fail utworzono 12 września 2009 utworzono 12 września 2009 Witam, zwracam się do was z proźbą o pomoc. Jakieś 20 minut temu ściągnąłem sobie pewien plik i mimo ostrzeżeń avasta o istniejącym zagrożeniu, włączyłem go. Eh moja głupota... Wyskoczył komunikat że program nie działa czy coś takiego i kompa szlag trafił (zaciął się) dałem reset, wszystko niby gra tak jak bylo ale po kilku minutach wyskakuje mi blue screen z informacją, że pamięć fizyczna zostaje zżucona czy coś takiego, nie zdążyłem przeczytać, po tym komputer się resetuje. Tutaj daje logi: OTL Log do sprawdzenia OTL logfile created on: 2009-09-12 10:13:07 - Run 1OTL by OldTimer - Version 3.0.10.7 Folder = C:\Documents and Settings\USER\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1023.48 Mb Total Physical Memory | 587.48 Mb Available Physical Memory | 57.40% Memory free 2.40 Gb Paging File | 2.00 Gb Available in Paging File | 83.04% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 77.62 Gb Total Space | 9.38 Gb Free Space | 12.09% Space Free | Partition Type: NTFS Drive D: | 77.62 Gb Total Space | 73.20 Gb Free Space | 94.30% Space Free | Partition Type: NTFS Drive E: | 77.63 Gb Total Space | 29.08 Gb Free Space | 37.46% Space Free | Partition Type: NTFS Drive F: | 4.18 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: CE0B7A3CB5254D2 Current User Name: USER Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard ========== Processes (SafeList) ========== PRC - [2008-11-26 19:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe PRC - [2008-11-26 19:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe PRC - [2008-04-14 23:51:18 | 01,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE PRC - [2009-06-20 12:27:54 | 00,615,176 | ---- | M] (http://www.google.com/ie'>http://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.selectedEngine: "DAEMON Search" FF - prefs.js..browser.startup.homepage: "google.pl" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}:6.0.06 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.1 FF - HKLM\software\mozilla\Firefox\Extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-03-09 22:41:44 | 00,000,000 | ---D | M] [2009-07-31 00:57:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\USER\Dane aplikacji\mozilla\Extensions [2009-07-31 00:57:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\USER\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2008-01-15 21:40:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\USER\Dane aplikacji\mozilla\Firefox\Profiles\mjn2kfzf.default\extensions [2008-04-21 09:23:22 | 00,002,921 | ---- | M] () -- C:\Documents and Settings\USER\Dane aplikacji\Mozilla\FireFox\Profiles\mjn2kfzf.default\searchplugins\daemon-search.xml [2009-07-31 12:17:03 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions [2008-07-03 11:48:40 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} [2008-01-03 19:19:06 | 00,049,152 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll [2007-08-29 23:47:44 | 00,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\mozilla firefox\plugins\npbittorrent.dll [2008-09-06 12:00:00 | 00,144,984 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2008-09-06 12:00:00 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll O1 HOSTS File: (800 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O2 - BHO: (Pomocnik rejestracji usługi Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll File not found O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll File not found O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD) O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Development Company, L.P.) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [NPSStartup] File not found O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe (Nokia) O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Computer, Inc.) O4 - HKLM..\Run: [RemoteControl] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe (Cyberlink Corp.) O4 - HKLM..\Run: [RemoveWGA] C:\Documents and Settings\USER\Pulpit\RemoveWGA.exe File not found O4 - HKLM..\Run: [sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe (Sony Ericsson Mobile Communications AB) O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [uVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe (InterVideo Digital Technology Corporation) O4 - HKCU..\Run: [AlcoholAutomount] C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe (Alcohol Soft Development Team) O4 - HKCU..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.) O4 - HKCU..\Run: [bitTorrent DNA] C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.) O4 - HKCU..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Development Company, L.P.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLegacyLogonScripts = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLogoffScripts = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonScriptSync = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupScriptSync = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideStartupScripts = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 91 00 00 00 [binary data] O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLegacyLogonScripts = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLogoffScripts = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonScriptSync = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupScriptSync = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideStartupScripts = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0 O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation) O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O15 - HKLM\..Trusted Domains: 49 domain(s) and sub-domain(s) not assigned to a zone. O15 - HKCU\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} http://www.srtest.com/srl_bin/sysreqlab_srl.cab (System Requirements Lab Class) O16 - DPF: {3D8700FB-86A4-4CB4-B738-6F0FC016AC7D} http://slimak.onet.pl/_m/wirusy/ArcaOnline.cab (MainControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\ipp - No CLSID value found O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp - No CLSID value found O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - File not found O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2007-09-13 21:09:11 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2005-11-21 19:26:21 | 00,000,057 | R--- | M] () - F:\autorun.inf -- [ UDF ] O33 - MountPoints2\{bb735bc0-801d-11de-b51d-001a4d8ca7ad}\Shell - "" = AutoRun O33 - MountPoints2\{bb735bc0-801d-11de-b51d-001a4d8ca7ad}\Shell\AutoRun\command - "" = M:\LaunchU3.exe -- File not found O33 - MountPoints2\{ca1bed0c-61fe-11dc-ae58-806d6172696f}\Shell - "" = AutoRun O33 - MountPoints2\{ca1bed0c-61fe-11dc-ae58-806d6172696f}\Shell\AutoRun\command - "" = F:\OblivionLauncher.exe -- [2006-02-27 16:33:32 | 01,662,976 | R--- | M] (Bethesda Softworks) O33 - MountPoints2\M\Shell - "" = AutoRun O33 - MountPoints2\M\Shell\AutoRun\command - "" = M:\LaunchU3.exe -- File not found O34 - HKLM BootExecute: (autocheck) - File not found O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation) O34 - HKLM BootExecute: (*) - File not found ========== Files/Folders - Created Within 30 Days ========== [2009-09-12 10:10:54 | 00,288,768 | ---- | C] () -- C:\Documents and Settings\USER\Pulpit\jetepuvg.exe [2009-09-12 10:08:55 | 00,514,048 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\USER\Pulpit\OTL.exe [2009-09-03 22:31:24 | 00,028,696 | ---- | C] () -- C:\Documents and Settings\USER\Pulpit\Fifa2009_FullGame_BY_ABDULLAH AHMAD [mininova].torrent [2009-08-27 02:01:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\USER\Pulpit\lk [2009-08-23 21:19:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\USER\Moje dokumenty\bitpim [2009-08-23 21:19:10 | 00,000,000 | ---D | C] -- C:\Program Files\BitPim [2009-08-19 22:36:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\USER\Pulpit\house [2009-08-19 12:25:06 | 00,545,272 | ---- | C] () -- C:\Documents and Settings\USER\Pulpit\L4D_Standalone_1[1].211.exe [2009-08-19 12:22:46 | 19,727,0132 | ---- | C] () -- C:\Documents and Settings\USER\Pulpit\L4D_Patch_1[1].0.1.4.exe [2009-08-18 01:12:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\USER\Moje dokumenty\RSBot [2009-07-11 00:11:31 | 00,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll [2009-07-11 00:11:31 | 00,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys [2009-05-13 15:09:21 | 03,086,336 | ---- | C] () -- C:\WINDOWS\System32\flvvideo.dll [2009-04-29 23:20:30 | 00,041,808 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll [2009-04-22 00:19:06 | 00,172,173 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2009-04-05 13:52:42 | 00,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll [2009-02-18 15:44:00 | 01,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2009-02-18 15:44:00 | 01,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2009-02-18 15:44:00 | 01,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2009-02-18 15:44:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2009-01-06 20:12:45 | 00,000,151 | ---- | C] () -- C:\WINDOWS\wininit.ini [2008-10-07 10:13:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2008-08-24 11:49:57 | 03,086,336 | ---- | C] () -- C:\WINDOWS\System32\NCMedia.dll [2008-08-24 11:49:57 | 00,383,238 | ---- | C] () -- C:\WINDOWS\System32\libmp3lame-0.dll [2008-06-19 09:55:49 | 00,210,456 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll [2008-06-19 09:55:49 | 00,206,360 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll [2008-06-19 09:55:49 | 00,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll [2008-06-19 09:55:49 | 00,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll [2008-06-19 09:55:49 | 00,194,072 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll [2008-06-19 09:55:49 | 00,026,136 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll [2008-06-18 10:17:06 | 01,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll [2008-06-08 20:08:34 | 00,137,688 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2008-06-05 22:41:00 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.INI [2008-06-05 09:58:26 | 00,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2008-05-17 13:14:20 | 00,000,217 | ---- | C] () -- C:\WINDOWS\MPPAGER.INI [2008-05-09 19:41:20 | 00,001,138 | ---- | C] () -- C:\WINDOWS\GTA-SA_Trn_Settings.ini [2008-04-30 19:17:04 | 00,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll [2008-04-21 09:21:26 | 00,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2008-03-26 21:56:34 | 00,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2008-03-26 21:56:33 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008-03-26 21:56:33 | 00,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2008-03-26 21:56:32 | 00,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2008-03-26 21:56:32 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2008-01-15 19:39:16 | 01,867,776 | ---- | C] () -- C:\WINDOWS\System32\python24.dll [2008-01-11 13:29:35 | 00,024,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\Pwd42.sys [2007-12-28 17:34:05 | 00,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2007-12-28 17:34:05 | 00,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2007-12-26 13:00:59 | 00,077,824 | R--- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll [2007-12-07 14:58:34 | 00,000,023 | ---- | C] () -- C:\WINDOWS\BlendSettings.ini [2007-11-04 19:18:31 | 00,000,606 | ---- | C] () -- C:\WINDOWS\QIII.INI [2007-10-31 14:20:56 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2007-10-28 20:42:00 | 00,000,030 | ---- | C] () -- C:\WINDOWS\TextSpy.ini [2007-10-25 17:26:10 | 00,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2007-10-13 15:51:44 | 00,003,120 | ---- | C] () -- C:\WINDOWS\System32\2d2ca2ce-704a-428c-8cbe-0736b29190aa.dll [2007-09-14 21:48:56 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2005-12-07 13:31:00 | 00,202,752 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll [2002-03-17 02:00:00 | 00,007,420 | ---- | C] () -- C:\WINDOWS\UA000088.DLL [2002-03-17 02:00:00 | 00,007,420 | ---- | C] () -- C:\WINDOWS\UA000080.DLL [2002-03-17 02:00:00 | 00,007,420 | ---- | C] () -- C:\WINDOWS\UA000079.DLL [2002-03-17 02:00:00 | 00,007,420 | ---- | C] () -- C:\WINDOWS\UA000035.DLL [2001-07-22 02:16:20 | 00,000,679 | ---- | C] () -- C:\WINDOWS\win.ini [2001-07-22 02:15:52 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini [2001-07-07 04:00:02 | 00,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI ========== Files - Modified Within 30 Days ========== [1 C:\WINDOWS\System32\*.tmp files] [2009-09-12 10:10:54 | 00,288,768 | ---- | M] () -- C:\Documents and Settings\USER\Pulpit\jetepuvg.exe [2009-09-12 10:08:57 | 00,514,048 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\USER\Pulpit\OTL.exe [2009-09-12 10:05:44 | 00,212,641 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2009-09-12 10:05:32 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2009-09-12 10:05:27 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2009-09-12 10:02:22 | 00,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2009-09-11 13:30:45 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2009-09-10 22:27:47 | 03,705,548 | -H-- | M] () -- C:\Documents and Settings\USER\Ustawienia lokalne\Dane aplikacji\IconCache.db [2009-09-08 21:32:20 | 00,000,023 | ---- | M] () -- C:\WINDOWS\BlendSettings.ini [2009-09-07 19:27:42 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2009-09-07 15:04:28 | 00,071,168 | ---- | M] () -- C:\Documents and Settings\USER\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-09-03 22:31:24 | 00,028,696 | ---- | M] () -- C:\Documents and Settings\USER\Pulpit\Fifa2009_FullGame_BY_ABDULLAH AHMAD [mininova].torrent [2009-09-03 22:02:15 | 00,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn [2009-08-19 12:25:17 | 00,545,272 | ---- | M] () -- C:\Documents and Settings\USER\Pulpit\L4D_Standalone_1[1].211.exe [2009-08-19 12:22:51 | 19,727,0132 | ---- | M] () -- C:\Documents and Settings\USER\Pulpit\L4D_Patch_1[1].0.1.4.exe [2009-08-18 01:23:14 | 00,000,083 | ---- | M] () -- C:\Documents and Settings\USER\Dane aplikacji\RSBot Accounts.ini < End of report > Log do sprawdzenia OTL Extras logfile created on: 2009-09-12 10:13:07 - Run 1OTL by OldTimer - Version 3.0.10.7 Folder = C:\Documents and Settings\USER\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1023.48 Mb Total Physical Memory | 587.48 Mb Available Physical Memory | 57.40% Memory free 2.40 Gb Paging File | 2.00 Gb Available in Paging File | 83.04% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 77.62 Gb Total Space | 9.38 Gb Free Space | 12.09% Space Free | Partition Type: NTFS Drive D: | 77.62 Gb Total Space | 73.20 Gb Free Space | 94.30% Space Free | Partition Type: NTFS Drive E: | 77.63 Gb Total Space | 29.08 Gb Free Space | 37.46% Space Free | Partition Type: NTFS Drive F: | 4.18 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: CE0B7A3CB5254D2 Current User Name: USER Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "56130:TCP" = 56130:TCP:*:Enabled:Pando Media Booster "56130:UDP" = 56130:UDP:*:Enabled:Pando Media Booster ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Disabled:Gadu-Gadu - program główny -- (Gadu-Gadu S.A.) "C:\Program Files\GameSpy Arcade\Aphex.exe" = C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade -- (IGN Entertainment, Inc.) "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe -- (Hewlett-Packard