magnumek utworzono 17 października 2009 utworzono 17 października 2009 Witam. Proszę o sprawdzenie loga. Od jakiegoś czasu komp zamula, wyskakują jakieś okienka (nie tylko pornograficzne) i zmieniają się ustawienia przeglądarki, ogółem komputer się dziwnie zachowuje. Dodam że antywirus nic nie wykrywa. Poniżej zamieszczam log. [log] info.txt logfile of random's system information tool 1.06 2009-10-17 12:36:47 ======Uninstall list====== -->MsiExec.exe /X{2642BE09-1F9F-4E18-AAD4-0258B9BCE611} -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf ACE Mega CoDecS Pack-->"C:\Program Files\ACE Mega CoDecS Pack\unins000.exe" Ad-Aware-->"C:\Documents and Settings\All Users\Dane aplikacji\{EF63305C-BAD7-4144-9208-D65528260864}\Ad-AwareAE.exe" REMOVE=TRUE MODIFY=FALSE Ad-Aware-->C:\Documents and Settings\All Users\Dane aplikacji\{EF63305C-BAD7-4144-9208-D65528260864}\Ad-AwareAE.exe Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Reader 9.1-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A91000000001} Aktualizacja dla systemu Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Aktualizacja zabezpieczeń dla systemu Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958470)-->"C:\WINDOWS\$NtUninstallKB958470$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB972260)-->"C:\WINDOWS\$NtUninstallKB972260$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974455)-->"C:\WINDOWS\$NtUninstallKB974455$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe" Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup Counter-Strike(TM)-->MsiExec.exe /I{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A} GameDesire-Pool & Snooker-->C:\Program Files\Ganymede\billiards_uninstall.exe High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe" HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall hp officejet g series-->C:\WINDOWS\system32\hpocon09.exe /u 1253360832 /d "hp officejet g series" Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216015FF} livebox tp-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FC7DDAAE-7F2B-4270-9BFD-5A130B667E9E}\Setup.exe" -l0x15 Media Access Startup-->"C:\Program Files\Media Access Startup\2.0.0.1050\unins000.exe" Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Mozilla Firefox (3.5.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe Nowe Gadu-Gadu-->C:\Program Files\Nowe Gadu-Gadu\Uninstall.exe NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI NVIDIA nView Desktop Manager-->C:\Program Files\NVIDIA Corporation\nView\nViewSetup.exe -uninstall Poprawka dla systemu Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe" Poprawka dla systemu Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe" Poprawka dla systemu Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe" Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x15 -removeonly SAGEM Wi-Fi 11g USB adapter (driver)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E2AA331E-E10E-438C-B1C0-24B2FFD3D9C4}\Setup.exe" -l0x9 SAGEM Wi-Fi 11g USB adapter (tool)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6266AB37-350F-483C-88D2-C530ACA42645}\Setup.exe" -l0x9 Steam(TM)-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3} TrackMania Nations Forever-->"C:\Program Files\Valve\Steam\steam.exe" steam://uninstall/11020 Visual C++ 2008 x86 Runtime - (v9.0.30729)-->MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5D14231E27} Visual C++ 2008 x86 Runtime - v9.0.30729.01-->C:\WINDOWS\system32\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D14231E27} /qb+ REBOOTPROMPT="" VSO Image Resizer 3.0.0.51-->"C:\Program Files\VSO\Image Resizer\unins000.exe" Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe" ======System event log====== Computer Name: MAGNUM0 Event Code: 7035 Message: Do usługi Zarządzanie aplikacjami został pomyślnie wysłany kod sterowania uruchom. Record Number: 2472 Source Name: Service Control Manager Time Written: 20090919133611.000000+120 Event Type: informacje User: MAGNUM0\Kris Computer Name: MAGNUM0 Event Code: 7023 Message: Usługa Zarządzanie aplikacjami zakończyła działanie; wystąpił następujący błąd: Nie można odnaleźć określonego modułu. Record Number: 2471 Source Name: Service Control Manager Time Written: 20090919133610.000000+120 Event Type: błąd User: Computer Name: MAGNUM0 Event Code: 7036 Message: Usługa Zarządzanie aplikacjami weszła w stan zatrzymania. Record Number: 2470 Source Name: Service Control Manager Time Written: 20090919133610.000000+120 Event Type: informacje User: Computer Name: MAGNUM0 Event Code: 7035 Message: Do usługi Zarządzanie aplikacjami został pomyślnie wysłany kod sterowania uruchom. Record Number: 2469 Source Name: Service Control Manager Time Written: 20090919133610.000000+120 Event Type: informacje User: MAGNUM0\Kris Computer Name: MAGNUM0 Event Code: 7023 Message: Usługa Zarządzanie aplikacjami zakończyła działanie; wystąpił następujący błąd: Nie można odnaleźć określonego modułu. Record Number: 2468 Source Name: Service Control Manager Time Written: 20090919133610.000000+120 Event Type: błąd User: =====Application event log===== Computer Name: KRIS-87482C0CC7 Event Code: 1000 Message: Liczniki wydajności dla usługi ContentIndex (ContentIndex) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 