x-kom hosting

Log do sprawdzenia (RSIT)

magnumek
utworzono
utworzono

Witam. Proszę o sprawdzenie loga. Od jakiegoś czasu komp zamula, wyskakują jakieś okienka (nie tylko pornograficzne) i zmieniają się ustawienia przeglądarki, ogółem komputer się dziwnie zachowuje. Dodam że antywirus nic nie wykrywa. Poniżej zamieszczam log.

[log]
info.txt logfile of random's system information tool 1.06 2009-10-17 12:36:47

======Uninstall list======

-->MsiExec.exe /X{2642BE09-1F9F-4E18-AAD4-0258B9BCE611}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
ACE Mega CoDecS Pack-->"C:\Program Files\ACE Mega CoDecS Pack\unins000.exe"
Ad-Aware-->"C:\Documents and Settings\All Users\Dane aplikacji\{EF63305C-BAD7-4144-9208-D65528260864}\Ad-AwareAE.exe" REMOVE=TRUE MODIFY=FALSE
Ad-Aware-->C:\Documents and Settings\All Users\Dane aplikacji\{EF63305C-BAD7-4144-9208-D65528260864}\Ad-AwareAE.exe
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9.1-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A91000000001}
Aktualizacja dla systemu Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Aktualizacja zabezpieczeń dla systemu Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB958470)-->"C:\WINDOWS\$NtUninstallKB958470$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB972260)-->"C:\WINDOWS\$NtUninstallKB972260$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB974455)-->"C:\WINDOWS\$NtUninstallKB974455$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Counter-Strike(TM)-->MsiExec.exe /I{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}
GameDesire-Pool & Snooker-->C:\Program Files\Ganymede\billiards_uninstall.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
hp officejet g series-->C:\WINDOWS\system32\hpocon09.exe /u 1253360832 /d "hp officejet g series"
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216015FF}
livebox tp-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FC7DDAAE-7F2B-4270-9BFD-5A130B667E9E}\Setup.exe" -l0x15
Media Access Startup-->"C:\Program Files\Media Access Startup\2.0.0.1050\unins000.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mozilla Firefox (3.5.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Nowe Gadu-Gadu-->C:\Program Files\Nowe Gadu-Gadu\Uninstall.exe
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
NVIDIA nView Desktop Manager-->C:\Program Files\NVIDIA Corporation\nView\nViewSetup.exe -uninstall
Poprawka dla systemu Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
Poprawka dla systemu Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Poprawka dla systemu Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x15 -removeonly
SAGEM Wi-Fi 11g USB adapter (driver)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E2AA331E-E10E-438C-B1C0-24B2FFD3D9C4}\Setup.exe" -l0x9
SAGEM Wi-Fi 11g USB adapter (tool)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6266AB37-350F-483C-88D2-C530ACA42645}\Setup.exe" -l0x9
Steam(TM)-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
TrackMania Nations Forever-->"C:\Program Files\Valve\Steam\steam.exe" steam://uninstall/11020
Visual C++ 2008 x86 Runtime - (v9.0.30729)-->MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5D14231E27}
Visual C++ 2008 x86 Runtime - v9.0.30729.01-->C:\WINDOWS\system32\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D14231E27} /qb+ REBOOTPROMPT=""
VSO Image Resizer 3.0.0.51-->"C:\Program Files\VSO\Image Resizer\unins000.exe"
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"

======System event log======

Computer Name: MAGNUM0
Event Code: 7035
Message: Do usługi Zarządzanie aplikacjami został pomyślnie wysłany kod sterowania uruchom.

Record Number: 2472
Source Name: Service Control Manager
Time Written: 20090919133611.000000+120
Event Type: informacje
User: MAGNUM0\Kris

Computer Name: MAGNUM0
Event Code: 7023
Message: Usługa Zarządzanie aplikacjami zakończyła działanie; wystąpił następujący błąd:
Nie można odnaleźć określonego modułu.


Record Number: 2471
Source Name: Service Control Manager
Time Written: 20090919133610.000000+120
Event Type: błąd
User:

Computer Name: MAGNUM0
Event Code: 7036
Message: Usługa Zarządzanie aplikacjami weszła w stan zatrzymania.

Record Number: 2470
Source Name: Service Control Manager
Time Written: 20090919133610.000000+120
Event Type: informacje
User:

Computer Name: MAGNUM0
Event Code: 7035
Message: Do usługi Zarządzanie aplikacjami został pomyślnie wysłany kod sterowania uruchom.

Record Number: 2469
Source Name: Service Control Manager
Time Written: 20090919133610.000000+120
Event Type: informacje
User: MAGNUM0\Kris

Computer Name: MAGNUM0
Event Code: 7023
Message: Usługa Zarządzanie aplikacjami zakończyła działanie; wystąpił następujący błąd:
Nie można odnaleźć określonego modułu.


Record Number: 2468
Source Name: Service Control Manager
Time Written: 20090919133610.000000+120
Event Type: błąd
User:

=====Application event log=====

Computer Name: KRIS-87482C0CC7
Event Code: 1000
Message: Liczniki wydajności dla usługi ContentIndex (ContentIndex) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 5
Source Name: LoadPerf
Time Written: 20090807191223.000000+120
Event Type: informacje
User:

Computer Name: KRIS-87482C0CC7
Event Code: 1000
Message: Liczniki wydajności dla usługi TermService (Usługi terminalowe) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 4
Source Name: LoadPerf
Time Written: 20090807191221.000000+120
Event Type: informacje
User:

Computer Name: KRIS-87482C0CC7
Event Code: 1000
Message: Liczniki wydajności dla usługi RemoteAccess (Routing i dostęp zdalny) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 3
Source Name: LoadPerf
Time Written: 20090807191125.000000+120
Event Type: informacje
User:

Computer Name: KRIS-87482C0CC7
Event Code: 1000
Message: Liczniki wydajności dla usługi PSched (PSched) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 2
Source Name: LoadPerf
Time Written: 20090807191104.000000+120
Event Type: informacje
User:

Computer Name: KRIS-87482C0CC7
Event Code: 1000
Message: Liczniki wydajności dla usługi RSVP (QoS RSVP) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 1
Source Name: LoadPerf
Time Written: 20090807191104.000000+120
Event Type: informacje
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel
"PROCESSOR_REVISION"=0f0d
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------
[/log]

[log]
Logfile of random's system information tool 1.06 (written by random/random)
Run by Kris at 2009-10-17 12:36:45
Microsoft Windows XP Home Edition Dodatek Service Pack 2
System drive C: has 25 GB (61%) free of 41 GB
Total RAM: 2047 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:36:46, on 2009-10-17
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Hewlett-Packard\AiO\hp officejet g series\Bin\hpoavn07.exe
C:\Program Files\SAGEM Wi-Fi 11g USB adapter LAN Utility\WLANUTL.exe
C:\PROGRA~1\HEWLET~1\AiO\Shared\Bin\hpoevm07.exe
C:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOSTS07.exe
C:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOFXM07.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Kris\Moje dokumenty\Pobieranie\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Kris.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.gamingharbor.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Media Access Startup - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - C:\Program Files\Media Access Startup\2.0.0.1050\HPIEAddOn.dll
O2 - BHO: NP Helper Class - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - C:\Program Files\Internet Saving Optimizer\3.7.2.4650\NPIEAddOn.dll
O2 - BHO: System Search Dispatcher - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - C:\Program Files\System Search Dispatcher\1.4.1.1010\ssd.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\RunOnce: [WiseStubReboot] MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I "C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MSI" TRANSFORMS="C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MST" WISE_SETUP_EXE_PATH="c:\nvidia\displaydriver\190.38\international\PhysX_9.09.0428_SystemSoftware.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HPAiODevice(hp officejet g series) - 1.lnk = C:\Program Files\Hewlett-Packard\AiO\hp officejet g series\Bin\hpoavn07.exe
O4 - Global Startup: SAGEM Wi-Fi 11g USB adapter LAN Utility.lnk = ?
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Sukoku Service - Unknown owner - C:\Documents and Settings\All Users\Dane aplikacji\Sukoku\sukoku119.exe (file missing)