Development Company, L.P.) "C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe -- (Hewlett-Packard Development Company, L.P.) "C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Development Company, L.P.) "C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Development Company, L.P.) "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Development Company, L.P.) "C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe -- () "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe -- (Hewlett-Packard) "C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe -- (Hewlett-Packard Development Company, L.P.) "C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard) "C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Development Company, L.P.) "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Development Company, L.P.) "C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe -- (Hewlett-Packard Development Company, L.P.) "C:\Program Files\Azureus\Azureus.exe" = C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus -- (Azureus Inc) "C:\Program Files\Codemasters\Worms 4 Mayhem\WORMS 4 MAYHEM.EXE" = C:\Program Files\Codemasters\Worms 4 Mayhem\WORMS 4 MAYHEM.EXE:*:Enabled:Worms 4 Mayhem -- File not found "C:\Program Files\MTA San Andreas\server\MTA Server.exe" = C:\Program Files\MTA San Andreas\server\MTA Server.exe:*:Enabled:MTA Server -- File not found "C:\Program Files\Xfire\xfire.exe" = C:\Program Files\Xfire\xfire.exe:*:Enabled:Xfire -- (Xfire Inc.) "C:\Program Files\DNA\btdna.exe" = C:\Program Files\DNA\btdna.exe:*:Enabled:DNA -- (BitTorrent, Inc.) "C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- () "C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- () "C:\Soldat\Soldat.exe" = C:\Soldat\Soldat.exe:*:Enabled:Soldat -- (Michal Marcinkowski) "C:\Program Files\EA Games\Command and Conquer Generals\patchget.dat" = C:\Program Files\EA Games\Command and Conquer Generals\patchget.dat:*:Enabled:patchgrabber -- File not found "C:\Program Files\EA Games\Command and Conquer Generals\game.dat" = C:\Program Files\EA Games\Command and Conquer Generals\game.dat:*:Enabled:game -- File not found "C:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe" = C:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe:*:Enabled:Jedi Academy MultiPlayer -- File not found "C:\Program Files\LucasArts\Star Wars JK II Jedi Outcast\GameData\jk2mp.exe" = C:\Program Files\LucasArts\Star Wars JK II Jedi Outcast\GameData\jk2mp.exe:*:Enabled:jk2mp -- File not found "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" = C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club -- (Take-Two Interactive Software, Inc.) "C:\Documents and Settings\USER\Moje dokumenty\Azureus Downloads\Left.4.Dead.Full-Rip.Skullptura\Left.4.Dead.Full-Rip.Skullptura\Left 4 Dead\left4dead.exe" = C:\Documents and Settings\USER\Moje dokumenty\Azureus Downloads\Left.4.Dead.Full-Rip.Skullptura\Left.4.Dead.Full-Rip.Skullptura\Left 4 Dead\left4dead.exe:*:Enabled:left4dead -- () "C:\Program Files\Garena\Garena.exe" = C:\Program Files\Garena\Garena.exe:*:Enabled:Garena -- (Garena Interactive PTE LTD) "C:\Program Files\Foto Victor Studio\VictorEdytor\VictorEdytor.exe" = C:\Program Files\Foto Victor Studio\VictorEdytor\VictorEdytor.exe:*:Enabled:VictorEdytor -- File not found "C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- () "C:\Program Files\K-Lite Codec Pack\Filters\ac3config.exe" = C:\Program Files\K-Lite Codec Pack\Filters\ac3config.exe:*:Enabled:AC3Filter -- () "C:\Documents and Settings\USER\Moje dokumenty\Azureus Downloads\TimeShift v1.1 Full-Rip Skullptura\TimeShift.v1.1.Full-Rip.Skullptura\TimeShift\bin\TimeShift.exe" = C:\Documents and Settings\USER\Moje dokumenty\Azureus Downloads\TimeShift v1.1 Full-Rip Skullptura\TimeShift.v1.1.Full-Rip.Skullptura\TimeShift\bin\TimeShift.exe:*:Enabled:TimeShift -- File not found "C:\Program Files\Counter Strike 1.6 V36.1\hl.exe" = C:\Program Files\Counter Strike 1.6 V36.1\hl.exe:*:Enabled:Half-Life Launcher -- File not found "C:\Program Files\Quake III Arena\quake3.exe" = C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3 -- File not found "C:\Program Files\Counter-Strike\hl.exe" = C:\Program Files\Counter-Strike\hl.exe:*:Enabled:Half-Life Launcher -- File not found "C:\Program Files\Counter-Strike Source\hl2.exe" = C:\Program Files\Counter-Strike Source\hl2.exe:*:Enabled:hl2 -- File not found "C:\Program Files\Counter-Strike\hlds.exe" = C:\Program Files\Counter-Strike\hlds.exe:*:Enabled:HLDS Launcher -- File not found "C:\Program Files\Activision\Call of Duty - World at War\LAN FIX v1.4.exe" = C:\Program Files\Activision\Call of Duty - World at War\LAN FIX v1.4.exe:*:Disabled:Call of Duty®: World at War Campaign/Coop -- (Activision Blizzard, Inc.) "C:\Documents and Settings\USER\Moje dokumenty\Azureus Downloads\KaMTPR.NO-INSTALL.Patched.Tools-included\KaM - The Peasants Rebellion\KM_TPR.exe" = C:\Documents and Settings\USER\Moje dokumenty\Azureus Downloads\KaMTPR.NO-INSTALL.Patched.Tools-included\KaM - The Peasants Rebellion\KM_TPR.exe:*:Enabled:KM_TPR -- File not found "E:\supreme commander forget alliance\Supreme Commander - Forged Alliance\bin\ForgedAlliance.exe" = E:\supreme commander forget alliance\Supreme Commander - Forged Alliance\bin\ForgedAlliance.exe:*:Disabled:Supreme Commander Forged Alliance Application -- (Gas Powered Games) "E:\killing floor\Killing Floor\System\KillingFloor.exe" = E:\killing floor\Killing Floor\System\KillingFloor.exe:*:Enabled:KillingFloor -- File not found "C:\Program Files\Electronic Arts\EADM\Core.exe" = C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager -- (Electronic Arts) "C:\Program Files\Activision\Prototype\prototypef.exe" = C:\Program Files\Activision\Prototype\prototypef.exe:*:Enabled:Prototype -- (Activision) "C:\Program Files\Electronic Arts\Władca Pierścieni® - Podbój™\Conquest.exe" = C:\Program Files\Electronic Arts\Władca Pierścieni® - Podbój™\Conquest.exe:*:Enabled:Game -- File not found "C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal) "C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal) "C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.) ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{036FD544-AED6-3F33-856D-A2292D0CF471}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - PLK "{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}" = Microsoft Games for Windows - LIVE Redistributable "{05C56753-F144-44BC-BA67-83CC5DBF395C}" = F300 "{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Narzędzie do przekazywania usługi Windows Live "{2376813B-2E5A-4641-B7B3-A0D5ADB55229}" = HPPhotoSmartExpress "{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype™ 4.0 "{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java 6 Update 13 "{2BA00471-0328-3743-93BD-FA813353A783}" = Microsoft .NET Framework 3.0 Service Pack 1 "{2FC099BD-AC9B-33EB-809C-D332E1B27C40}" = Microsoft .NET Framework 3.5 "{3248F0A8-6813-11D6-A77B-00B0D0160060}" = Java 6 Update 6 "{32A3A4F4-B792-11D6-A78A-00B0D0160060}" = Java SE Development Kit 6 Update 6 "{32A3A4F4-B792-11D6-A78A-00B0D0160140}" = Java SE Development Kit 6 Update 14 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion "{3868A8EE-5051-4DB0-8DF6-4F4B8A98D083}" = QuickTime "{3BC1954F-F5C9-4ED2-BB2A-BAEEF4DAC74D}" = TortoiseSVN 1.6.3.16613 (32 bit) "{45375017-B0F8-44EA-9D5B-2DCE7C84FFC2}" = SA21xx Device Manager "{45B8A76B-57EC-4242-B019-066400CD8428}" = BufferChm "{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin "{4D243BA7-9AC4-46D1-90E5-EEB88974F501}" = Microsoft Games for Windows - LIVE "{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}" = SpPhones "{4EA684E9-5C81-4033-A696-3019EC57AC3A}" = HPProductAssistant "{5067397A-2935-4290-AE14-1BE2863B00A3}_is1" = Convert