5 Source Name: LoadPerf Time Written: 20090807191223.000000+120 Event Type: informacje User: Computer Name: KRIS-87482C0CC7 Event Code: 1000 Message: Liczniki wydajności dla usługi TermService (Usługi terminalowe) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 4 Source Name: LoadPerf Time Written: 20090807191221.000000+120 Event Type: informacje User: Computer Name: KRIS-87482C0CC7 Event Code: 1000 Message: Liczniki wydajności dla usługi RemoteAccess (Routing i dostęp zdalny) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 3 Source Name: LoadPerf Time Written: 20090807191125.000000+120 Event Type: informacje User: Computer Name: KRIS-87482C0CC7 Event Code: 1000 Message: Liczniki wydajności dla usługi PSched (PSched) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 2 Source Name: LoadPerf Time Written: 20090807191104.000000+120 Event Type: informacje User: Computer Name: KRIS-87482C0CC7 Event Code: 1000 Message: Liczniki wydajności dla usługi RSVP (QoS RSVP) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 1 Source Name: LoadPerf Time Written: 20090807191104.000000+120 Event Type: informacje User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel "PROCESSOR_REVISION"=0f0d "NUMBER_OF_PROCESSORS"=2 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF----------------- [/log] [log] Logfile of random's system information tool 1.06 (written by random/random) Run by Kris at 2009-10-17 12:36:45 Microsoft Windows XP Home Edition Dodatek Service Pack 2 System drive C: has 25 GB (61%) free of 41 GB Total RAM: 2047 MB (72% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:36:46, on 2009-10-17 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Hewlett-Packard\AiO\hp officejet g series\Bin\hpoavn07.exe C:\Program Files\SAGEM Wi-Fi 11g USB adapter LAN Utility\WLANUTL.exe C:\PROGRA~1\HEWLET~1\AiO\Shared\Bin\hpoevm07.exe C:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOSTS07.exe C:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOFXM07.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Kris\Moje dokumenty\Pobieranie\RSIT.exe C:\Program Files\Trend Micro\HijackThis\Kris.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.gamingharbor.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Media Access Startup - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - C:\Program Files\Media Access Startup\2.0.0.1050\HPIEAddOn.dll O2 - BHO: NP Helper Class - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - C:\Program Files\Internet Saving Optimizer\3.7.2.4650\NPIEAddOn.dll O2 - BHO: System Search Dispatcher - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - C:\Program Files\System Search Dispatcher\1.4.1.1010\ssd.dll (file missing) O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /install O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKCU\..\RunOnce: [WiseStubReboot] MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I "C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MSI" TRANSFORMS="C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MST" WISE_SETUP_EXE_PATH="c:\nvidia\displaydriver\190.38\international\PhysX_9.09.0428_SystemSoftware.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: HPAiODevice(hp officejet g series) - 1.lnk = C:\Program Files\Hewlett-Packard\AiO\hp officejet g series\Bin\hpoavn07.exe O4 - Global Startup: SAGEM Wi-Fi 11g USB adapter LAN Utility.lnk = ? O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Sukoku Service - Unknown owner - C:\Documents and Settings\All Users\Dane aplikacji\Sukoku\sukoku119.exe (file missing) -- End of file - 5474 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25B8D58C-B0CB-46b0-BA64-05B3804E4E86}] Media Access Startup - C:\Program Files\Media Access Startup\2.0.0.1050\HPIEAddOn.dll [2009-09-08 221184] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{35B8D58C-B0CB-46b0-BA64-05B3804E4E86}] NP Helper Class - C:\Program Files\Internet Saving Optimizer\3.7.2.4650\NPIEAddOn.dll [2009-09-03 196608] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CDBFB47B-58A8-4111-BF95-06178DCE326D}] System Search Dispatcher - C:\Program Files\System Search Dispatcher\1.4.1.1010\ssd.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-13 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-13 73728] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2009-07-09 1657376] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-07-14 13877248] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-07-14 86016] "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-07-20 18670592] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-13 149280] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "WiseStubReboot"=MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MSI TRANSFORMS=C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MST WISE_SETUP_EXE_PATH=c:\nvidia\displaydriver\190.38\international\PhysX_9.09.0428_SystemSoftware.exe [] C:\Documents and Settings\All Users\Menu Start\Programy\Autostart HPAiODevice(hp officejet g series) - 1.lnk - C:\Program Files\Hewlett-Packard\AiO\hp officejet g series\Bin\hpoavn07.exe SAGEM Wi-Fi 11g USB adapter LAN Utility.lnk - C:\Program Files\SAGEM Wi-Fi 11g USB adapter LAN