--
End of file - 5474 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25B8D58C-B0CB-46b0-BA64-05B3804E4E86}]
Media Access Startup - C:\Program Files\Media Access Startup\2.0.0.1050\HPIEAddOn.dll [2009-09-08 221184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{35B8D58C-B0CB-46b0-BA64-05B3804E4E86}]
NP Helper Class - C:\Program Files\Internet Saving Optimizer\3.7.2.4650\NPIEAddOn.dll [2009-09-03 196608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CDBFB47B-58A8-4111-BF95-06178DCE326D}]
System Search Dispatcher - C:\Program Files\System Search Dispatcher\1.4.1.1010\ssd.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-13 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-13 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2009-07-09 1657376]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-07-14 13877248]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-07-14 86016]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-07-20 18670592]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-13 149280]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WiseStubReboot"=MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MSI TRANSFORMS=C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MST WISE_SETUP_EXE_PATH=c:\nvidia\displaydriver\190.38\international\PhysX_9.09.0428_SystemSoftware.exe []

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
HPAiODevice(hp officejet g series) - 1.lnk - C:\Program Files\Hewlett-Packard\AiO\hp officejet g series\Bin\hpoavn07.exe
SAGEM Wi-Fi 11g USB adapter LAN Utility.lnk - C:\Program Files\SAGEM Wi-Fi 11g USB adapter LAN Utility\WLANUTL.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Valve\Steam\SteamApps\keny72\condition zero\hl.exe"="C:\Program Files\Valve\Steam\SteamApps\keny72\condition zero\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Nowe Gadu-Gadu\gg.exe"="C:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Enabled:Nowe Gadu-Gadu"
"C:\Program Files\Valve\Steam\SteamApps\keny72\counter-strike\hl.exe"="C:\Program Files\Valve\Steam\SteamApps\keny72\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForever.exe"="C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForever.exe:*:Enabled:TrackMania Nations Forever"
"C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForeverLauncher.exe"="C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForeverLauncher.exe:*:Enabled:TrackMania Nations Forever"
"C:\Program Files\Metin2_PL\metin2.bin"="C:\Program Files\Metin2_PL\metin2.bin:*:Enabled:metin2"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2009-10-17 12:36:45 ----D---- C:\rsit
2009-10-17 12:21:05 ----D---- C:\Program Files\Trend Micro
2009-10-17 12:16:05 ----D---- C:\Documents and Settings\Kris\Dane aplikacji\VSO
2009-10-17 12:15:49 ----D---- C:\Program Files\VSO
2009-10-16 22:40:59 ----HDC---- C:\WINDOWS\$NtUninstallKB974455$
2009-10-16 22:40:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2009-10-16 22:40:51 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2009-10-16 22:40:06 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2009-10-16 22:40:03 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2009-10-16 22:39:59 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2009-10-16 22:39:55 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2009-10-16 22:39:48 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2009-10-16 22:39:43 ----HDC---- C:\WINDOWS\$NtUninstallKB973525$
2009-10-16 22:39:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2009-09-29 22:15:39 ----D---- C:\CtJbFW
2009-09-26 14:12:21 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-09-19 13:47:12 ----A---- C:\WINDOWS\DevMgr.ini
2009-09-19 13:44:27 ----A---- C:\WINDOWS\system32\hpocon09.exe
2009-09-19 13:44:27 ----A---- C:\WINDOWS\system32\hpocoi08.dll
2009-09-19 13:43:51 ----D---- C:\WINDOWS\AiOTemp
2009-09-19 13:41:16 ----D---- C:\WINDOWS\system32\NtmsData
2009-09-19 13:28:17 ----A---- C:\WINDOWS\Hposcv07.INI
2009-09-19 13:27:59 ----D---- C:\Program Files\Hewlett-Packard
2009-09-19 13:27:39 ----A---- C:\WINDOWS\system32\hh.exe
2009-09-19 13:27:21 ----A---- C:\WINDOWS\system32\lsdelete.exe

======List of files/folders modified in the last 1 months======

2009-10-17 12:21:05 ----RD---- C:\Program Files
2009-10-17 12:16:14 ----D---- C:\WINDOWS\Prefetch
2009-10-17 12:12:33 ----D---- C:\Program Files\Mozilla Firefox
2009-10-17 10:28:55 ----D---- C:\WINDOWS\Temp
2009-10-17 10:26:09 ----D---- C:\WINDOWS
2009-10-17 10:25:53 ----D---- C:\WINDOWS\system32
2009-10-16 22:41:17 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-10-16 22:41:09 ----HD---- C:\WINDOWS\inf
2009-10-16 22:41:06 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-10-16 22:41:05 ----D---- C:\Program Files\Internet Explorer
2009-10-16 22:40:55 ----D---- C:\WINDOWS\WinSxS
2009-10-16 22:40:55 ----A---- C:\WINDOWS\imsins.BAK
2009-10-16 22:39:54 ----D---- C:\WINDOWS\system32\CatRoot2
2009-10-16 22:39:46 ----HD---- C:\WINDOWS\$hf_mig$
2009-10-11 21:06:08 ----D---- C:\Program Files\Sukoku
2009-10-02 20:01:57 ----A---- C:\WINDOWS\system32\MRT.exe
2009-10-02 18:00:31 ----A---- C:\WINDOWS\system.ini
2009-09-25 07:58:06 ----A---- C:\WINDOWS\system32\wininet.dll
2009-09-25 07:58:06 ----A---- C:\WINDOWS\system32\urlmon.dll
2009-09-25 07:58:06 ----A---- C:\WINDOWS\system32\shlwapi.dll
2009-09-25 07:58:05 ----A---- C:\WINDOWS\system32\shdocvw.dll
2009-09-25 07:58:05 ----A---- C:\WINDOWS\system32\pngfilt.dll
2009-09-25 07:58:05 ----A---- C:\WINDOWS\system32\mstime.dll
2009-09-25 07:58:05 ----A---- C:\WINDOWS\system32\msrating.dll
2009-09-25 07:58:04 ----A---- C:\WINDOWS\system32\mshtmled.dll
2009-09-25 07:58:04 ----A---- C:\WINDOWS\system32\mshtml.dll
2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\jsproxy.dll
2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\inseng.dll
2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\iepeers.dll
2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\ieencode.dll
2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\extmgr.dll
2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\dxtrans.dll
2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\danim.dll
2009-09-25 07:58:02 ----A---- C:\WINDOWS\system32\cdfview.dll
2009-09-25 07:58:02 ----A---- C:\WINDOWS\system32\browseui.dll
2009-09-19 13:44:55 ----D---- C:\WINDOWS\system32\CatRoot
2009-09-19 13:44:45 ----SHD---- C:\WINDOWS\Installer
2009-09-19 13:44:15 ----D---- C:\WINDOWS\system32\drivers
2009-09-19 13:28:23 ----D---- C:\WINDOWS\system32\mui
2009-09-18 20:31:58 ----SD---- C:\Documents and Settings\Kris\Dane aplikacji\Microsoft
2009-09-18 12:05:18 ----A---- C:\WINDOWS\system32\xpsp3res.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2006-03-02 40320]
R1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2006-03-02 14848]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2006-03-02 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-07-20 5795328]
R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 msloop;Sterownik karty Microsoft Loopback; C:\WINDOWS\system32\DRIVERS\loop.sys [2001-08-17 4992]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-12 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-07-14 7741664]
R3 SG760_XP;SAGEM 802.11g XG760 1211 Driver; C:\WINDOWS\system32\DRIVERS\WlanUZXP.sys [2005-07-13 260608]
R3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-04 59264]
R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2006-03-02 31616]
R3 usbehci;Sterownik Miniport rozszerzonego kontrolera hosta USB 2.0 Microsoft; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-03-02 26624]
R3 usbhub;Koncentrator z obsługą USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2006-03-02 57600]
R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2006-03-02 20480]
R3 ZDPNDIS5;ZDPNDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\ZDPNDIS5.SYS []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 Arp1394;Protokół klienta 1394 ARP; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2006-03-02 60800]
S3 dot4;Sterownik MS IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2004-08-03 207360]
S3 Dot4Print;Sterownik klasy drukowania dla IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 Dot4Scan;Sterownik klasy skanowania dla IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys [2001-08-17 8704]
S3 dot4usb;Filtr Dot4USB Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-10-26 23936]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 NIC1394;Sterownik sieci 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2006-03-02 61824]
S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 ZDCndis5;ZDCndis5 Protocol Driver; \??\C:\WINDOWS\system32\ZDCndis5.SYS []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-13 153376]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-10-12 1028432]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-07-14 168004]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
S2 Sukoku Service;Sukoku Service; C:\Documents and Settings\All Users\Dane aplikacji\Sukoku\sukoku119.exe C:\Program Files\Sukoku\sukoku.dll Service []

-----------------EOF-----------------
[/log]

MarekM25
komentarz
komentarz

Daj loga z [url="http://www.forumpc.pl/index.php?showtopic=104338"]OTListIt2[/url] to się załatwi wszystko za jednym skryptem.

magnumek
komentarz
komentarz

Ok. Poniżej wstawiam logi z OTL i DDS.