MP4 to MP3 1.5 "{51958BA7-21E4-4A8B-9098-CD8375BD17B2}" = Asystent rejestracji usługi Windows Live "{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}" = InterVideo DeviceService "{531317A5-586A-4E36-87C1-CA823447B375}" = Nokia PC Suite "{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}" = Sp5 "{66910000-8B30-4973-A159-6371345AFFA5}" = WebReg "{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder "{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD "{68763C27-235D-4165-A961-FDEA228CE504}" = AiOSoftwareNPI "{6882DD11-33B8-4DEA-8305-7E765BF74BD3}" = Nokia Connectivity Cable Driver "{6909F917-5499-482e-9AA1-FAD06A99F231}" = Toolbox "{6994491D-D491-48F1-AE1F-E179C1FFFC2F}" = HP Photosmart Essential "{69E18533-3916-420A-8A0C-FCE82B83AF14}" = OpenOffice.org 2.4 "{6C3959C6-943E-44B3-BAAD-570B04B134E5}" = SpCommon "{6E65247F-58F9-41CA-BE69-0316F7907170}" = Disc2Phone "{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{736C803C-DD3B-4015-BC51-AFB9E67B9076}" = Readme "{758A4269-70E5-4B11-B419-F692882408A9}" = Gothic "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{7C77393F-8237-3825-A88A-AFAF3C69C072}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - PLK "{7E7B7865-6C80-4373-8BC1-C2EB9431F9DE}" = ProductContextNPI "{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver "{8331C3EA-0C91-43AA-A4D4-27221C631139}" = Status "{83A936D4-2FE6-4953-95C6-223A7B88B7D8}" = Camtasia Studio 5 "{89C89156-A70F-4C6D-9CAE-2EA71F1396FE}" = Garena "{90AF0415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office PowerPoint Viewer 2003 "{926C96FB-9D0A-4504-8000-C6D3A4A3118E}" = Java DB 10.4.2.1 "{9322A850-9091-4D0E-B252-3E82EDA3D94A}" = Prototype "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster "{996512CF-F35B-48DE-9291-557FA5316967}" = ScannerCopy "{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer "{A87B11AC-4344-4E5D-8B12-8F471A87DAD9}" = LightScribe 1.4.136.1 "{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder "{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution "{AC76BA86-7AD7-1045-7B44-A70000000000}" = Adobe Reader 7.0 - Polish "{B28B351F-1232-46EA-85EF-B8EA91641045}" = Nero 7 Essentials "{B508B3F1-A24A-32C0-B310-85786919EF28}" = Microsoft .NET Framework 2.0 Service Pack 1 "{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation "{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}" = HP Software Update "{BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C}" = HP Photosmart, Officejet and Deskjet 7.0.A "{C5ADA65A-7828-4D85-B071-ECC52B51F794}" = Sony Ericsson PC Suite 1.20.173 "{C7F54CF8-D6FB-4E0A-93A3-E68AE0D6C476}" = SolutionCenter "{C8753E28-2680-49BF-BD48-DD38FD086EFE}" = AiO_Scan_CDA "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{DBC20735-34E6-4E97-A9E5-2066B66B243D}" = TrayApp "{DD1865F0-AD73-40FB-B23E-1822E02396FF}" = NVIDIA PhysX "{E1B80DEE-A795-4258-8445-074C06AE3AB8}" = MarketResearch "{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime "{E415C943-37E5-473F-8BAE-043C56734124}" = Sp5TTInt "{E5966E4C-0A93-4F59-A981-BD3173D4799F}" = F300_Help "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F157460F-720E-482f-8625-AD7843891E5F}" = InstantShareDevicesMFC "{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio "{F31E509D-3597-324E-83CF-0C160B2320F0}" = Microsoft .NET Framework 3.5 Language Pack - plk "{F3760724-B29D-465B-BC53-E5D72095BCC4}" = Scan "{F6076EF9-08E1-442F-B6A2-BFB61B295A14}" = Fax_CDA "{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}" = VideoStudio "{FA61D601-A0FC-48BD-AE7A-54946BCD7FB6}_is1" = BitPim 1.0.3 "{FB15E224-67C3-491F-9F5C-F257BC418412}" = Destinations "{FBB980B0-63F8-4B48-8D65-90F1D9F81D9F}" = NewCopy_CDA "{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}" = Sp5Intl "3271E907F27C989F2C244ACB3D32020E3DD3CA6F" = Windows Driver Package - Nokia Modem (06/12/2006 6.81.0.21) "3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Pakiet sterowników systemu Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0) "6194C28A8F62DD817EA1B918E6E46E806A21B452" = Pakiet sterowników systemu Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0) "65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Pakiet sterowników systemu Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0) "6A1545AE87FC8D98ACA7539CE7AA69DF2A5C7E1C" = Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0) "Adobe Acrobat 5.0" = Adobe Acrobat 5.0 CE "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Photoshop 7.0 CE" = Adobe Photoshop 7.0 CE "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "ALLPlayer V3.1_is1" = ALLPlayer V3.X "ArcaOnline" = ArcaOnline - ArcaBit Online Scanner "Audacity_is1" = Audacity 1.2.6 "avast!" = avast! Antivirus "Azureus Vuze" = Azureus Vuze "Cheat Engine 5.4_is1" = Cheat Engine 5.4 "EADM" = EA Download Manager "Fraps" = Fraps "Free FLV to AVI Converter_is1" = Free FLV to AVI Converter V1.5 "Freez FLV to MP3 Converter V1.2_is1" = Freez FLV to MP3 Converter "Gadu-Gadu" = Gadu-Gadu 7.7 "GameSpy Arcade" = GameSpy Arcade "Gimnazjum - Chemia Nowej Ery 1" = Gimnazjum - Chemia Nowej Ery 1 "Hamachi" = Hamachi 1.0.2.4 "HijackThis" = HijackThis 2.0.2 "HP Imaging Device Functions" = HP Imaging Device Functions 7.0 "HP Solution Center & Imaging Support Tools" = HP Solution Center 7.0 "HPExtendedCapabilities" = HP Customer Participation Program 7.0 "InstallShield_{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty® - World at War 1.2 Patch "InstallShield_{3868A8EE-5051-4DB0-8DF6-4F4B8A98D083}" = QuickTime "InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin "InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty® 4 - Modern Warfare 1.6 Patch "InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty® 4 - Modern Warfare 1.7 Patch "InstallShield_{9322A850-9091-4D0E-B252-3E82EDA3D94A}" = Prototype "InstallShield_{9F01A67B-7D67-482F-9D4F-D5980A440FD4}" = Call of Duty® - World at War 1.4 Patch "InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio "InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}" = Ulead VideoStudio 11 "IVONA - syntezator mowy, wersja rehabilitacyjna" = IVONA - syntezator mowy, wersja rehabilitacyjna "KLiteCodecPack_is1" = K-Lite Codec Pack 3.8.5 Full "L4DSP" = Left 4 Dead Standalone Patch "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5" = Microsoft .NET Framework 3.5 "Microsoft .NET Framework 3.5 Language Pack - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 — PLK "mod_sobit" = m0d_s0beit_3.4 "MyProduct" = MyProduct "NAPIPROJEKT_is1" = NAPIPROJEKT 1.0.6.2 "Network Play System (Patching)" = Network Play System (Patching) "NVIDIA Drivers" = NVIDIA Drivers "RealAlt_is1" = Real Alternative 1.8.4 "SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software "SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set "Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software "Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software "SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software "SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software "SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software "Soldat Map Maker_is1" = Soldat Map Maker 1.2 "Soldat_is1" = Soldat 1.5.0 "Spolszczenie" = Spolszczenie 1.0 "SystemRequirementsLab" = System Requirements Lab "TESIV_KOTN_is1" = The Elder Scrolls IV: Knights of the Nine "Winamp" = Winamp (remove only) "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows XP Service Pack" = Windows XP Service Pack 3 "WinRAR archiver" = Archiwizator WinRAR "WMFDist11" = Windows Media Format 11 runtime "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0 "Xfire" = Xfire (remove only) "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "BitTorrent DNA" = DNA "Patch ver. 1.03" = Patch ver. 1.03 ========== Last 10 Event Log Errors ========== [ Antivirus Events ] Error - 2008-01-12 05:27:55 | Computer Name = CE0B7A3CB5254D2 | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\WINDOWS\SYSTEM32\HG543FDG.DLL failed, 00000005. Error - 2008-01-12 05:27:55 | Computer Name = CE0B7A3CB5254D2 | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\WINDOWS\SYSTEM32\HG543FDG.DLL failed, 00000005. Error - 2008-01-12 06:53:10 | Computer Name = CE0B7A3CB5254D2 | Source = avast! | ID = 33554522 Description = Error in aswChestC: chestAddFile Error 2. Error - 2008-04-06 08:00:29 | Computer Name = CE0B7A3CB5254D2 | Source = avast! | ID = 33554522 Description = Internal error has occurred in module aswar scan function failed!, function C0000005. Error - 2008-04-06 08:19:57 | Computer Name = CE0B7A3CB5254D2 | Source = avast! | ID = 33554522 Description = Internal error has occurred in module aswar scan function failed!, function C0000005. Error - 2008-04-07 02:34:24 | Computer Name = CE0B7A3CB5254D2 | Source = avast! | ID = 33554522 Description = Internal error has occurred in module aswar scan function failed!, function C0000005. Error - 2008-04-07 07:47:46 | Computer Name = CE0B7A3CB5254D2 | Source = avast! | ID = 33554522 Description = Internal error has occurred in module aswar scan function failed!, function C0000005. Error - 2008-04-07 09:40:03 | Computer Name = CE0B7A3CB5254D2 | Source = avast! | ID = 33554522 Description = Internal error has occurred in module aswar scan function failed!, function C0000005. Error - 2008-09-20 06:04:23 | Computer Name = CE0B7A3CB5254D2 | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of http://moddersdownload.neostrada.pl/Czas_Zaplaty_Prolog_Dubbing.exe failed, 00000084. [ Application Events ] Error - 2009-09-03 16:15:02 | Computer Name = CE0B7A3CB5254D2 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd iexplore.exe, wersja 6.0.2900.5512, moduł powodujący błąd mshtml.dll, wersja 6.0.2900.5848, adres błędu 0x00069410. Error - 2009-09-04 17:04:46 | Computer Name = CE0B7A3CB5254D2 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd allplayer.exe, wersja 3.1.0.0, moduł powodujący błąd xvidcore.dll, wersja 0.0.0.0, adres błędu 0x00055597. Error - 2009-09-04 17:18:49 | Computer Name = CE0B7A3CB5254D2 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd allplayer.exe, wersja 3.1.0.0, moduł powodujący błąd xvidcore.dll, wersja 0.0.0.0, adres błędu 0x00055597. Error - 2009-09-08 12:33:40 | Computer Name = CE0B7A3CB5254D2 | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca left4dead.exe, wersja 0.0.0.0, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2009-09-09 11:23:50 | Computer Name = CE0B7A3CB5254D2 | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca left4dead.exe, wersja 0.0.0.0, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2009-09-09 11:23:52 | Computer Name = CE0B7A3CB5254D2 | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca left4dead.exe, wersja 0.0.0.0, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2009-09-09 15:34:57 | Computer Name = CE0B7A3CB5254D2 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd oblivion.exe, wersja 1.2.0.214, moduł powodujący błąd unknown, wersja 0.0.0.0, adres błędu 0x3e4ccccd. Error - 2009-09-10 13:47:11 | Computer Name = CE0B7A3CB5254D2 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd garena.exe, wersja 3.3.0.1922, moduł powodujący błąd garena.exe, wersja 3.3.0.1922, adres błędu 0x0010d6e2. Error - 2009-09-11 14:33:19 | Computer Name = CE0B7A3CB5254D2 | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca Azureus.exe, wersja 3.0.0.0, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2009-09-11 14:33:26 | Computer Name = CE0B7A3CB5254D2 | Source = Application Hang | ID = 1001 Description = Pakiet błędów 345229529. [ System Events ] Error - 2009-07-30 05:27:23 | Computer Name = CE0B7A3CB5254D2 | Source = Dhcp | ID = 1002 Description = Adres IP połączenia 10.10.1.100 dla karty sieciowej o adresie 001A4D8CA7AD został zabroniony przez serwer DHCP 0.0.0.0 (Serwer DHCP wysłał komunikat DHCPNACK). Error - 2009-08-12 10:18:49 | Computer Name = CE0B7A3CB5254D2 | Source = Dhcp | ID = 1002 Description = Adres IP połączenia 10.10.1.100 dla karty sieciowej o adresie 001A4D8CA7AD został zabroniony przez serwer DHCP 0.0.0.0 (Serwer DHCP wysłał komunikat DHCPNACK). Error - 2009-08-12 10:30:05 | Computer Name = CE0B7A3CB5254D2 | Source = Dhcp | ID = 1002 Description = Adres IP połączenia 10.10.1.101 dla karty sieciowej o adresie 001A4D8CA7AD został zabroniony przez serwer DHCP 0.0.0.0 (Serwer DHCP wysłał komunikat DHCPNACK). Error - 2009-08-30 12:59:15 | Computer Name = CE0B7A3CB5254D2 | Source = W32Time | ID = 39452689 Description = Dostawca czasu NtpClient: Wystąpił błąd podczas wyszukiwania serwera DNS ręcznie skonfigurowanej końcówki „time.windows.com,0x1”. Klient NtpClient ponowi próbę wyszukania serwera DNS za 15 min. Wystąpił błąd: Próba przeprowadzenia operacji, wykonywanej przez gniazdo, na nieosiągalnym hoście. (0x80072751) Error - 2009-08-30 12:59:15 | Computer Name = CE0B7A3CB5254D2 | Source = W32Time | ID = 39452701 Description = Dostawca czasu NtpClient jest skonfigurowany, tak aby pobierać czas z jednego lub kilku źródeł czasu, jednak żadne ze źródeł jest obecnie niedostępne. Przez 14 min nie nastąpi próba kontaktu ze źródłem. NtpClient nie ma źródła dokładnego czasu. Error - 2009-09-12 04:07:10 | Computer Name = CE0B7A3CB5254D2 | Source = System Error | ID = 1003 Description = Kod błędu 00000019, parametr 1 00000020, parametr 2 8055d718, parametr 3 8055d918, parametr 4 1a403698. < End of report > dds Log do sprawdzenia DDS (Ver_09-07-30.01) - NTFSx86 Run by USER at 10:22:53.76 on 2009-09-12 Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_06 Microsoft Windows XP Professional 5.1.2600.3.1250.1.1045.18.1023.569 [GMT 2:00] AV: avast! antivirus 4.8.1296 [VPS 090911-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} ============== Running Processes =============== C:\WINDOWS\system32\savedump.exe C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\TortoiseSVN\bin\TSVNCache.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\DNA\btdna.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe svchost.exe C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe C:\WINDOWS\system32\FsUsbExService.Exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\PnkBstrB.exe C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\USER\Pulpit\dds.pif ============== Pseudo HJT Report =============== uStart Page = hxxp://www.google.pl/ uSearch Page = hxxp://www.google.com uSearch Bar = hxxp://www.google.com/ie uInternet Connection Wizard,ShellNext = iexplore mSearchAssistant = hxxp://www.google.com/ie BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll BHO: Pomocnik rejestracji usługi Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.0.926.3450\swg.dll BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_219B3E1547538286.