: [NAV CfgWiz] "I:\Program Files\Common Files\Symantec Shared\OPC\{31011D49-D90C-4da0-878B-78D28AD507AF}\CfgWiz.exe" /GUID {BC8D3EAF-F864-4d4b-AB4D-B3D0C32E2840} /MODE CfgWiz /CMDLINE "REBOOT"O4 - HKLM\..\Run: [Symantec PIF AlertEng] "I:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "I:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -kO4 - HKCU\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [PcSync] I:\Documents and Settings\Dittmajerki\Moje dokumenty\Dokumenty Gosi\Nokia PC Suite 6\PcSync2.exe /NoDialogO4 - HKCU\..\Run: [NBJ] "I:\Program Files\Ahead\Nero BackItUp\NBJ.exe"O4 - HKCU\..\Run: [swg] I:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeO4 - Global Startup: Adobe Reader Speed Launch.lnk = I:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exeO7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://I:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - I:\Program Files\Java\jre1.5.0_11\bin\ssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - I:\Program Files\Java\jre1.5.0_11\bin\ssv.dllO9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - I:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllO9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - I:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLLO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Program Files\Messenger\msmsgs.exeO16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://margot-glodzilla.spaces.live.com//P...ad/MsnPUpld.cabO16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://margot-glodzilla.spaces.live.com/Ph...ad/MsnPUpld.cabO16 - DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C5} (GameDesire Snooker) - http://67.15.101.3/g_bin/pl/snooker_2_0_0_28.cabO18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - I:\PROGRA~1\MSNMES~1\MSGRAP~1.DLLO18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - I:\PROGRA~1\MSNMES~1\MSGRAP~1.DLLO18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - I:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLLO20 - Winlogon Notify: klogon - I:\WINDOWS\system32\klogon.dllO20 - Winlogon Notify: WgaLogon - I:\WINDOWS\SYSTEM32\WgaLogon.dllO21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - I:\WINDOWS\system32\WPDShServiceObj.dllO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - I:\Program Files\Avast4\aswUpdSv.exeO23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - I:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exeO23 - Service: avast! Antivirus - ALWIL Software - I:\Program Files\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - I:\Program Files\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - I:\Program Files\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: Active Virus Shield (AVP) - Unknown owner - I:\Program Files\AOL\Active Virus Shield\avp.exe" -r (file missing)O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - I:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - I:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - I:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)O23 - Service: Google Updater Service (gusvc) - Google - I:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - I:\Program Files\Norton AntiVirus\isPwdSvc.exeO23 - Service: LiveUpdate - Symantec Corporation - I:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXEO23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - I:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)O23 - Service: LiveUpdate Notice Service - Unknown owner - I:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /m "I:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifEng.dll (file missing)O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - I:\WINDOWS\system32\nvsvc32.exeO23 - Service: ServiceLayer - Nokia. - I:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exeO23 - Service: Symantec Core LC - Symantec Corporation - I:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exeO23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - I:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exeSilent Runners:"Silent Runners.vbs", revision 52, http://www.silentrunners.org/Operating System: Windows XP SP2Output limited to non-default values, except where indicated by "{++}"Startup items buried in registry:---------------------------------HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++}"CTFMON.EXE" = "I:\WINDOWS\system32\ctfmon.exe" [MS]"PcSync" = "I:\Documents and Settings\Dittmajerki\Moje dokumenty\Dokumenty Gosi\Nokia PC Suite 6\PcSync2.exe /NoDialog" ["Time Information Services Ltd."]"NBJ" = ""I:\Program Files\Ahead\Nero BackItUp\NBJ.exe"" ["Ahead Software AG"]"swg" = "I:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" ["Google Inc."]HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ {++}"Gainward" = "I:\Program Files\VDOTool\TBPanel.exe /A" ["Palit Microsystems, Inc."]"NvCplDaemon" = "RUNDLL32.EXE I:\WINDOWS\system32\NvCpl.dll,NvStartup" [MS]"nwiz" = "nwiz.exe /install" ["NVIDIA Corporation"]"NvMediaCenter" = "RUNDLL32.EXE I:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit" [MS]"NeroFilterCheck" = "I:\WINDOWS\system32\NeroCheck.exe" ["Ahead Software Gmbh"]"(Default)" = "(empty string)" [file not found]"QuickTime Task" = ""I:\Program Files\QuickTime\qttask.exe" -atboottime" ["Apple Computer, Inc."]"SunJavaUpdateSched" = ""I:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"" ["Sun Microsystems, Inc."]"Adobe Photo Downloader" = ""I:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"" ["Adobe Systems Incorporated"]"PCSuiteTrayApplication" = "I:\DOCUME~1\DITTMA~1\MOJEDO~1\DOKUME~2\NOKIAP~1\LAUNCH~1.EXE -startup" ["Nokia"]"Picasa Media Detector" = "I:\Program Files\Picasa2\PicasaMediaDetector.exe" ["Google Inc."]"svchost" = "I:\Program Files\Internet Explorer\Setup\svchost.exe" [null data]"avast!" = "I:\PROGRA~1\Avast4\ashDisp.exe" ["ALWIL Software"]"ccApp" = ""I:\Program Files\Common Files\Symantec Shared\ccApp.exe"" ["Symantec Corporation"]"osCheck" = ""I:\Program Files\Norton AntiVirus\osCheck.exe"" ["Symantec Corporation"]"NAV CfgWiz" = ""I:\Program Files\Common Files\Symantec Shared\OPC\{31011D49-D90C-4da0-878B-78D28AD507AF}\CfgWiz.exe" /GUID {BC8D3EAF-F864-4d4b-AB4D-B3D0C32E2840} /MODE CfgWiz /CMDLINE "REBOOT"" ["Symantec Corporation"]"Symantec PIF AlertEng" = ""I:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "I:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"" ["Symantec Corporation"]"KernelFaultCheck" = "I:\WINDOWS\system32\dumprep 0 -k"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ABCDECF0-4B15-11D1-ABED-709549C10000}\(Default) = (no