Logi z OTL:
[log]
#

OTL Extras logfile created on: 2009-10-17 12:55:52 - Run 1

#

OTL by OldTimer - Version 3.0.21.0 Folder = C:\Documents and Settings\Kris\Moje dokumenty\Pobieranie

#

Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

#

Internet Explorer (Version = 6.0.2900.2180)

#

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

#



#

2,00 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 69,65% Memory free

#

3,85 Gb Paging File | 3,35 Gb Available in Paging File | 87,17% Paging File free

#

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

#



#

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

#

Drive C: | 40,00 Gb Total Space | 24,29 Gb Free Space | 60,72% Space Free | Partition Type: NTFS

#

Drive D: | 192,87 Gb Total Space | 192,80 Gb Free Space | 99,96% Space Free | Partition Type: NTFS

#

E: Drive not present or media not loaded

#

F: Drive not present or media not loaded

#

G: Drive not present or media not loaded

#

H: Drive not present or media not loaded

#

I: Drive not present or media not loaded

#



#

Computer Name: MAGNUM0

#

Current User Name: Kris

#

Logged in as Administrator.

#



#

Current Boot Mode: Normal

#

Scan Mode: All users

#

Company Name Whitelist: Off

#

Skip Microsoft Files: Off

#

File Age = 30 Days

#

Output = Standard

#



#

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]

#



#



#

[color=#E56717]========== File Associations ==========[/color]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

#

.chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)

#

.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

#



#

[HKEY_USERS\S-1-5-21-1614895754-1220945662-682003330-1004\SOFTWARE\Classes\<extension>]

#

.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

#



#

[color=#E56717]========== Shell Spawning ==========[/color]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

#

batfile [open] -- "%1" %* File not found

#

chm.file [open] -- "C:\WINDOWS\hh.exe" %1 (Microsoft Corporation)

#

cmdfile [open] -- "%1" %* File not found

#

comfile [open] -- "%1" %* File not found

#

exefile [open] -- "%1" %* File not found

#

htmlfile [edit] -- Reg Error: Key error.

#

htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)

#

htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)

#

http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)

#

https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)

#

piffile [open] -- "%1" %* File not found

#

regfile [merge] -- Reg Error: Key error.

#

scrfile [config] -- "%1" File not found

#

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)

#

scrfile [open] -- "%1" /S File not found

#

txtfile [edit] -- Reg Error: Key error.

#

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

#

Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

#

Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

#

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

#

Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)

#

CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

#



#

[color=#E56717]========== Security Center Settings ==========[/color]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

#

"FirstRunDisabled" = 1

#

"AntiVirusDisableNotify" = 0

#

"FirewallDisableNotify" = 0

#

"UpdatesDisableNotify" = 0

#

"AntiVirusOverride" = 0

#

"FirewallOverride" = 0

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

#



#

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

#



#

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

#

"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004

#

"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005

#

"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001

#

"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

#



#

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

#



#

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

#

"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004

#

"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005

#

"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001

#

"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

#



#

[color=#E56717]========== Authorized Applications List ==========[/color]

#



#

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

#



#

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

#

"C:\Program Files\Valve\Steam\SteamApps\keny72\condition zero\hl.exe" = C:\Program Files\Valve\Steam\SteamApps\keny72\condition zero\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)

#

"C:\Program Files\Nowe Gadu-Gadu\gg.exe" = C:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Enabled:Nowe Gadu-Gadu -- (GG Network S.A.)

#

"C:\Program Files\Valve\Steam\SteamApps\keny72\counter-strike\hl.exe" = C:\Program Files\Valve\Steam\SteamApps\keny72\counter-strike\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)

#

"C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForever.exe" = C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForever.exe:*:Enabled:TrackMania Nations Forever -- ()

#

"C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForeverLauncher.exe" = C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForeverLauncher.exe:*:Enabled:TrackMania Nations Forever -- ()

#

"C:\Program Files\Metin2_PL\metin2.bin" = C:\Program Files\Metin2_PL\metin2.bin:*:Enabled:metin2 -- ()

#



#



#

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

#



#

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

#

"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM)

#

"{16B6279B-9FF5-41fb-8BF9-404324F5DD1F}}_is1" = Media Access Startup

#

"{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java(TM) 6 Update 15

#

"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

#

"{3EE51BAD-9916-49C7-90BA-3D500B031E0C}_is1" = VSO Image Resizer 3.0.0.51

#

"{6266AB37-350F-483C-88D2-C530ACA42645}" = SAGEM Wi-Fi 11g USB adapter (tool)

#

"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable

#

"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1

#

"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware

#

"{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}" = Counter-Strike(TM)

#

"{E2AA331E-E10E-438C-B1C0-24B2FFD3D9C4}" = SAGEM Wi-Fi 11g USB adapter (driver)

#

"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver

#

"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)

#

"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01

#

"{FC7DDAAE-7F2B-4270-9BFD-5A130B667E9E}" = livebox tp

#

"{FFFF6D5C-E2F1-4B40-BC89-8923312E89EB}}_is1" = ACE Mega CoDecS Pack

#

"Ad-Aware" = Ad-Aware

#

"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX

#

"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin

#

"avast!" = avast! Antivirus

#

"GameDesire-Pool & Snooker" = GameDesire-Pool & Snooker

#

"HijackThis" = HijackThis 2.0.2

#

"hp officejet g series 1253360832" = hp officejet g series

#

"Mozilla Firefox (3.5.3)" = Mozilla Firefox (3.5.3)

#

"Nowe Gadu-Gadu" = Nowe Gadu-Gadu

#

"NVIDIA Drivers" = NVIDIA Drivers

#

"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager

#

"Steam App 11020" = TrackMania Nations Forever

#

"WinRAR archiver" = Archiwizator WinRAR

#



#

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

#



#

[ Application Events ]

#

Error - 2009-08-14 02:55:02 | Computer Name = KRIS-87482C0CC7 | Source = Application Hang | ID = 1002

#

Description = Aplikacja zawieszająca firefox.exe, wersja 1.9.1.3497, moduł zawieszenia

#

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

#



#

Error - 2009-08-15 18:44:04 | Computer Name = KRIS-87482C0CC7 | Source = Application Error | ID = 1000

#

Description = Aplikacja powodująca błąd hl.exe, wersja 1.1.1.1, moduł powodujący

#

błąd mss32.dll, wersja 3.0.0.0, adres błędu 0x000147fc.

#



#

Error - 2009-08-17 15:52:20 | Computer Name = KRIS-87482C0CC7 | Source = Application Hang | ID = 1002

#

Description = Aplikacja zawieszająca hl.exe, wersja 1.1.1.1, moduł zawieszenia hungapp,

#

wersja 0.0.0.0, adres zawieszenia 0x00000000.

#



#

Error - 2009-08-18 11:58:20 | Computer Name = KRIS-87482C0CC7 | Source = Application Hang | ID = 1002

#

Description = Aplikacja zawieszająca Steam.exe, wersja 1.0.0.0, moduł zawieszenia

#

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

#



#

Error - 2009-08-19 15:34:18 | Computer Name = KRIS-87482C0CC7 | Source = EventSystem | ID = 4609

#

Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył

#

zły kod powrotu. HRESULT to 8007041F z w wierszu 44 z d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp.