Utility\WLANUTL.exe [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Valve\Steam\SteamApps\keny72\condition zero\hl.exe"="C:\Program Files\Valve\Steam\SteamApps\keny72\condition zero\hl.exe:*:Enabled:Half-Life Launcher" "C:\Program Files\Nowe Gadu-Gadu\gg.exe"="C:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Enabled:Nowe Gadu-Gadu" "C:\Program Files\Valve\Steam\SteamApps\keny72\counter-strike\hl.exe"="C:\Program Files\Valve\Steam\SteamApps\keny72\counter-strike\hl.exe:*:Enabled:Half-Life Launcher" "C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForever.exe"="C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForever.exe:*:Enabled:TrackMania Nations Forever" "C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForeverLauncher.exe"="C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForeverLauncher.exe:*:Enabled:TrackMania Nations Forever" "C:\Program Files\Metin2_PL\metin2.bin"="C:\Program Files\Metin2_PL\metin2.bin:*:Enabled:metin2" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" ======List of files/folders created in the last 1 months====== 2009-10-17 12:36:45 ----D---- C:\rsit 2009-10-17 12:21:05 ----D---- C:\Program Files\Trend Micro 2009-10-17 12:16:05 ----D---- C:\Documents and Settings\Kris\Dane aplikacji\VSO 2009-10-17 12:15:49 ----D---- C:\Program Files\VSO 2009-10-16 22:40:59 ----HDC---- C:\WINDOWS\$NtUninstallKB974455$ 2009-10-16 22:40:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$ 2009-10-16 22:40:51 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$ 2009-10-16 22:40:06 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$ 2009-10-16 22:40:03 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$ 2009-10-16 22:39:59 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$ 2009-10-16 22:39:55 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$ 2009-10-16 22:39:48 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$ 2009-10-16 22:39:43 ----HDC---- C:\WINDOWS\$NtUninstallKB973525$ 2009-10-16 22:39:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$ 2009-09-29 22:15:39 ----D---- C:\CtJbFW 2009-09-26 14:12:21 ----A---- C:\WINDOWS\system32\wmpns.dll 2009-09-19 13:47:12 ----A---- C:\WINDOWS\DevMgr.ini 2009-09-19 13:44:27 ----A---- C:\WINDOWS\system32\hpocon09.exe 2009-09-19 13:44:27 ----A---- C:\WINDOWS\system32\hpocoi08.dll 2009-09-19 13:43:51 ----D---- C:\WINDOWS\AiOTemp 2009-09-19 13:41:16 ----D---- C:\WINDOWS\system32\NtmsData 2009-09-19 13:28:17 ----A---- C:\WINDOWS\Hposcv07.INI 2009-09-19 13:27:59 ----D---- C:\Program Files\Hewlett-Packard 2009-09-19 13:27:39 ----A---- C:\WINDOWS\system32\hh.exe 2009-09-19 13:27:21 ----A---- C:\WINDOWS\system32\lsdelete.exe ======List of files/folders modified in the last 1 months====== 2009-10-17 12:21:05 ----RD---- C:\Program Files 2009-10-17 12:16:14 ----D---- C:\WINDOWS\Prefetch 2009-10-17 12:12:33 ----D---- C:\Program Files\Mozilla Firefox 2009-10-17 10:28:55 ----D---- C:\WINDOWS\Temp 2009-10-17 10:26:09 ----D---- C:\WINDOWS 2009-10-17 10:25:53 ----D---- C:\WINDOWS\system32 2009-10-16 22:41:17 ----A---- C:\WINDOWS\SchedLgU.Txt 2009-10-16 22:41:09 ----HD---- C:\WINDOWS\inf 2009-10-16 22:41:06 ----RSHDC---- C:\WINDOWS\system32\dllcache 2009-10-16 22:41:05 ----D---- C:\Program Files\Internet Explorer 2009-10-16 22:40:55 ----D---- C:\WINDOWS\WinSxS 2009-10-16 22:40:55 ----A---- C:\WINDOWS\imsins.BAK 2009-10-16 22:39:54 ----D---- C:\WINDOWS\system32\CatRoot2 2009-10-16 22:39:46 ----HD---- C:\WINDOWS\$hf_mig$ 2009-10-11 21:06:08 ----D---- C:\Program Files\Sukoku 2009-10-02 20:01:57 ----A---- C:\WINDOWS\system32\MRT.exe 2009-10-02 18:00:31 ----A---- C:\WINDOWS\system.ini 2009-09-25 07:58:06 ----A---- C:\WINDOWS\system32\wininet.dll 2009-09-25 07:58:06 ----A---- C:\WINDOWS\system32\urlmon.dll 2009-09-25 07:58:06 ----A---- C:\WINDOWS\system32\shlwapi.dll 2009-09-25 07:58:05 ----A---- C:\WINDOWS\system32\shdocvw.dll 2009-09-25 07:58:05 ----A---- C:\WINDOWS\system32\pngfilt.dll 2009-09-25 07:58:05 ----A---- C:\WINDOWS\system32\mstime.dll 2009-09-25 07:58:05 ----A---- C:\WINDOWS\system32\msrating.dll 2009-09-25 07:58:04 ----A---- C:\WINDOWS\system32\mshtmled.dll 2009-09-25 07:58:04 ----A---- C:\WINDOWS\system32\mshtml.dll 2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\jsproxy.dll 2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\inseng.dll 2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\iepeers.dll 2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\ieencode.dll 2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\extmgr.dll 2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\dxtrans.dll 2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\dxtmsft.dll 2009-09-25 07:58:03 ----A---- C:\WINDOWS\system32\danim.dll 2009-09-25 07:58:02 ----A---- C:\WINDOWS\system32\cdfview.dll 2009-09-25 07:58:02 ----A---- C:\WINDOWS\system32\browseui.dll 2009-09-19 13:44:55 ----D---- C:\WINDOWS\system32\CatRoot 2009-09-19 13:44:45 ----SHD---- C:\WINDOWS\Installer 2009-09-19 13:44:15 ----D---- C:\WINDOWS\system32\drivers 2009-09-19 13:28:23 ----D---- C:\WINDOWS\system32\mui 2009-09-18 20:31:58 ----SD---- C:\Documents and Settings\Kris\Dane aplikacji\Microsoft 2009-09-18 12:05:18 ----A---- C:\WINDOWS\system32\xpsp3res.