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll uRun: [AlcoholAutomount] "c:\program files\alcohol soft\alcohol 120\axcmd.exe" /automount uRun: [bitTorrent DNA] "c:\program files\dna\btdna.exe" uRun: [Gadu-Gadu] "c:\program files\gadu-gadu\gg.exe" /tray uRun: [AutoStartNPSAgent] c:\program files\samsung\samsung new pc studio\NPSAgent.exe mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe" mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe mRun: [sony Ericsson PC Suite] "c:\program files\sony ericsson\mobile2\application launcher\Application Launcher.exe" /startoptions mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe mRun: [PCSuiteTrayApplication] c:\progra~1\nokia\nokiap~1\LAUNCH~1.EXE -startup mRun: [RemoveWGA] c:\documents and settings\user\pulpit\RemoveWGA.exe -startup mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe mRun: [amd_dc_opt] c:\program files\amd\dual-core optimizer\amd_dc_opt.exe mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [nwiz] nwiz.exe /install mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit mRun: [sunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe" mRun: [uVS11 Preload] c:\program files\ulead systems\ulead videostudio 11\uvPL.exe mRun: [NPSStartup] mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE StartupFolder: c:\docume~1\alluse~1\menust~1\programy\autost~1\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe StartupFolder: c:\docume~1\alluse~1\menust~1\programy\autost~1\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe StartupFolder: c:\docume~1\alluse~1\menust~1\programy\autost~1\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} - hxxp://www.srtest.com/srl_bin/sysreqlab_srl.cab DPF: {3D8700FB-86A4-4CB4-B738-6F0FC016AC7D} - hxxp://slimak.onet.pl/_m/wirusy/ArcaOnline.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll ============= SERVICES / DRIVERS =============== R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-4-6 111184] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-4-6 20560] R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast4\ashServ.exe [2007-9-25 155160] R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2009-7-11 233472] R3 avast! Web Scanner;avast! Web Scanner;c:\program files\alwil software\avast4\ashWebSv.exe [2007-9-25 352920] R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2009-7-11 36608] S3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\alwil software\avast4\ashMaiSv.exe [2007-9-25 254040] S3 k510bus;Sony Ericsson K510 Driver driver (WDM);c:\windows\system32\drivers\k510bus.sys [2007-10-4 58288] S3 k510mdfl;Sony Ericsson K510 USB WMC Modem Filter;c:\windows\system32\drivers\k510mdfl.sys [2007-10-4 8336] S3 k510mdm;Sony Ericsson K510 USB WMC Modem Driver;c:\windows\system32\drivers\k510mdm.sys [2007-10-4 94064] S3 k510mgmt;Sony Ericsson K510 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\k510mgmt.sys [2007-10-4 85408] S3 k510obex;Sony Ericsson K510 USB WMC OBEX Interface;c:\windows\system32\drivers\k510obex.sys [2007-10-4 83344] S3 Pwd42;Pwd42;c:\windows\system32\drivers\Pwd42.sys [2008-1-11 24832] S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2009-7-11 90112] S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2009-7-11 14976] S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2009-7-11 121856] =============== Created Last 30 ================ 2009-09-02 14:55 45 a------- c:\documents and settings\user\jagex_runescape_preferences2.dat 2009-08-23 21:19 <DIR> --d----- c:\program files\BitPim ==================== Find3M ==================== 2009-09-07 17:05 37 a------- c:\documents and settings\user\jagex_runescape_preferences.dat 2009-08-04 19:00 500,378 a------- c:\windows\system32\perfh015.dat 2009-08-04 19:00 89,364 a------- c:\windows\system32\perfc015.dat 2009-06-26 18:51 669,184 a------- c:\windows\system32\wininet.dll 2009-06-26 18:51 81,920 a------- c:\windows\system32\ieencode.dll 2009-06-16 16:40 119,808 a------- c:\windows\system32\t2embed.dll 2009-06-16 16:40 81,920 a------- c:\windows\system32\fontsub.dll 2008-11-19 21:36 22,328 a------- c:\docume~1\user\daneap~1\PnkBstrK.sys 2008-08-22 15:52 382 a------- c:\program files\Skrót do Program Files.lnk ============= FINISH: 10:23:17.59 =============== Log do sprawdzenia UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT DDS (Ver_09-07-30.01) Microsoft Windows XP Professional Boot Device: \Device\HarddiskVolume1 Install Date: 2007-09-13 21:10:53 System Uptime: 2009-09-12 10:18:53 (0 hours ago) Motherboard: Gigabyte Technology Co., Ltd. | | M55S-S3 Processor: AMD Athlon 64 X2 Dual Core Processor 4200+ | Socket M2 | 2211/200mhz ==== Disk Partitions ========================= C: is FIXED (NTFS) - 78 GiB total, 9.373 GiB free. D: is FIXED (NTFS) - 78 GiB total, 73.2 GiB free. E: is FIXED (NTFS) - 78 GiB total, 29.082 GiB free. F: is CDROM (UDF) G: is Removable H: is Removable I: is Removable J: is Removable K: is CDROM () L: is CDROM () ==== Disabled Device Manager Items ============= ==== System Restore Points =================== RP569: 2009-06-15 00:01:12 - Punkt kontrolny systemu RP570: 2009-06-15 11:57:53 - Installed Prototype RP571: 2009-06-17 20:03:52 - Punkt kontrolny systemu RP572: 2009-06-18 21:34:06 - Punkt kontrolny systemu RP573: 2009-06-20 21:34:27 - Zainstalowano: Władca Pierścieni® - Podbój™ RP574: 2009-06-25 18:16:38 - Punkt kontrolny systemu RP575: 2009-06-30 14:43:25 - Punkt kontrolny systemu RP576: 2009-07-03 14:32:00 - Punkt kontrolny systemu RP577: 2009-07-05 11:49:53 - Punkt kontrolny systemu RP578: 2009-07-11 00:09:58 - Zainstalowane Samsung New PC Studio RP579: 2009-07-12 13:38:25 - Punkt kontrolny systemu RP580: 2009-07-13 21:18:06 - Punkt kontrolny systemu RP581: 2009-07-16 11:49:30 - Punkt kontrolny systemu RP582: 2009-07-17 14:30:39 - Punkt kontrolny systemu RP583: 2009-07-19 13:17:27 - Punkt kontrolny systemu RP584: 2009-07-21 12:02:10 - Installed Java SE Development Kit 6 Update 14 RP585: 2009-07-21 12:05:30 - Removed Java SE Development Kit 6 Update 14 RP586: 2009-07-21 12:06:12 - Installed Java SE Development Kit 6 Update 14 RP587: 2009-07-21 19:37:50 - Installed TortoiseSVN 1.6.3.16613 (32 bit) RP588: 2009-07-28 14:09:50 - Punkt kontrolny systemu RP589: 2009-07-29 19:56:42 - Punkt kontrolny systemu RP590: 2009-08-04 17:56:49 - Software Distribution Service 3.0 RP591: 2009-08-12 20:33:36 - Punkt kontrolny systemu RP592: 2009-08-19 22:03:36 - Usunięte Call of Duty® - World at War RP593: 2009-08-21 08:53:54 - Punkt kontrolny systemu RP594: 2009-08-26 08:55:15 - Punkt kontrolny systemu RP595: 2009-08-29 11:33:23 - Punkt kontrolny systemu RP596: 2009-09-01 17:44:28 - Punkt kontrolny systemu RP597: 2009-09-02 18:39:22 - Punkt kontrolny systemu RP598: 2009-09-03 22:57:20 - Punkt kontrolny systemu RP599: 2009-09-04 21:41:02 - Usunięte The Sims 3 RP600: 2009-09-04 21:44:42 - Usunięto: Władca Pierścieni® - Podbój™ RP601: 2009-09-06 01:13:42 - Punkt kontrolny systemu RP602: 2009-09-06 16:25:18 - Zainstalowany program DirectX RP603: 2009-09-06 20:15:47 - Installed Oblivion RP604: 2009-09-06 20:15:55 - Zainstalowany program DirectX 9.0 RP605: 2009-09-06 20:55:54 - Installed Oblivion - Shivering Isles RP606: 2009-09-07 22:45:54 - Punkt kontrolny systemu RP607: 2009-09-08 22:51:23 - Punkt kontrolny systemu RP608: 2009-09-09 23:38:05 - Punkt kontrolny systemu ==== Installed Programs ====================== Adobe Acrobat 5.0 CE Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Photoshop 7.0 CE Adobe Reader 7.0 - Polish Adobe Shockwave Player 11.5 AiO_Scan_CDA AiOSoftwareNPI Aktualizacja dla systemu Windows XP (KB951072-v2) Aktualizacja dla systemu Windows XP (KB951978) Aktualizacja dla systemu Windows XP (KB955839) Aktualizacja dla systemu Windows XP (KB967715) Aktualizacja zabezpieczeń dla programu Windows Media Player (KB911564) Aktualizacja zabezpieczeń dla programu Windows Media Player (KB952069) Aktualizacja zabezpieczeń dla programu Windows Media Player 6.4 (KB925398) Aktualizacja zabezpieczeń dla programu Windows Media Player 9 (KB936782) Aktualizacja zabezpieczeń dla systemu Windows XP (KB923561) Aktualizacja zabezpieczeń dla systemu Windows XP (KB938464-v2) Aktualizacja zabezpieczeń dla systemu Windows XP (KB938464) Aktualizacja zabezpieczeń dla systemu Windows XP (KB946648) Aktualizacja zabezpieczeń dla systemu Windows XP (KB950759) Aktualizacja zabezpieczeń dla systemu Windows XP (KB950760) Aktualizacja zabezpieczeń dla systemu Windows XP (KB950762) Aktualizacja zabezpieczeń dla systemu Windows XP (KB950974) Aktualizacja zabezpieczeń dla systemu Windows XP (KB951066) Aktualizacja zabezpieczeń dla