#

Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą

#



#

Error - 2009-08-20 01:15:12 | Computer Name = KRIS-87482C0CC7 | Source = EventSystem | ID = 4609

#

Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył

#

zły kod powrotu. HRESULT to 8007041F z w wierszu 44 z d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp.

#

Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą

#



#

Error - 2009-08-21 03:37:09 | Computer Name = KRIS-87482C0CC7 | Source = EventSystem | ID = 4609

#

Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył

#

zły kod powrotu. HRESULT to 8007041F z w wierszu 44 z d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp.

#

Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą

#



#

Error - 2009-08-23 07:39:13 | Computer Name = KRIS-87482C0CC7 | Source = EventSystem | ID = 4609

#

Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył

#

zły kod powrotu. HRESULT to 8007041F z w wierszu 44 z d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp.

#

Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą

#



#

Error - 2009-08-23 12:14:18 | Computer Name = KRIS-87482C0CC7 | Source = EventSystem | ID = 4609

#

Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył

#

zły kod powrotu. HRESULT to 8007041F z w wierszu 44 z d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp.

#

Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą

#



#

Error - 2009-09-02 14:09:09 | Computer Name = MAGNUM0 | Source = EventSystem | ID = 4609

#

Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył

#

zły kod powrotu. HRESULT to 8007041F z w wierszu 44 z d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp.

#

Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą

#



#

[ System Events ]

#

Error - 2009-09-19 07:36:10 | Computer Name = MAGNUM0 | Source = Service Control Manager | ID = 7023

#

Description = Usługa Zarządzanie aplikacjami zakończyła działanie; wystąpił następujący

#

błąd: %%126

#



#

Error - 2009-09-19 07:36:11 | Computer Name = MAGNUM0 | Source = Service Control Manager | ID = 7023

#

Description = Usługa Zarządzanie aplikacjami zakończyła działanie; wystąpił następujący

#

błąd: %%126

#



#



#

< End of report >
[/log]
[log]
#

OTL logfile created on: 2009-10-17 12:55:52 - Run 1

#

OTL by OldTimer - Version 3.0.21.0 Folder = C:\Documents and Settings\Kris\Moje dokumenty\Pobieranie

#

Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

#

Internet Explorer (Version = 6.0.2900.2180)

#

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

#



#

2,00 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 69,65% Memory free

#

3,85 Gb Paging File | 3,35 Gb Available in Paging File | 87,17% Paging File free

#

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

#



#

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

#

Drive C: | 40,00 Gb Total Space | 24,29 Gb Free Space | 60,72% Space Free | Partition Type: NTFS

#

Drive D: | 192,87 Gb Total Space | 192,80 Gb Free Space | 99,96% Space Free | Partition Type: NTFS

#

E: Drive not present or media not loaded

#

F: Drive not present or media not loaded

#

G: Drive not present or media not loaded

#

H: Drive not present or media not loaded

#

I: Drive not present or media not loaded

#



#

Computer Name: MAGNUM0

#

Current User Name: Kris

#

Logged in as Administrator.

#



#

Current Boot Mode: Normal

#

Scan Mode: All users

#

Company Name Whitelist: Off

#

Skip Microsoft Files: Off

#

File Age = 30 Days

#

Output = Standard

#



#

[color=#E56717]========== Processes (SafeList) ==========[/color]

#



#

PRC - [2009-10-17 12:53:21 | 00,521,216 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kris\Moje dokumenty\Pobieranie\OTL.exe

#

PRC - [2009-10-13 17:39:00 | 08,550,696 | ---- | M] (VSO Software SARL) -- C:\Program Files\VSO\Image Resizer\Resize.exe

#

PRC - [2009-10-12 22:44:35 | 00,520,024 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe

#

PRC - [2009-10-12 22:44:33 | 01,028,432 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe

#

PRC - [2009-09-13 19:42:04 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

#

PRC - [2009-08-13 21:31:25 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe

#

PRC - [2009-08-13 21:31:25 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe

#

PRC - [2009-07-20 11:12:02 | 18,670,592 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE

#

PRC - [2009-07-14 13:34:58 | 00,168,004 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe

#

PRC - [2009-02-06 18:39:29 | 00,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\wmiprvse.exe

#

PRC - [2009-02-05 22:08:45 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe

#

PRC - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe

#

PRC - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

#

PRC - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

#

PRC - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

#

PRC - [2006-03-02 14:00:00 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE

#

PRC - [2006-03-02 14:00:00 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\unsecapp.exe

#

PRC - [2005-07-14 10:50:50 | 00,835,584 | ---- | M] ( ) -- C:\Program Files\SAGEM Wi-Fi 11g USB adapter LAN Utility\WLANUTL.exe

#

PRC - [2002-11-20 18:37:46 | 00,188,416 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOFXM07.exe

#

PRC - [2002-11-20 18:09:10 | 00,294,912 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOSTS07.exe

#

PRC - [2002-11-20 17:48:24 | 00,299,008 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\AiO\Shared\Bin\hpoevm07.exe

#

PRC - [2002-11-20 17:15:00 | 00,151,552 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\AiO\hp officejet g series\Bin\hpoavn07.exe

#



#

[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

#



#

SRV - File not found -- -- (Sukoku Service [Auto | Stopped])

#

SRV - [2009-10-12 22:44:33 | 01,028,432 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service [Auto | Running])

#

SRV - [2009-08-13 21:31:25 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])

#

SRV - [2009-07-14 13:34:58 | 00,168,004 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (nvsvc [Auto | Running])

#

SRV - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])

#

SRV - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running])

#

SRV - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])

#

SRV - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])

#

SRV - [2006-03-02 14:00:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])

#



#

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

#



#

DRV - [2009-07-20 19:08:26 | 05,795,328 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Running])

#

DRV - [2009-07-14 20:54:00 | 07,741,664 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])

#

DRV - [2009-07-03 16:49:08 | 00,064,160 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd [Boot | Running])

#

DRV - [2009-02-05 22:08:10 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2 [Auto | Running])

#

DRV - [2009-02-05 22:07:23 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP [System | Running])

#

DRV - [2009-02-05 22:07:12 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\DRIVERS\aswFsBlk.sys -- (aswFsBlk [Auto | Running])

#

DRV - [2009-02-05 22:06:20 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi [System | Running])

#

DRV - [2009-02-05 22:06:10 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr [On_Demand | Running])

#

DRV - [2009-02-05 22:05:11 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4 [System | Running])

#

DRV - [2008-08-05 20:10:12 | 01,684,736 | ---- | M] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys -- (Ambfilt [On_Demand | Stopped])

#

DRV - [2006-03-02 14:00:00 | 00,027,440 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])

#

DRV - [2006-03-02 14:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])

#

DRV - [2006-01-04 15:41:48 | 01,389,056 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys -- (Monfilt [On_Demand | Stopped])

#

DRV - [2005-07-13 16:38:14 | 00,017,151 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\ZDPNDIS5.SYS -- (ZDPNDIS5 [On_Demand | Running])

#

DRV - [2005-07-13 16:37:18 | 00,260,608 | ---- | M] (ZyDAS Technology Corporation) -- C:\WINDOWS\System32\DRIVERS\WlanUZXP.sys -- (SG760_XP [On_Demand | Running])

#

DRV - [2005-01-07 17:07:18 | 00,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])

#

DRV - [2004-08-12 10:00:00 | 00,005,810 | R--- | M] () -- C:\WINDOWS\System32\DRIVERS\ASACPI.sys -- (MTsensor [On_Demand | Running])

#

DRV - [2004-08-04 01:07:56 | 00,059,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Running])

#

DRV - [2001-08-17 21:53:42 | 00,004,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DRIVERS\loop.sys -- (msloop [On_Demand | Running])

#



#

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]

#



#



#

[color=#E56717]========== Internet Explorer ==========[/color]