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944] R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768] R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2006-03-02 40320] R1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2006-03-02 14848] R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560] R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032] R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152] R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752] R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2006-03-02 9600] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-07-20 5795328] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160] R3 msloop;Sterownik karty Microsoft Loopback; C:\WINDOWS\system32\DRIVERS\loop.sys [2001-08-17 4992] R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-12 5810] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-07-14 7741664] R3 SG760_XP;SAGEM 802.11g XG760 1211 Driver; C:\WINDOWS\system32\DRIVERS\WlanUZXP.sys [2005-07-13 260608] R3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-04 59264] R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2006-03-02 31616] R3 usbehci;Sterownik Miniport rozszerzonego kontrolera hosta USB 2.0 Microsoft; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-03-02 26624] R3 usbhub;Koncentrator z obsługą USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2006-03-02 57600] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2006-03-02 20480] R3 ZDPNDIS5;ZDPNDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\ZDPNDIS5.SYS [] S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736] S3 Arp1394;Protokół klienta 1394 ARP; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2006-03-02 60800] S3 dot4;Sterownik MS IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2004-08-03 207360] S3 Dot4Print;Sterownik klasy drukowania dla IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928] S3 Dot4Scan;Sterownik klasy skanowania dla IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys [2001-08-17 8704] S3 dot4usb;Filtr Dot4USB Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-10-26 23936] S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056] S3 NIC1394;Sterownik sieci 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2006-03-02 61824] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] S3 ZDCndis5;ZDCndis5 Protocol Driver; \??\C:\WINDOWS\system32\ZDCndis5.SYS [] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-13 153376] R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-10-12 1028432] R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-07-14 168004] R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040] R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920] S2 Sukoku Service;Sukoku Service; C:\Documents and Settings\All Users\Dane aplikacji\Sukoku\sukoku119.exe C:\Program Files\Sukoku\sukoku.dll Service [] -----------------EOF----------------- [/log]
MarekM25 komentarz 17 października 2009 komentarz 17 października 2009 Daj loga z [url="http://www.forumpc.pl/index.php?showtopic=104338"]OTListIt2[/url] to się załatwi wszystko za jednym skryptem.
magnumek komentarz 17 października 2009 Autor komentarz 17 października 2009 Ok. Poniżej wstawiam logi z OTL i DDS. Logi z OTL: [log] # OTL Extras logfile created on: 2009-10-17 12:55:52 - Run 1 # OTL by OldTimer - Version 3.0.21.0 Folder = C:\Documents and Settings\Kris\Moje dokumenty\Pobieranie # Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation # Internet Explorer (Version = 6.0.2900.2180) # Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd # # 2,00 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 69,65% Memory free # 3,85 Gb Paging File | 3,35 Gb Available in Paging File | 87,17% Paging File free # Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] # # %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files # Drive C: | 40,00 Gb Total Space | 24,29 Gb Free Space | 60,72% Space Free | Partition Type: NTFS # Drive D: | 192,87 Gb Total Space | 192,80 Gb Free Space | 99,96% Space Free | Partition Type: NTFS # E: Drive not present or media not loaded # F: Drive not present or media not loaded # G: Drive not present or media not loaded # H: Drive not present or media not loaded # I: Drive not present or media not loaded # # Computer Name: MAGNUM0 # Current User Name: Kris # Logged in as Administrator. # # Current Boot Mode: Normal # Scan Mode: All users # Company Name Whitelist: Off # Skip Microsoft Files: Off # File Age = 30 Days # Output = Standard # # [color=#E56717]========== Extra Registry (SafeList) ==========[/color] # # # [color=#E56717]========== File Associations ==========[/color] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] # .chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation) # .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) # # [HKEY_USERS\S-1-5-21-1614895754-1220945662-682003330-1004\SOFTWARE\Classes\<extension>] # .