systemu Windows XP (KB951376-v2) Aktualizacja zabezpieczeń dla systemu Windows XP (KB951376) Aktualizacja zabezpieczeń dla systemu Windows XP (KB951698) Aktualizacja zabezpieczeń dla systemu Windows XP (KB951748) Aktualizacja zabezpieczeń dla systemu Windows XP (KB952004) Aktualizacja zabezpieczeń dla systemu Windows XP (KB952954) Aktualizacja zabezpieczeń dla systemu Windows XP (KB953838) Aktualizacja zabezpieczeń dla systemu Windows XP (KB953839) Aktualizacja zabezpieczeń dla systemu Windows XP (KB954211) Aktualizacja zabezpieczeń dla systemu Windows XP (KB954459) Aktualizacja zabezpieczeń dla systemu Windows XP (KB954600) Aktualizacja zabezpieczeń dla systemu Windows XP (KB955069) Aktualizacja zabezpieczeń dla systemu Windows XP (KB956390) Aktualizacja zabezpieczeń dla systemu Windows XP (KB956391) Aktualizacja zabezpieczeń dla systemu Windows XP (KB956572) Aktualizacja zabezpieczeń dla systemu Windows XP (KB956802) Aktualizacja zabezpieczeń dla systemu Windows XP (KB956803) Aktualizacja zabezpieczeń dla systemu Windows XP (KB956841) Aktualizacja zabezpieczeń dla systemu Windows XP (KB957095) Aktualizacja zabezpieczeń dla systemu Windows XP (KB957097) Aktualizacja zabezpieczeń dla systemu Windows XP (KB958215) Aktualizacja zabezpieczeń dla systemu Windows XP (KB958644) Aktualizacja zabezpieczeń dla systemu Windows XP (KB958687) Aktualizacja zabezpieczeń dla systemu Windows XP (KB959426) Aktualizacja zabezpieczeń dla systemu Windows XP (KB960225) Aktualizacja zabezpieczeń dla systemu Windows XP (KB960714) Aktualizacja zabezpieczeń dla systemu Windows XP (KB960803) Aktualizacja zabezpieczeń dla systemu Windows XP (KB961371) Aktualizacja zabezpieczeń dla systemu Windows XP (KB961501) Aktualizacja zabezpieczeń dla systemu Windows XP (KB968537) Aktualizacja zabezpieczeń dla systemu Windows XP (KB970238) Aktualizacja zabezpieczeń dla systemu Windows XP (KB971633) Aktualizacja zabezpieczeń dla systemu Windows XP (KB972260) Aktualizacja zabezpieczeń dla systemu Windows XP (KB973346) Aktualizacja zabezpieczeń dla Windows XP (KB923689) Aktualizacja zabezpieczeń dla Windows XP (KB941569) ALLPlayer V3.X ArcaOnline - ArcaBit Online Scanner Archiwizator WinRAR Asystent rejestracji usługi Windows Live Audacity 1.2.6 avast! Antivirus Azureus Vuze BitPim 1.0.3 BufferChm Call of Duty® - World at War 1.2 Patch Call of Duty® - World at War 1.4 Patch Call of Duty® 4 - Modern Warfare 1.6 Patch Call of Duty® 4 - Modern Warfare 1.7 Patch Camtasia Studio 5 Cheat Engine 5.4 Convert MP4 to MP3 1.5 CustomerResearchQFolder Destinations DeviceManagementQFolder Disc2Phone DNA Dual-Core Optimizer EA Download Manager eSupportQFolder F300 F300_Help Fax_CDA Fraps Free FLV to AVI Converter V1.5 Freez FLV to MP3 Converter Gadu-Gadu 7.7 GameSpy Arcade Garena Gimnazjum - Chemia Nowej Ery 1 Gothic Hamachi 1.0.2.4 High Definition Audio - KB888111 HijackThis 2.0.2 Hotfix for Windows Media Format 11 SDK (KB929399) HP Customer Participation Program 7.0 HP Imaging Device Functions 7.0 HP Photosmart Essential HP Photosmart, Officejet and Deskjet 7.0.A HP Software Update HP Solution Center 7.0 HPPhotoSmartExpress HPProductAssistant InstantShareDevicesMFC InterVideo DeviceService IVONA - syntezator mowy, wersja rehabilitacyjna Java DB 10.4.2.1 Java 6 Update 13 Java 6 Update 6 Java SE Development Kit 6 Update 14 Java SE Development Kit 6 Update 6 K-Lite Codec Pack 3.8.5 Full Left 4 Dead Standalone Patch LightScribe 1.4.136.1 m0d_s0beit_3.4 Malwarebytes' Anti-Malware MarketResearch Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Hotfix (KB928366) Microsoft .NET Framework 2.0 Service Pack 1 Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - PLK Microsoft .NET Framework 3.0 Service Pack 1 Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - PLK Microsoft .NET Framework 3.5 Microsoft .NET Framework 3.5 Language Pack - plk Microsoft Application Error Reporting Microsoft Games for Windows - LIVE Microsoft Games for Windows - LIVE Redistributable Microsoft Office PowerPoint Viewer 2003 Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft WSE 3.0 Runtime MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 (KB954430) MSXML 6.0 Parser (KB925673) MyProduct NAPIPROJEKT 1.0.6.2 Narzędzie do przekazywania usługi Windows Live Nero 7 Essentials Network Play System (Patching) NewCopy_CDA Nokia Connectivity Cable Driver Nokia PC Suite NVIDIA Drivers NVIDIA PhysX Oblivion OpenOffice.org 2.4 Pakiet językowy programu Microsoft .NET Framework 3.5 — PLK Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0) Pakiet sterowników systemu Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0) Pakiet sterowników systemu Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0) Pakiet sterowników systemu Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0) Pando Media Booster Patch ver. 1.03 PC Connectivity Solution Poprawka dla systemu Windows XP (KB952287) PowerDVD ProductContextNPI Prototype QuickTime Readme Real Alternative 1.8.4 Realtek High Definition Audio Driver Rockstar Games Social Club SA21xx Device Manager SAMSUNG Mobile Composite Device Software Samsung Mobile Modem Device Software SAMSUNG Mobile Modem Driver Set Samsung Mobile phone USB driver Software SAMSUNG Mobile USB Modem 1.0 Software SAMSUNG Mobile USB Modem Software Samsung New PC Studio SAMSUNG USB Mobile Device Software SamsungConnectivityCableDriver Scan ScannerCopy Skype™ 4.0 SmartSound Quicktracks Plugin Soldat 1.5.0 Soldat Map Maker 1.2 SolutionCenter Sony Ericsson PC Suite 1.20.173 Sp5 Sp5Intl Sp5TTInt SpCommon Spolszczenie 1.0 SpPhones Status System Requirements Lab The Elder Scrolls IV: Knights of the Nine Toolbox TortoiseSVN 1.6.3.16613 (32 bit) TrayApp Ulead VideoStudio 11 VideoStudio WebFldrs XP WebReg Winamp (remove only) Windows Driver Package - Nokia Modem (06/12/2006 6.81.0.21) Windows Genuine Advantage Notifications (KB905474) Windows Media Format 11 runtime Windows Presentation Foundation Windows XP Service Pack 3 Xfire (remove only) XML Paper Specification Shared Components Language Pack 1.0 XML Paper Specification Shared Components Pack 1.0 ==== End Of File =========================== nie mogę natomiast użyć programu gmer bo wyskakuje mi blue screen. eh.
Psycholandia komentarz 12 września 2009 komentarz 12 września 2009 Jakieś 20 minut temu ściągnąłem sobie pewien plik Jak się nazywa plik? Masz go na dysku gdzieś? 1. W okienko OTL wklej poniższy skrypt i klik na Run Fix: :Processesexplorer.exe:OTLO2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll File not foundO4 - HKLM..\Run: [NPSStartup] File not foundO16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - File not found:FilesC:\WINDOWS\System32\2d2ca2ce-704a-428c-8cbe-0736b29190aa.dll:Commands[emptytemp][start explorer][Reboot] 2.Przeskanuj komputer tym: http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html usuń wszystko co znajdzie i daj loga po kasowaniu (loga z Malware) 3. wykonaj wskazówki poniżej odnośnie, to odnośnie BSOD-a: http://www.forumpc.pl/index.php?showtopic=68409 http://www.forumpc.pl/index.php?showtopic=16074