#



#

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

#

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

#

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

#

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

#

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home

#

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

#

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

#



#



#

IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

#



#

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

#



#



#



#

IE - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm

#

IE - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

#

IE - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.gamingharbor.com

#

IE - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\S-1-5-21-1614895754-1220945662-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

#



#

[color=#E56717]========== FireFox ==========[/color]

#



#

FF - prefs.js..browser.startup.homepage: "http://www.theprizeday.com/today.php|http://www.onet.pl/"

#

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15

#

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

#

FF - prefs.js..extensions.enabledItems: {0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}:2.0.0.1050

#

FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3

#



#

FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-08-13 21:31:26 | 00,000,000 | ---D | M]

#

FF - HKLM\software\mozilla\Firefox\extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: C:\Program Files\Internet Saving Optimizer\3.7.2.4650\FF [2009-09-09 11:36:19 | 00,000,000 | ---D | M]

#

FF - HKLM\software\mozilla\Firefox\extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}: C:\Program Files\Media Access Startup\2.0.0.1050\FF [2009-09-09 11:36:24 | 00,000,000 | ---D | M]

#

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-09-24 14:54:35 | 00,000,000 | ---D | M]

#

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-09-13 19:42:09 | 00,000,000 | ---D | M]

#



#

[2009-08-07 22:23:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Kris\Dane aplikacji\mozilla\Extensions

#

[2009-08-07 22:23:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Kris\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}

#

[2009-08-07 22:23:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Kris\Dane aplikacji\mozilla\Firefox\Profiles\tetleix7.default\extensions

#

[2009-10-16 15:39:52 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions

#

[2009-10-11 21:05:07 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}

#

[2009-09-13 19:42:04 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

#

[2009-08-13 21:31:35 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

#

[2009-09-13 19:42:04 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll

#

[2009-09-13 19:42:04 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll

#

[2009-08-13 21:31:25 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll

#

[2009-06-15 11:14:40 | 00,120,296 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npganymedenet.dll

#

[2009-09-13 19:42:07 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll

#

[2009-02-27 12:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll

#

[2009-07-31 00:44:16 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml

#

[2009-07-31 00:44:16 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml

#

[2009-07-31 01:45:26 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml

#

[2009-07-31 00:44:16 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml

#

[2009-07-31 00:44:16 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml

#

[2009-09-30 19:13:51 | 00,002,381 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\sukoku119.xml

#

[2009-07-31 00:44:16 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml

#

[2009-07-31 00:44:16 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

#



#

O1 HOSTS File: (742 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

#

O1 - Hosts: 127.0.0.1 localhost

#

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

#

O2 - BHO: (Media Access Startup) - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - C:\Program Files\Media Access Startup\2.0.0.1050\HPIEAddOn.dll ()

#

O2 - BHO: (NP Helper Class) - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - C:\Program Files\Internet Saving Optimizer\3.7.2.4650\NPIEAddOn.dll ()

#

O2 - BHO: (System Search Dispatcher) - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - C:\Program Files\System Search Dispatcher\1.4.1.1010\ssd.dll File not found

#

O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

#

O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)

#

O3 - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\..\Toolbar\WebBrowser: (no name) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - No CLSID value found.

#

O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)

#

O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)

#

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)

#

O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)

#

O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()

#

O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)

#

O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)

#

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HPAiODevice(hp officejet g series) - 1.lnk = C:\Program Files\Hewlett-Packard\AiO\hp officejet g series\Bin\hpoavn07.exe (Hewlett-Packard Co.)

#

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\SAGEM Wi-Fi 11g USB adapter LAN Utility.lnk = C:\Program Files\SAGEM Wi-Fi 11g USB adapter LAN Utility\WLANUTL.exe ( )

#

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

#

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0

#

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =

#

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =

#

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1

#

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1

#

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

#

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

#

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

#

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

#

O7 - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

#

O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

#

O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

#

O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.

#

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)

#

O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)

#

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)

#

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)

#

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

#

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

#

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

#

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

#

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

#

O18 - Protocol\Handler\ipp - No CLSID value found

#

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

#

O18 - Protocol\Handler\msdaipp - No CLSID value found

#

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

#

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

#

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)

#

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

#

O31 - SafeBoot: AlternateShell - cmd.exe

#

O32 - HKLM CDRom: AutoRun - 1

#

O32 - AutoRun File - [2009-08-07 19:15:14 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

#

O34 - HKLM BootExecute: (autocheck) - File not found

#

O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)

#

O34 - HKLM BootExecute: (*) - File not found

#

O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()

#

O35 - comfile [open] -- "%1" %* File not found

#

O35 - exefile [open] -- "%1" %* File not found

#



#

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

#



#

[1 C:\WINDOWS\System32\*.tmp files]

#

[4 C:\WINDOWS\*.tmp files]

#

[2009-10-17 12:16:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Dane aplikacji\VSO

#

[2009-09-19 13:27:59 | 00,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard

#

[2009-10-17 12:21:05 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro

#

[2009-10-17 12:15:49 | 00,000,000 | ---D | C] -- C:\Program Files\VSO

#

[2009-10-17 12:36:45 | 00,000,000 | ---D | C] -- C:\rsit

#

[2009-10-17 12:16:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\Zmiejszone

#

[2009-10-16 15:24:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\Nowy folder (3)

#

[2009-10-16 13:22:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\Egipt

#

[2009-09-29 22:15:39 | 00,000,000 | ---D | C] -- C:\CtJbFW

#

[2009-09-26 14:12:21 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpns.dll

#

[2009-09-22 14:21:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\101NCD40

#

[2009-09-22 14:20:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\100NCD40

#

[2009-09-19 13:44:27 | 00,090,112 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpocon09.exe

#

[2009-09-19 13:44:27 | 00,022,139 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\hpocoi08.dll

#

[2009-09-19 13:43:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\AiOTemp

#

[2009-09-19 13:41:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData

#

[2009-09-19 13:27:39 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hh.exe

#

[2009-09-18 20:03:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\Nowy folder (2)

#

[2009-09-18 19:46:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\Nowy folder

#



#

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

#



#

[1 C:\WINDOWS\System32\*.tmp files]

#

[4 C:\WINDOWS\*.tmp files]

#

[2009-10-17 12:15:52 | 00,000,773 | ---- | M] () -- C:\Documents and Settings\Kris\Pulpit\VSO Image Resizer.lnk

#

[2009-10-17 10:26:10 | 00,243,457 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml

#

[2009-10-17 10:25:59 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

#

[2009-10-17 10:25:55 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

#

[2009-10-16 22:40:55 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK

#

[2009-10-16 22:39:16 | 07,435,550 | -H-- | M] () -- C:\Documents and Settings\Kris\Ustawienia lokalne\Dane aplikacji\IconCache.db

#

[2009-10-16 15:32:59 | 00,005,120 | ---- | M] () -- C:\Documents and Settings\Kris\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

#

[2009-10-16 13:09:36 | 00,013,676 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

#

[2009-10-12 22:45:17 | 00,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job

#

[2009-10-02 20:01:57 | 25,198,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe

#

[2009-10-02 18:00:31 | 00,000,231 | ---- | M] () -- C:\WINDOWS\system.ini

#

[2009-09-25 07:58:06 | 00,664,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wininet.dll

#

[2009-09-25 07:58:06 | 00,664,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll

#

[2009-09-25 07:58:06 | 00,625,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\urlmon.dll

#

[2009-09-25 07:58:06 | 00,625,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll

#

[2009-09-25 07:58:06 | 00,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shlwapi.dll

#

[2009-09-25 07:58:06 | 00,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shlwapi.dll

#

[2009-09-25 07:58:05 | 01,506,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shdocvw.dll

#

[2009-09-25 07:58:05 | 01,506,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shdocvw.dll

#

[2009-09-25 07:58:05 | 00,532,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll

#

[2009-09-25 07:58:05 | 00,532,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll

#

[2009-09-25 07:58:05 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrating.dll

#

[2009-09-25 07:58:05 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrating.dll

#

[2009-09-25 07:58:05 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pngfilt.dll

#

[2009-09-25 07:58:05 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pngfilt.dll

#

[2009-09-25 07:58:04 | 03,084,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.dll