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) # # [color=#E56717]========== Shell Spawning ==========[/color] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] # batfile [open] -- "%1" %* File not found # chm.file [open] -- "C:\WINDOWS\hh.exe" %1 (Microsoft Corporation) # cmdfile [open] -- "%1" %* File not found # comfile [open] -- "%1" %* File not found # exefile [open] -- "%1" %* File not found # htmlfile [edit] -- Reg Error: Key error. # htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation) # htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) # http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation) # https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation) # piffile [open] -- "%1" %* File not found # regfile [merge] -- Reg Error: Key error. # scrfile [config] -- "%1" File not found # scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) # scrfile [open] -- "%1" /S File not found # txtfile [edit] -- Reg Error: Key error. # Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) # Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) # Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) # Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) # Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) # CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) # # [color=#E56717]========== Security Center Settings ==========[/color] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] # "FirstRunDisabled" = 1 # "AntiVirusDisableNotify" = 0 # "FirewallDisableNotify" = 0 # "UpdatesDisableNotify" = 0 # "AntiVirusOverride" = 0 # "FirewallOverride" = 0 # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] # # [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] # # [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] # "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004 # "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005 # "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001 # "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002 # # [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] # # [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] # "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 # "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 # "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 # "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 # # [color=#E56717]========== Authorized Applications List ==========[/color] # # [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] # # [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] # "C:\Program Files\Valve\Steam\SteamApps\keny72\condition zero\hl.exe" = C:\Program Files\Valve\Steam\SteamApps\keny72\condition zero\hl.exe:*:Enabled:Half-Life Launcher -- (Valve) # "C:\Program Files\Nowe Gadu-Gadu\gg.exe" = C:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Enabled:Nowe Gadu-Gadu -- (GG Network S.A.) # "C:\Program Files\Valve\Steam\SteamApps\keny72\counter-strike\hl.exe" = C:\Program Files\Valve\Steam\SteamApps\keny72\counter-strike\hl.exe:*:Enabled:Half-Life Launcher -- (Valve) # "C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForever.exe" = C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForever.exe:*:Enabled:TrackMania Nations Forever -- () # "C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForeverLauncher.exe" = C:\Program Files\Valve\Steam\SteamApps\common\trackmania nations forever\TmForeverLauncher.exe:*:Enabled:TrackMania Nations Forever -- () # "C:\Program Files\Metin2_PL\metin2.bin" = C:\Program Files\Metin2_PL\metin2.bin:*:Enabled:metin2 -- () # # # [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] # # [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] # "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM) # "{16B6279B-9FF5-41fb-8BF9-404324F5DD1F}}_is1" = Media Access Startup # "{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java(TM) 6 Update 15 # "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP # "{3EE51BAD-9916-49C7-90BA-3D500B031E0C}_is1" = VSO Image Resizer 3.0.0.51 # "{6266AB37-350F-483C-88D2-C530ACA42645}" = SAGEM Wi-Fi 11g USB adapter (tool) # "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable # "{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1 # "{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware # "{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}" = Counter-Strike(TM) # "{E2AA331E-E10E-438C-B1C0-24B2FFD3D9C4}" = SAGEM Wi-Fi 11g USB adapter (driver) # "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver # "{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729) # "{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01 # "{FC7DDAAE-7F2B-4270-9BFD-5A130B667E9E}" = livebox tp # "{FFFF6D5C-E2F1-4B40-BC89-8923312E89EB}}_is1" = ACE Mega CoDecS Pack # "Ad-Aware" = Ad-Aware # "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX # "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin # "avast!" = avast! Antivirus # "GameDesire-Pool & Snooker" = GameDesire-Pool & Snooker # "HijackThis" = HijackThis 2.0.2 # "hp officejet g series 1253360832" = hp officejet g series # "Mozilla Firefox (3.5.3)" = Mozilla Firefox (3.5.3) # "Nowe Gadu-Gadu" = Nowe Gadu-Gadu # "NVIDIA Drivers" = NVIDIA Drivers # "NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager # "Steam App 11020" = TrackMania Nations Forever # "WinRAR archiver" = Archiwizator WinRAR # # [color=#E56717]========== Last 10 Event Log Errors ==========[/color] # # [ Application Events ] # Error - 2009-08-14 