fail komentarz 12 września 2009 Autor komentarz 12 września 2009 Jak się nazywa plik? Masz go na dysku gdzieś? 1. W okienko OTL wklej poniższy skrypt i klik na Run Fix: :Processesexplorer.exe:OTLO2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll File not foundO4 - HKLM..\Run: [NPSStartup] File not foundO16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - File not foundO32 - AutoRun File - [2005-11-21 19:26:21 | 00,000,057 | R--- | M] () - F:\autorun.inf -- [ UDF ]O33 - MountPoints2\{bb735bc0-801d-11de-b51d-001a4d8ca7ad}\Shell - "" = AutoRunO33 - MountPoints2\{ca1bed0c-61fe-11dc-ae58-806d6172696f}\Shell - "" = AutoRunO33 - MountPoints2\{ca1bed0c-61fe-11dc-ae58-806d6172696f}\Shell\AutoRun\command - "" = F:\OblivionLauncher.exe -- [2006-02-27 16:33:32 | 01,662,976 | R--- | M] (Bethesda Softworks)O33 - MountPoints2\M\Shell - "" = AutoRun:FilesC:\WINDOWS\System32\2d2ca2ce-704a-428c-8cbe-0736b29190aa.dll:Reg[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2]:Commands[emptytemp][start explorer][Reboot] 2.Przeskanuj komputer tym: http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html usuń wszystko co znajdzie i daj loga po kasowaniu (loga z Malware) 3. wykonaj wskazówki poniżej odnośnie, to odnośnie BSOD-a: http://www.forumpc.pl/index.php?showtopic=68409 http://www.forumpc.pl/index.php?showtopic=16074 Ten plik to był jakiś cheat do gry <wstyd> ;[] przeczyściłem rejestr Eusing Free Registry Cleaner, przeskanowałem malwarebytes jeszcze przed napisaniem tematu i nie znalazł nic. Punktu 1 nie za bardzo rozumiem, ale blue screeny się skończyły i wygląda jakby wszystko było ok. jeśli chodzi o ostatni punkt to prosze oto ostatni blue screen: Log do sprawdzenia Microsoft ® Windows Debugger Version 6.11.0001.404 X86 Copyright © Microsoft Corporation. All rights reserved. Loading Dump File [C:\WINDOWS\Minidump\Mini091209-03.dmp] Mini Kernel Dump File: Only registers and stack trace are available Symbol search path is: *** Invalid *** **************************************************************************** * Symbol loading may be unreliable without a symbol search path. * * Use .symfix to have the debugger choose a symbol path. * * After setting your symbol path, use .reload to refresh symbol locations. * **************************************************************************** Executable search path is: ********************************************************************* * Symbols can not be loaded because symbol path is not initialized. * * * * The Symbol Path can be set by: * * using the _NT_SYMBOL_PATH environment variable. * * using the -y <symbol_path> argument when starting the debugger. * * using .sympath and .sympath+ * ********************************************************************* Unable to load image ntoskrnl.exe, Win32 error 0n2 *** WARNING: Unable to verify timestamp for ntoskrnl.exe *** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe Windows XP Kernel Version 2600 (Service Pack 3) MP (2 procs) Free x86 compatible Product: WinNt, suite: TerminalServer SingleUserTS Machine Name: Kernel base = 0x804d7000 PsLoadedModuleList = 0x8055d720 Debug session time: Sat Sep 12 10:18:15.984 2009 (GMT+2) System Uptime: 0 days 0:01:45.703 ********************************************************************* * Symbols can not be loaded because symbol path is not initialized. * * * * The Symbol Path can be set by: * * using the _NT_SYMBOL_PATH environment variable. * * using the -y <symbol_path> argument when starting the debugger. * * using .sympath and .sympath+ * ********************************************************************* Unable to load image ntoskrnl.exe, Win32 error 0n2 *** WARNING: Unable to verify timestamp for ntoskrnl.exe *** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe Loading Kernel Symbols ............................................................... ................................................................ .... Loading User Symbols Loading unloaded module list ........... ******************************************************************************* * * * Bugcheck Analysis * * * ******************************************************************************* Use !analyze -v to get detailed debugging information. BugCheck 19, {20, 854f3000, 854f3828, 1b050000} ***** Kernel symbols are WRONG. Please fix symbols to do analysis. ************************************************************************* *** *** *** *** *** Your debugger is not using the correct symbols *** *** *** *** In order for this command to work properly, your symbol path *** *** must point to .pdb files that have full type information. *** *** *** *** Certain .pdb files (such as the public OS symbols) do not *** *** contain the required information. Contact the group that *** *** provided you with these symbols if you need this command to *** *** work. *** *** *** *** Type referenced: nt!PVOID *** *** *** ************************************************************************* *** WARNING: Unable to verify timestamp for hal.dll *** ERROR: Module load completed but symbols could not be loaded for hal.dll *** WARNING: Unable to verify timestamp for aujasnkj.sys *** ERROR: Module load completed but symbols could not be loaded for aujasnkj.sys ************************************************************************* *** *** *** *** *** Your debugger is not using the correct symbols *** *** *** *** In order for this command to work properly, your symbol path *** *** must point to .pdb files that have full type information. *** *** *** *** Certain .pdb files (such as the public OS symbols) do not *** *** contain the required information. Contact the group that *** *** provided you with these symbols if you need this command to *** *** work. *** *** *** *** Type referenced: nt!_KPRCB *** *** *** ************************************************************************* ************************************************************************* *** *** *** *** *** Your debugger is not using the correct symbols *** *** *** *** In order for this command to work properly, your symbol path *** *** must point to .pdb files that have full type information. *** *** *** *** Certain .pdb files (such as the public OS symbols) do not *** *** contain the required information. Contact the group that *** *** provided you with these symbols if you need this command to *** *** work. *** *** *** *** Type referenced: nt!_KPRCB *** *** *** ************************************************************************* ********************************************************************* * Symbols can not be loaded because symbol path is not initialized. * * * * The Symbol Path can be set by: * * using the _NT_SYMBOL_PATH environment variable. * * using the -y <symbol_path> argument when starting the debugger. * * using .sympath and .sympath+ * ********************************************************************* ********************************************************************* * Symbols can not be loaded because symbol path is not initialized. * * * * The Symbol Path can be set by: * * using the _NT_SYMBOL_PATH environment variable. * * using the -y <symbol_path> argument when starting the debugger. * * using .sympath and .sympath+ * ********************************************************************* Probably caused by : aujasnkj.sys ( aujasnkj+22c7 ) Followup: MachineOwner we wszystkich bluesach które się pojawiły od ściągnięcia ww pliku jest: Probably caused by : aujasnkj.sys ( aujasnkj+22c7 )
Psycholandia komentarz 12 września 2009 komentarz 12 września 2009 Uruchamiasz OTL, i w okienko Custom Scans/Fixes wklejasz to: :Processesexplorer.exe:OTLO2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll File not foundO4 - HKLM..\Run: [NPSStartup] File not foundO16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - File not found:FilesC:\WINDOWS\System32\2d2ca2ce-704a-428c-8cbe-0736b29190aa.dll:Commands[emptytemp][start explorer][Reboot] Następnie klikasz RUN FIX. Program usunie te wpisy, zrestartuje się i da loga powstałego po usuwaniu, którego wkleisz. Co do BSODA: aujasnkj.sys Używasz programów, które tworzą wirtualny napęd? To sterownik od tego softu, co restart może pokazać się inny, ale jest tworzony prawdopodobnie przez ten program. Dlatego polecam obecny odinstalować i zainstalować jakiś zamiennik. Ten plik to był jakiś cheat do gry <wstyd> Rozumiem, że usunięty?
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.