#

[2009-09-25 07:58:04 | 03,084,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll

#

[2009-09-25 07:58:04 | 00,449,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtmled.dll

#

[2009-09-25 07:58:04 | 00,449,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll

#

[2009-09-25 07:58:03 | 01,055,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\danim.dll

#

[2009-09-25 07:58:03 | 01,055,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\danim.dll

#

[2009-09-25 07:58:03 | 00,357,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtmsft.dll

#

[2009-09-25 07:58:03 | 00,357,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtmsft.dll

#

[2009-09-25 07:58:03 | 00,251,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll

#

[2009-09-25 07:58:03 | 00,251,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll

#

[2009-09-25 07:58:03 | 00,205,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtrans.dll

#

[2009-09-25 07:58:03 | 00,205,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtrans.dll

#

[2009-09-25 07:58:03 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inseng.dll

#

[2009-09-25 07:58:03 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inseng.dll

#

[2009-09-25 07:58:03 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll

#

[2009-09-25 07:58:03 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieencode.dll

#

[2009-09-25 07:58:03 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\extmgr.dll

#

[2009-09-25 07:58:03 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\extmgr.dll

#

[2009-09-25 07:58:03 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll

#

[2009-09-25 07:58:03 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll

#

[2009-09-25 07:58:02 | 01,023,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browseui.dll

#

[2009-09-25 07:58:02 | 01,023,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browseui.dll

#

[2009-09-25 07:58:02 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdfview.dll

#

[2009-09-25 07:58:02 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdfview.dll

#

[2009-09-25 07:45:02 | 00,370,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec

#

[2009-09-21 17:24:14 | 00,273,690 | ---- | M] () -- C:\Documents and Settings\Kris\Pulpit\Obraz 005.jpg

#

[2009-09-21 17:23:17 | 00,324,745 | ---- | M] () -- C:\Documents and Settings\Kris\Pulpit\Obraz 004.jpg

#

[2009-09-21 12:22:36 | 01,422,886 | ---- | M] () -- C:\Documents and Settings\Kris\Pulpit\DSC02498.JPG

#

[2009-09-21 12:22:04 | 01,448,108 | ---- | M] () -- C:\Documents and Settings\Kris\Pulpit\DSC02497.JPG

#

[2009-09-19 13:47:45 | 00,002,727 | ---- | M] () -- C:\WINDOWS\DevMgr.ini

#

[2009-09-19 13:47:21 | 00,001,201 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HPAiODevice(hp officejet g series) - 1.lnk

#

[2009-09-19 13:47:21 | 00,001,048 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\hp officejet g series.lnk

#

[2009-09-19 13:44:26 | 00,000,020 | ---- | M] () -- C:\WINDOWS\Hposcv07.INI

#

[2009-09-18 16:29:29 | 00,000,219 | ---- | M] () -- C:\Documents and Settings\Kris\Pulpit\Nowy Dokument WordPad.doc

#

[2009-09-18 12:05:18 | 00,370,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll

#

[2009-09-18 11:56:10 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe

#



#

[color=#E56717]========== Files - No Company Name ==========[/color]

#

[2009-10-17 12:15:52 | 00,000,773 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\VSO Image Resizer.lnk

#

[2009-09-26 14:27:07 | 73,089,4336 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\Prison.Break.The.Final.Break.WS.PDTV.XviD-iLM.avi

#

[2009-09-26 14:10:45 | 36,580,7616 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\Prison.Break.S04E22.HDTV.XviD-LOL.avi

#

[2009-09-26 14:10:21 | 00,005,120 | ---- | C] () -- C:\Documents and Settings\Kris\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

#

[2009-09-21 17:33:23 | 01,422,886 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\DSC02498.JPG

#

[2009-09-21 17:33:22 | 01,448,108 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\DSC02497.JPG

#

[2009-09-21 17:23:59 | 00,273,690 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\Obraz 005.jpg

#

[2009-09-21 17:23:01 | 00,324,745 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\Obraz 004.jpg

#

[2009-09-19 13:47:21 | 00,001,201 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HPAiODevice(hp officejet g series) - 1.lnk

#

[2009-09-19 13:47:21 | 00,001,048 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\hp officejet g series.lnk

#

[2009-09-19 13:47:12 | 00,002,727 | ---- | C] () -- C:\WINDOWS\DevMgr.ini

#

[2009-09-19 13:28:17 | 00,000,020 | ---- | C] () -- C:\WINDOWS\Hposcv07.INI

#

[2009-09-19 13:27:21 | 00,015,688 | ---- | C] () -- C:\WINDOWS\System32\lsdelete.exe

#

[2009-09-14 14:47:38 | 00,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI

#

[2009-08-07 23:19:14 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys

#

[2009-08-07 23:19:11 | 00,013,263 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini

#

[2009-08-07 23:18:54 | 00,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS

#

[2009-08-07 22:44:36 | 00,152,064 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll

#

[2009-08-07 22:44:36 | 00,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll

#

[2009-08-07 22:44:35 | 00,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll

#

[2009-08-07 22:15:50 | 00,012,328 | ---- | C] () -- C:\Documents and Settings\Kris\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT

#

[2009-08-07 21:06:01 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini

#

[2009-08-07 19:21:04 | 07,435,550 | -H-- | C] () -- C:\Documents and Settings\Kris\Ustawienia lokalne\Dane aplikacji\IconCache.db

#

[2009-08-07 19:20:06 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Kris\Dane aplikacji\desktop.ini

#

[2006-03-02 14:00:00 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys

#

[2006-03-02 14:00:00 | 00,000,556 | ---- | C] () -- C:\WINDOWS\win.ini

#

[2006-03-02 14:00:00 | 00,000,231 | ---- | C] () -- C:\WINDOWS\system.ini

#

[2002-11-20 18:51:34 | 00,159,744 | ---- | C] () -- C:\WINDOWS\System32\win2000.dll

#



#

[color=#E56717]========== LOP Check ==========[/color]

#



#

[2009-10-11 21:06:08 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji

#

[2009-08-07 22:43:46 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{EF63305C-BAD7-4144-9208-D65528260864}

#

[2009-08-18 19:37:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TrackMania

#

[2009-08-07 21:06:01 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Default User\Dane aplikacji

#

[2009-10-17 12:16:05 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Kris\Dane aplikacji

#

[2009-08-15 14:59:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Kris\Dane aplikacji\GanymedeNet

#

[2009-09-05 23:45:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Kris\Dane aplikacji\Nowe Gadu-Gadu

#

[2009-10-17 12:51:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Kris\Dane aplikacji\VSO

#

[2009-10-11 21:05:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji

#

[2009-08-07 19:18:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji

#

[2009-10-12 22:45:17 | 00,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job

#

[2006-03-02 14:00:00 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini

#

[2009-10-17 10:25:59 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT

#



#

[color=#E56717]========== Purity Check ==========[/color]

#



#



#

< End of report >
[/log]


Logi z DDS:
[log]

DDS (Ver_09-10-13.01) - NTFSx86
Run by Kris at 13:06:43,84 on 2009-10-17
Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_15
Microsoft Windows XP Home Edition 5.1.2600.2.1250.48.1045.18.2047.1397 [GMT 2:00]

AV: avast! antivirus 4.8.1335 [VPS 091016-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