02:55:02 | Computer Name = KRIS-87482C0CC7 | Source = Application Hang | ID = 1002 # Description = Aplikacja zawieszająca firefox.exe, wersja 1.9.1.3497, moduł zawieszenia # hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. # # Error - 2009-08-15 18:44:04 | Computer Name = KRIS-87482C0CC7 | Source = Application Error | ID = 1000 # Description = Aplikacja powodująca błąd hl.exe, wersja 1.1.1.1, moduł powodujący # błąd mss32.dll, wersja 3.0.0.0, adres błędu 0x000147fc. # # Error - 2009-08-17 15:52:20 | Computer Name = KRIS-87482C0CC7 | Source = Application Hang | ID = 1002 # Description = Aplikacja zawieszająca hl.exe, wersja 1.1.1.1, moduł zawieszenia hungapp, # wersja 0.0.0.0, adres zawieszenia 0x00000000. # # Error - 2009-08-18 11:58:20 | Computer Name = KRIS-87482C0CC7 | Source = Application Hang | ID = 1002 # Description = Aplikacja zawieszająca Steam.exe, wersja 1.0.0.0, moduł zawieszenia # hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. # # Error - 2009-08-19 15:34:18 | Computer Name = KRIS-87482C0CC7 | Source = EventSystem | ID = 4609 # Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył # zły kod powrotu. HRESULT to 8007041F z w wierszu 44 z d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp. # Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą # # Error - 2009-08-20 01:15:12 | Computer Name = KRIS-87482C0CC7 | Source = EventSystem | ID = 4609 # Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył # zły kod powrotu. HRESULT to 8007041F z w wierszu 44 z d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp. # Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą # # Error - 2009-08-21 03:37:09 | Computer Name = KRIS-87482C0CC7 | Source = EventSystem | ID = 4609 # Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył # zły kod powrotu. HRESULT to 8007041F z w wierszu 44 z d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp. # Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą # # Error - 2009-08-23 07:39:13 | Computer Name = KRIS-87482C0CC7 | Source = EventSystem | ID = 4609 # Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył # zły kod powrotu. HRESULT to 8007041F z w wierszu 44 z d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp. # Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą # # Error - 2009-08-23 12:14:18 | Computer Name = KRIS-87482C0CC7 | Source = EventSystem | ID = 4609 # Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył # zły kod powrotu. HRESULT to 8007041F z w wierszu 44 z d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp. # Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą # # Error - 2009-09-02 14:09:09 | Computer Name = MAGNUM0 | Source = EventSystem | ID = 4609 # Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył # zły kod powrotu. HRESULT to 8007041F z w wierszu 44 z d:\comxp_sp2\com\com1x\src\events\tier1\eventsystemobj.cpp. # Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą # # [ System Events ] # Error - 2009-09-19 07:36:10 | Computer Name = MAGNUM0 | Source = Service Control Manager | ID = 7023 # Description = Usługa Zarządzanie aplikacjami zakończyła działanie; wystąpił następujący # błąd: %%126 # # Error - 2009-09-19 07:36:11 | Computer Name = MAGNUM0 | Source = Service Control Manager | ID = 7023 # Description = Usługa Zarządzanie aplikacjami zakończyła działanie; wystąpił następujący # błąd: %%126 # # # < End of report > [/log] [log] # OTL logfile created on: 2009-10-17 12:55:52 - Run 1 # OTL by OldTimer - Version 3.0.21.0 Folder = C:\Documents and Settings\Kris\Moje dokumenty\Pobieranie # Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation # Internet Explorer (Version = 6.0.2900.2180) # Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd # # 2,00 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 69,65% Memory free # 3,85 Gb Paging File | 3,35 Gb Available in Paging File | 87,17% Paging File free # Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] # # %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files # Drive C: | 40,00 Gb Total Space | 24,29 Gb Free Space | 60,72% Space Free | Partition Type: NTFS # Drive D: | 192,87 Gb Total Space | 192,80 Gb Free Space | 99,96% Space Free | Partition Type: NTFS # E: Drive not present or media not loaded # F: Drive not present or media not loaded # G: Drive not present or media not loaded # H: Drive not present or media not loaded # I: Drive not present or media not loaded # # Computer Name: MAGNUM0 # Current User Name: Kris # Logged in as Administrator. # # Current Boot Mode: Normal # Scan Mode: All users # Company Name Whitelist: Off # Skip Microsoft Files: Off # File Age = 30 Days # Output = Standard # # [color=#E56717]========== Processes (SafeList) ==========[/color] # # PRC - [2009-10-17 12:53:21 | 00,521,216 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kris\Moje dokumenty\Pobieranie\OTL.exe # PRC - [2009-10-13 17:39:00 | 08,550,696 | ---- | M] (VSO Software SARL) -- C:\Program Files\VSO\Image Resizer\Resize.exe # PRC - [2009-10-12 22:44:35 | 00,520,024 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe # PRC - [2009-10-12 22:44:33 | 01,028,432 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe # PRC - [2009-09-13 19:42:04 