title provided) -> {HKLM...CLSID} = "IEHlprObj Class" \InProcServer32\(Default) = "I:\WINDOWS\system32\vtr.dll" [file not found]HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\"{00020D75-0000-0000-C000-000000000046}" = "Microsoft Office Outlook Desktop Icon Handler" -> {HKLM...CLSID} = "Microsoft Office Outlook" \InProcServer32\(Default) = "I:\PROGRA~1\MICROS~2\OFFICE11\MLSHEXT.DLL" [MS]"{0006F045-0000-0000-C000-000000000046}" = "Microsoft Office Outlook Custom Icon Handler" -> {HKLM...CLSID} = "Rozszerzenie ikon plików programu Outlook" \InProcServer32\(Default) = "I:\PROGRA~1\MICROS~2\OFFICE11\OLKFSTUB.DLL" [MS]"{42042206-2D85-11D3-8CFF-005004838597}" = "Microsoft Office HTML Icon Handler" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "I:\Program Files\Microsoft Office\OFFICE11\msohev.dll" [MS]"{416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A}" = "PhoneBrowser" -> {HKLM...CLSID} = "Nokia Phone Browser" \InProcServer32\(Default) = "I:\Documents and Settings\Dittmajerki\Moje dokumenty\Dokumenty Gosi\Nokia PC Suite 6\PhoneBrowser.dll" ["Nokia"]"{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "I:\Documents and Settings\Dittmajerki\Pulpit\cs\winRAR polski\rarext.dll" [null data]"{453D1B6D-BD6A-4FA1-B876-9E4DD848D434}" = "AQQ File Transfer Shell Extension" -> {HKLM...CLSID} = "AQQ File Transfer Shell Extension" \InProcServer32\(Default) = "I:\PROGRA~1\WapSter\AQQ\System\AQQSHE~1.DLL" [null data]"{FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D}" = "Messenger Sharing Folders" -> {HKLM...CLSID} = "Moje foldery udostępniania" \InProcServer32\(Default) = "I:\Program Files\MSN Messenger\fsshext.8.1.0178.00.dll" [MS]"{472083B0-C522-11CF-8763-00608CC02F24}" = "avast" -> {HKLM...CLSID} = "avast" \InProcServer32\(Default) = "I:\Program Files\Avast4\ashShell.dll" ["ALWIL Software"]HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\"WPDShServiceObj" = "{AAA288BA-9A4C-45B0-95D7-94D524869DB5}" -> {HKLM...CLSID} = "WPDShServiceObj Class" \InProcServer32\(Default) = "I:\WINDOWS\system32\WPDShServiceObj.dll" [MS]HKLM\System\CurrentControlSet\Control\Session Manager\<<!>> "BootExecute" = "autocheck autochk *"|"stera" [file not found]HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\<<!>> klogon\DLLName = "I:\WINDOWS\system32\klogon.dll" ["Kaspersky Lab"]HKLM\Software\Classes\PROTOCOLS\Filter\<<!>> text/xml\CLSID = "{807553E5-5146-11D5-A672-00B0D022E945}" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "I:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL" [MS]HKLM\Software\Classes\Folder\shellex\ColumnHandlers\{7D4D6379-F301-4311-BEBA-E26EB0561882}\(Default) = "NeroDigitalExt.NeroDigitalColumnHandler" -> {HKLM...CLSID} = "NeroDigitalColumnHandler Class" \InProcServer32\(Default) = "I:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll" ["Nero AG"]{F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = "PDF Column Info" -> {HKLM...CLSID} = "PDF Shell Extension" \InProcServer32\(Default) = "I:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll" ["Adobe Systems, Inc."]HKLM\Software\Classes\*\shellex\ContextMenuHandlers\AQQFileTransfer\(Default) = "{453D1B6D-BD6A-4FA1-B876-9E4DD848D434}" -> {HKLM...CLSID} = "AQQ File Transfer Shell Extension" \InProcServer32\(Default) = "I:\PROGRA~1\WapSter\AQQ\System\AQQSHE~1.DLL" [null data]avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}" -> {HKLM...CLSID} = "avast" \InProcServer32\(Default) = "I:\Program Files\Avast4\ashShell.dll" ["ALWIL Software"]Kaspersky Anti-Virus\(Default) = "{dd230880-495a-11d1-b064-008048ec2fc5}" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "I:\Program Files\AOL\Active Virus Shield\shellex.dll" ["Kaspersky Lab"]Symantec.Norton.Antivirus.IEContextMenu\(Default) = "{FAD61B3D-699D-49B2-BE16-7F82CB4C59CA}" -> {HKLM...CLSID} = "IEContextMenu Class" \InProcServer32\(Default) = "I:\PROGRA~1\NORTON~1\NavShExt.dll" ["Symantec Corporation"]WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "I:\Documents and Settings\Dittmajerki\Pulpit\cs\winRAR polski\rarext.dll" [null data]HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "I:\Documents and Settings\Dittmajerki\Pulpit\cs\winRAR polski\rarext.dll" [null data]HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}" -> {HKLM...CLSID} = "avast" \InProcServer32\(Default) = "I:\Program Files\Avast4\ashShell.dll" ["ALWIL Software"]Kaspersky Anti-Virus\(Default) = "{dd230880-495a-11d1-b064-008048ec2fc5}" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "I:\Program Files\AOL\Active Virus Shield\shellex.dll" ["Kaspersky Lab"]Symantec.Norton.Antivirus.IEContextMenu\(Default) = "{FAD61B3D-699D-49B2-BE16-7F82CB4C59CA}" -> {HKLM...CLSID} = "IEContextMenu Class" \InProcServer32\(Default) = "I:\PROGRA~1\NORTON~1\NavShExt.dll" ["Symantec Corporation"]WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "I:\Documents and Settings\Dittmajerki\Pulpit\cs\winRAR polski\rarext.dll" [null data]Group Policies {policy setting}:--------------------------------Note: detected settings may not have any effect.HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\"NoControlPanel" = (REG_DWORD) hex:0x00000001{unrecognized setting}"NoWindowsUpdate" = (REG_DWORD) hex:0x00000001{Remove links and access to Windows Update}HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\"shutdownwithoutlogon" = (REG_DWORD) hex:0x00000001{Shutdown: Allow system to be shut down without having to log on}"undockwithoutlogon" = (REG_DWORD) hex:0x00000001{Devices: Allow undock without having to log on}"DisableRegistryTools" = (REG_DWORD) hex:0x00000001{unrecognized setting}"DisableTaskMgr" = (REG_DWORD) hex:0x00000001{unrecognized setting}Active Desktop and Wallpaper:-----------------------------Active Desktop may be disabled at this entry:HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellStateDisplayed if Active Desktop enabled and wallpaper not set by Group Policy:HKCU\Software\Microsoft\Internet Explorer\Desktop\General\"Wallpaper" = "I:\WINDOWS\system32\config\systemprofile\Pulpit\Pulpit bzdury\Bez tytułu.bmp"Displayed if Active Desktop disabled and wallpaper not set by Group Policy:HKCU\Control Panel\Desktop\"Wallpaper" = "I:\Documents and Settings\Dittmajerki\Dane aplikacji\Microsoft\Internet Explorer\Tapeta programu Internet Explorer.bmp"Enabled Screen Saver:---------------------HKCU\Control Panel\Desktop\"SCRNSAVE.EXE" = "I:\WINDOWS\system32\logon.scr" [MS]I co dalej mam zrobić z tymi logami??troche to nieczytelne moze wrzuce pliki na rapida i podam link??http://rapidshare.com/files/56791947/logi.rar.htmlto są te logi