============== Running Processes ===============

C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Hewlett-Packard\AiO\hp officejet g series\Bin\hpoavn07.exe
C:\Program Files\SAGEM Wi-Fi 11g USB adapter LAN Utility\WLANUTL.exe
C:\PROGRA~1\HEWLET~1\AiO\Shared\Bin\hpoevm07.exe
C:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOSTS07.exe
C:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOFXM07.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Kris\Pulpit\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://home.gamingharbor.com
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Media Access Startup: {25b8d58c-b0cb-46b0-ba64-05b3804e4e86} - c:\program files\media access startup\2.0.0.1050\HPIEAddOn.dll
BHO: NP Helper Class: {35b8d58c-b0cb-46b0-ba64-05b3804e4e86} - c:\program files\internet saving optimizer\3.7.2.4650\NPIEAddOn.dll
BHO: System Search Dispatcher: {cdbfb47b-58a8-4111-bf95-06178dce326d} - c:\program files\system search dispatcher\1.4.1.1010\ssd.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - No File
uRunOnce: [WiseStubReboot] MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I "c:\program files\common files\wise installation wizard\wisb83fc356b7c0441f8a4dd71e088e7974_9_09_0428.msi" transforms="c:\program files\common files\wise installation wizard\wisb83fc356b7c0441f8a4dd71e088e7974_9_09_0428.mst" wise_setup_exe_path="c:\nvidia\displaydriver\190.38\international\PhysX_9.09.0428_SystemSoftware.exe"
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /install
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\alluse~1\menust~1\programy\autost~1\hpaiod~1.lnk - c:\program files\hewlett-packard\aio\hp officejet g series\bin\hpoavn07.exe
StartupFolder: c:\docume~1\alluse~1\menust~1\programy\autost~1\sagemw~1.lnk - c:\program files\sagem wi-fi 11g usb adapter lan utility\WLANUTL.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\kris\daneap~1\mozilla\firefox\profiles\tetleix7.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.theprizeday.com/today.php|http://www.onet.pl/
FF - component: c:\program files\media access startup\2.0.0.1050\ff\components\HPFFAddOn.dll
FF - plugin: c:\documents and settings\kris\dane aplikacji\nowe gadu-gadu\_userdata\npgg.1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npganymedenet.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

============= SERVICES / DRIVERS ===============

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-8-7 64160]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-8-7 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-8-7 20560]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2009-7-3 1028432]
R3 SG760_XP;SAGEM 802.11g XG760 1211 Driver;c:\windows\system32\drivers\WlanUZXP.sys [2009-8-7 260608]
S2 Sukoku Service;Sukoku Service;"c:\documents and settings\all users\dane aplikacji\sukoku\sukoku119.exe" "c:\program files\sukoku\sukoku.dll" service --> c:\documents and settings\all users\dane aplikacji\sukoku\sukoku119.exe [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2009-8-7 1684736]
S3 ZDCndis5;ZDCndis5 Protocol Driver;\??\c:\windows\system32\zdcndis5.sys --> c:\windows\system32\ZDCndis5.SYS [?]

=============== Created Last 30 ================

2009-10-17 12:21 <DIR> --d----- c:\program files\Trend Micro
2009-10-17 12:15 <DIR> --d----- c:\program files\VSO
2009-09-29 22:15 <DIR> --d----- C:\CtJbFW
2009-09-26 14:12 221,184 a------- c:\windows\system32\wmpns.dll
2009-09-19 13:47 2,727 a------- c:\windows\DevMgr.ini
2009-09-19 13:44 90,112 a------- c:\windows\system32\hpocon09.exe
2009-09-19 13:44 22,139 a------- c:\windows\system32\hpocoi08.dll
2009-09-19 13:43 <DIR> --d----- c:\windows\AiOTemp
2009-09-19 13:41 <DIR> --d----- c:\windows\system32\NtmsData
2009-09-19 13:28 20 a------- c:\windows\Hposcv07.INI
2009-09-19 13:27 38,912 a------- c:\windows\system32\hh.exe
2009-09-19 13:27 15,688 a------- c:\windows\system32\lsdelete.exe

==================== Find3M ====================

2009-09-25 07:58 664,576 a------- c:\windows\system32\wininet.dll
2009-09-25 07:58 81,920 a------- c:\windows\system32\ieencode.dll
2009-09-11 16:36 133,632 a------- c:\windows\system32\msv1_0.dll
2009-09-04 22:47 58,880 a------- c:\windows\system32\msasn1.dll
2009-08-26 10:16 247,326 a------- c:\windows\system32\strmdll.dll
2009-08-13 21:31 411,368 a------- c:\windows\system32\deploytk.dll
2009-08-09 11:27 355,830 a------- c:\windows\system32\perfh015.dat
2009-08-09 11:27 49,712 a------- c:\windows\system32\perfc015.dat
2009-08-08 20:09 76,487 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2009-08-07 19:12 21,856 a------- c:\windows\system32\emptyregdb.dat
2009-08-05 11:08 205,312 a------- c:\windows\system32\mswebdvd.dll
2009-08-04 19:07 2,137,600 a------- c:\windows\system32\ntoskrnl.exe
2009-08-04 19:07 2,017,280 a------- c:\windows\system32\ntkrnlpa.exe
2009-07-20 11:12 18,670,592 a------- c:\windows\RTHDCPL.EXE

============= FINISH: 13:06:56,06 ===============
[/log]
[log]

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-10-13.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 2009-08-07 19:16:52
System Uptime: 2009-10-17 10:25:42 (3 hours ago)

Motherboard: ASUSTeK Computer INC. | | P5K
Processor: Intel(R) Core(TM)2 Duo CPU E4500 @ 2.20GHz | LGA775 | 2207/200mhz
Processor: Intel(R) Core(TM)2 Duo CPU E4500 @ 2.20GHz | LGA775 | 2208/200mhz

==== Disk Partitions =========================

A: is Removable
C: is FIXED (NTFS) - 40 GiB total, 24,29 GiB free.
D: is FIXED (NTFS) - 193 GiB total, 192,797 GiB free.
F: is CDROM ()

==== Disabled Device Manager Items =============

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Camera
Device ID: USB\VID_046D&PID_08A9&MI_00\6&25ED4571&0&0000
Manufacturer:
Name: Camera
PNP Device ID: USB\VID_046D&PID_08A9&MI_00\6&25ED4571&0&0000
Service:

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Kontroler Ethernet
Device ID: PCI\VEN_1969&DEV_1048&SUBSYS_82261043&REV_B0\4&625283&0&00E5
Manufacturer:
Name: Kontroler Ethernet
PNP Device ID: PCI\VEN_1969&DEV_1048&SUBSYS_82261043&REV_B0\4&625283&0&00E5
Service:

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Karta sieciowa 1394
Device ID: V1394\NIC1394\189C02711D800
Manufacturer: Microsoft
Name: Karta sieciowa 1394
PNP Device ID: V1394\NIC1394\189C02711D800
Service: NIC1394

Class GUID: {4D36E96B-E325-11CE-BFC1-08002BE10318}
Description: Standardowa klawiatura 101/102 klawisze lub Microsoft Natural Keyboard PS/2
Device ID: ACPI\PNP0303\4&1400782C&0
Manufacturer: (Klawiatury standardowe)
Name: Standardowa klawiatura 101/102 klawisze lub Microsoft Natural Keyboard PS/2
PNP Device ID: ACPI\PNP0303\4&1400782C&0
Service: i8042prt

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Kontroler magistrali zarządzania systemem
Device ID: PCI\VEN_8086&DEV_2930&SUBSYS_82771043&REV_02\3&11583659&0&FB
Manufacturer:
Name: Kontroler magistrali zarządzania systemem
PNP Device ID: PCI\VEN_8086&DEV_2930&SUBSYS_82771043&REV_02\3&11583659&0&FB
Service:

==== System Restore Points ===================

RP1: 2009-08-07 19:20:32 - Punkt kontrolny systemu
RP2: 2009-08-07 22:10:49 - Installed Gigabyte Raid Configurer
RP3: 2009-08-07 22:13:55 - Zainstalowano Windows Installer KB893803v2.
RP4: 2009-08-07 22:17:58 - Installed SAGEM Wi-Fi 11g USB adapter LAN Utility
RP5: 2009-08-07 22:18:54 - Installed SAGEM Wi-Fi 11g USB adapter
RP6: 2009-08-07 22:19:02 - Removed SAGEM Wi-Fi 11g USB adapter
RP7: 2009-08-07 22:19:50 - Zainstalowane Livebox
RP8: 2009-08-07 22:20:02 - Installed SAGEM Wi-Fi 11g USB adapter
RP9: 2009-08-07 23:03:17 - Installed Steam(TM)
RP10: 2009-08-07 23:03:47 - Installed Counter-Strike(TM)
RP11: 2009-08-07 23:31:01 - Zainstalowane Realtek High Definition Audio Driver
RP12: 2009-08-07 23:31:08 - Installed Windows XP KB888111WXPSP2.
RP13: 2009-08-08 01:12:21 - Software Distribution Service 3.0
RP14: 2009-08-08 12:28:45 - Software Distribution Service 3.0
RP15: 2009-08-09 03:00:12 - Software Distribution Service 3.0
RP16: 2009-08-10 03:26:14 - Punkt kontrolny systemu
RP17: 2009-08-13 00:28:59 - Software Distribution Service 3.0
RP18: 2009-08-13 21:31:21 - Installed Java(TM) 6 Update 15
RP19: 2009-08-14 00:51:34 - Software Distribution Service 3.0
RP20: 2009-08-15 01:40:02 - Punkt kontrolny systemu
RP21: 2009-08-16 12:18:08 - Punkt kontrolny systemu
RP22: 2009-08-17 14:14:15 - Punkt kontrolny systemu
RP23: 2009-08-18 17:53:41 - Punkt kontrolny systemu
RP24: 2009-08-20 12:38:08 - Punkt kontrolny systemu
RP25: 2009-08-21 13:31:19 - Punkt kontrolny systemu
RP26: 2009-08-22 14:08:23 - Punkt kontrolny systemu
RP27: 2009-08-23 14:30:54 - Punkt kontrolny systemu
RP28: 2009-08-23 18:26:08 - Software Distribution Service 3.0
RP29: 2009-08-24 19:20:07 - Punkt kontrolny systemu
RP30: 2009-08-25 20:11:28 - Punkt kontrolny systemu
RP31: 2009-08-26 20:13:50 - Installed Adobe Reader 9.1.
RP32: 2009-08-26 23:18:27 - Software Distribution Service 3.0
RP33: 2009-08-28 11:07:28 - Punkt kontrolny systemu
RP34: 2009-08-29 16:02:02 - Punkt kontrolny systemu
RP35: 2009-08-30 22:29:06 - Punkt kontrolny systemu
RP36: 2009-09-01 09:43:02 - Punkt kontrolny systemu
RP37: 2009-09-02 16:48:00 - Punkt kontrolny systemu
RP38: 2009-09-03 17:59:22 - Punkt kontrolny systemu
RP39: 2009-09-04 18:21:40 - Punkt kontrolny systemu
RP40: 2009-09-06 11:03:54 - Punkt kontrolny systemu
RP41: 2009-09-07 11:43:48 - Punkt kontrolny systemu
RP42: 2009-09-08 12:14:30 - Punkt kontrolny systemu
RP43: 2009-09-09 14:19:34 - Punkt kontrolny systemu
RP44: 2009-09-09 22:43:58 - Software Distribution Service 3.0
RP45: 2009-09-11 10:40:26 - Punkt kontrolny systemu
RP46: 2009-09-12 10:56:57 - Punkt kontrolny systemu
RP47: 2009-09-13 14:08:31 - Punkt kontrolny systemu
RP48: 2009-09-14 15:41:43 - Punkt kontrolny systemu
RP49: 2009-09-15 16:23:42 - Punkt kontrolny systemu
RP50: 2009-09-16 17:41:47 - Punkt kontrolny systemu
RP51: 2009-09-17 20:04:16 - Punkt kontrolny systemu
RP52: 2009-09-18 23:11:52 - Punkt kontrolny systemu
RP53: 2009-09-19 13:27:57 - Installed hp officejet g series
RP54: 2009-09-19 13:41:05 - Removed hp officejet g series
RP55: 2009-09-19 13:44:12 - Installed hp officejet g series
RP56: 2009-09-19 13:47:18 - Zainstalowane sterowniki drukarek: hp officejet g series fax
RP57: 2009-09-20 14:48:41 - Punkt kontrolny systemu
RP58: 2009-09-21 15:39:01 - Punkt kontrolny systemu
RP59: 2009-09-22 16:58:07 - Punkt kontrolny systemu
RP60: 2009-09-24 07:25:46 - Punkt kontrolny systemu
RP61: 2009-09-25 10:15:02 - Punkt kontrolny systemu
RP62: 2009-09-26 11:26:49 - Punkt kontrolny systemu
RP63: 2009-09-27 12:25:44 - Punkt kontrolny systemu
RP64: 2009-09-29 12:24:34 - Punkt kontrolny systemu
RP65: 2009-09-30 12:53:02 - Punkt kontrolny systemu
RP66: 2009-10-01 13:46:42 - Punkt kontrolny systemu
RP67: 2009-10-02 14:40:40 - Punkt kontrolny systemu
RP68: 2009-10-03 14:58:29 - Punkt kontrolny systemu
RP69: 2009-10-05 17:31:34 - Punkt kontrolny systemu
RP70: 2009-10-06 18:00:52 - Punkt kontrolny systemu
RP71: 2009-10-12 13:17:16 - Punkt kontrolny systemu
RP72: 2009-10-13 14:06:09 - Punkt kontrolny systemu
RP73: 2009-10-16 13:47:10 - Punkt kontrolny systemu
RP74: 2009-10-16 22:39:26 - Software Distribution Service 3.0

==== Installed Programs ======================

ACE Mega CoDecS Pack
Ad-Aware
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.1
Aktualizacja dla systemu Windows XP (KB898461)
Aktualizacja dla systemu Windows XP (KB911164)
Aktualizacja dla systemu Windows XP (KB955839)
Aktualizacja dla systemu Windows XP (KB967715)
Aktualizacja dla systemu Windows XP (KB968389)
Aktualizacja dla systemu Windows XP (KB973815)
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB952069)
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB954155)
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB968816)
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB973540)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB923561)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB938464-v2)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB944338-v2)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB946648)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB950762)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB950974)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB951066)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB951376-v2)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB951748)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB952004)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB952954)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB954600)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB955069)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956572)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956802)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956803)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956844)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB957097)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB958470)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB958644)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB958687)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB958869)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB959426)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB960225)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB960803)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB960859)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB961371)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB961501)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB968537)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB969059)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB970238)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971486)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971557)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971633)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971657)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971961)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB972260)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973346)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973354)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973507)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973525)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973869)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB974112)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB974455)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB974571)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB975025)
Aktualizacja zabezpieczeń dla systemu Windows XP (KB975467)
Archiwizator WinRAR
avast! Antivirus
Counter-Strike(TM)
GameDesire-Pool & Snooker
High Definition Audio Driver Package - KB888111
HijackThis 2.0.2
hp officejet g series
Java(TM) 6 Update 15
livebox tp
Media Access Startup
Microsoft Visual C++ 2005 Redistributable
Mozilla Firefox (3.5.3)
Nowe Gadu-Gadu
NVIDIA Drivers
NVIDIA nView Desktop Manager
Poprawka dla systemu Windows XP (KB935448)
Poprawka dla systemu Windows XP (KB952287)
Poprawka dla systemu Windows XP (KB970653-v3)
Realtek High Definition Audio Driver
SAGEM Wi-Fi 11g USB adapter (driver)
SAGEM Wi-Fi 11g USB adapter (tool)
Steam(TM)
TrackMania Nations Forever
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
VSO Image Resizer 3.0.0.51
WebFldrs XP
Windows Installer 3.1 (KB893803)

==== End Of File ===========================
[/log]

Psycholandia
komentarz
komentarz

Nie wiem jak Ty tego loga wkleiłeś, ale strasznie trudno się go z tymi odstępami czyta :/
W okienko OTL wklej poniższy skrypt i klik na Run Fix:

[code]:Processes
explorer.exe

:OTL
O2 - BHO: (System Search Dispatcher) - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - C:\Program Files\System Search Dispatcher\1.4.1.1010\ssd.dll File not found
O3 - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\..\Toolbar\WebBrowser: (no name) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - No CLSID value found.
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)

:Files
C:\CtJbFW
C:\WINDOWS\AiOTemp
C:\Program Files\mozilla firefox\searchplugins\sukoku119.xml
c:\documents and settings\all users\dane aplikacji\sukoku
C:\Program Files\System Search Dispatcher

:Commands
[emptytemp]
[start explorer]
[Reboot][/code]

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.