Wrzuć na http://wklej.org/

http://wklej.org/id/7db04fd2b8I co mam dalej zrobic??

http://wklej.org/id/7db04fd2b8

Chodziło mi dokładnie o to żeby log wrzucić na wklej.org a nie link do rapida. No ale już nieważne.

----

I:\Program Files\Internet Explorer\Setup\svchost.exe

Plik razem z folderem na czerwono idzie do kasacji w trybie awaryjnym.

I:\Program Files\Internet Explorer\Setup\svchost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb
R3 - URLSearchHook: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - I:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll (file missing)
O2 - BHO: IEHlprObj Class - {ABCDECF0-4B15-11D1-ABED-709549C10000} - I:\WINDOWS\system32\vtr.dll (file missing)
O3 - Toolbar: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - I:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll (file missing)
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - I:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL
O4 - HKLM\..\Run: [svchost] I:\Program Files\Internet Explorer\Setup\svchost.exe
O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1

Te wpisy: fix w HjT.

Potem otwórz notatnik i wklej w nim to:

Windows Registry Editor Version 5.00 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 
"NoControlPanel"=dword:00000000 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableRegistryTools"=dword:00000000 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=dword:00000000

Plik -> zapisz jako -> zmień rozszerzenie na wszystkie pliki -> zapisz pod nazwą FIX.REG i uruchom plik.

To na razie na tyle, resztą niech sie najlepiej zajmie specjalista od Bezpieczeństwa, czyli Maciej13
Po pracy pokaż nowe logi.