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe # PRC - [2009-08-13 21:31:25 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe # PRC - [2009-08-13 21:31:25 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe # PRC - [2009-07-20 11:12:02 | 18,670,592 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE # PRC - [2009-07-14 13:34:58 | 00,168,004 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe # PRC - [2009-02-06 18:39:29 | 00,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\wmiprvse.exe # PRC - [2009-02-05 22:08:45 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe # PRC - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe # PRC - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe # PRC - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe # PRC - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe # PRC - [2006-03-02 14:00:00 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE # PRC - [2006-03-02 14:00:00 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\unsecapp.exe # PRC - [2005-07-14 10:50:50 | 00,835,584 | ---- | M] ( ) -- C:\Program Files\SAGEM Wi-Fi 11g USB adapter LAN Utility\WLANUTL.exe # PRC - [2002-11-20 18:37:46 | 00,188,416 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOFXM07.exe # PRC - [2002-11-20 18:09:10 | 00,294,912 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOSTS07.exe # PRC - [2002-11-20 17:48:24 | 00,299,008 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\AiO\Shared\Bin\hpoevm07.exe # PRC - [2002-11-20 17:15:00 | 00,151,552 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\AiO\hp officejet g series\Bin\hpoavn07.exe # # [color=#E56717]========== Win32 Services (SafeList) ==========[/color] # # SRV - File not found -- -- (Sukoku Service [Auto | Stopped]) # SRV - [2009-10-12 22:44:33 | 01,028,432 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service [Auto | Running]) # SRV - [2009-08-13 21:31:25 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running]) # SRV - [2009-07-14 13:34:58 | 00,168,004 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (nvsvc [Auto | Running]) # SRV - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running]) # SRV - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running]) # SRV - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running]) # SRV - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running]) # SRV - [2006-03-02 14:00:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running]) # # [color=#E56717]========== Driver Services (SafeList) ==========[/color] # # DRV - [2009-07-20 19:08:26 | 05,795,328 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Running]) # DRV - [2009-07-14 20:54:00 | 07,741,664 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running]) # DRV - [2009-07-03 16:49:08 | 00,064,160 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd [Boot | Running]) # DRV - [2009-02-05 22:08:10 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2 [Auto | Running]) # DRV - [2009-02-05 22:07:23 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP [System | Running]) # DRV - [2009-02-05 22:07:12 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\DRIVERS\aswFsBlk.sys -- (aswFsBlk [Auto | Running]) # DRV - [2009-02-05 22:06:20 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi [System | Running]) # DRV - [2009-02-05 22:06:10 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr [On_Demand | Running]) # DRV - [2009-02-05 22:05:11 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4 [System | Running]) # DRV - [2008-08-05 20:10:12 | 01,684,736 | ---- | M] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys -- (Ambfilt [On_Demand | Stopped]) # DRV - [2006-03-02 14:00:00 | 00,027,440 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped]) # DRV - [2006-03-02 14:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running]) # DRV - [2006-01-04 15:41:48 | 01,389,056 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys -- (Monfilt [On_Demand | Stopped]) # DRV - [2005-07-13 16:38:14 | 00,017,151 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\ZDPNDIS5.SYS -- (ZDPNDIS5 [On_Demand | Running]) # DRV - [2005-07-13 16:37:18 | 00,260,608 | ---- | M] (ZyDAS Technology Corporation) -- C:\WINDOWS\System32\DRIVERS\WlanUZXP.sys -- (SG760_XP [On_Demand | Running]) # DRV - [2005-01-07 17:07:18 | 00,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running]) # DRV - [2004-08-12 10:00:00 | 00,005,810 | R--- | M] () -- C:\WINDOWS\System32\DRIVERS\ASACPI.sys -- (MTsensor [On_Demand | Running]) # DRV - [2004-08-04 01:07:56 | 00,059,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Running]) # DRV - [2001-08-17 21:53:42 | 00,004,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DRIVERS\loop.sys -- (msloop [On_Demand | Running]) # # [color=#E56717]========== Standard Registry (SafeList) ==========[/color] # # # [color=#E56717]========== Internet Explorer ==========[/color] # # IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome # IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch # IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm # IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch # IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home # IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm # IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm # # # IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 # # IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 # # # # IE - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm # IE - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch # IE - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.gamingharbor.com # IE - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\S-1-5-21-1614895754-1220945662-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 # # [color=#E56717]========== FireFox ==========[/color] # # FF - prefs.js..browser.startup.homepage: "http://www.theprizeday.com/today.php|http://www.onet.pl/" # FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15 # FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 # FF - prefs.js..extensions.enabledItems: {0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}:2.0.0.1050 # FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3 # # FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-08-13 21:31:26 | 00,000,000 | ---D | M] # FF - HKLM\software\mozilla\Firefox\extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: C:\Program Files\Internet Saving Optimizer\3.7.2.4650\FF [2009-09-09 11:36:19 | 00,000,000 | ---D | M] # FF - HKLM\software\mozilla\Firefox\extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}: C:\Program Files\Media Access Startup\2.0.0.1050\FF [2009-09-09 11:36:24 | 00,000,000 | ---D | M] # FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-09-24 14:54:35 | 00,000,000 | ---D | M] # FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-09-13 19:42:09 | 00,000,000 | ---D | M] # # [2009-08-07 22:23:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Kris\Dane aplikacji\mozilla\Extensions # [2009-08-07 22:23:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Kris\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} # [2009-08-07 22:23:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Kris\Dane aplikacji\mozilla\Firefox\Profiles\tetleix7.default\extensions # [2009-10-16 15:39:52 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions # [2009-10-11 21:05:07 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9} # [2009-09-13 19:42:04 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} # [2009-08-13 21:31:35 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} # [2009-09-13 19:42:04 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll # [2009-09-13 19:42:04 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll # [2009-08-13 21:31:25 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll # [2009-06-15 11:14:40 | 00,120,296 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npganymedenet.dll # [2009-09-13 19:42:07 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll # [2009-02-27 12:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll # [2009-07-31 00:44:16 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml # [2009-07-31 00:44:16 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml # [2009-07-31 01:45:26 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml # [2009-07-31 00:44:16 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml # [2009-07-31 00:44:16 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml # [2009-09-30 19:13:51 | 00,002,381 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\sukoku119.xml # [2009-07-31 00:44:16 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml # [2009-07-31 00:44:16 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml # # O1 HOSTS File: (742 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts # O1 - Hosts: 127.0.0.1 localhost # O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) # O2 - BHO: (Media Access Startup) - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - C:\Program Files\Media Access Startup\2.0.0.1050\HPIEAddOn.dll () # O2 - BHO: (NP Helper Class) - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - C:\Program Files\Internet Saving Optimizer\3.7.2.4650\NPIEAddOn.dll () # O2 - BHO: (System Search Dispatcher) - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - C:\Program Files\System Search Dispatcher\1.4.1.1010\ssd.dll File not found # O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) # O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) # O3 - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\..\Toolbar\WebBrowser: (no name) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - No CLSID value found. # O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) # O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) # O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) # O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) # O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe () # O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.) # O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) # O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HPAiODevice(hp officejet g series) - 1.lnk = C:\Program Files\Hewlett-Packard\AiO\hp officejet g series\Bin\hpoavn07.exe (Hewlett-Packard Co.) # O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\SAGEM Wi-Fi 11g USB adapter LAN Utility.lnk = C:\Program Files\SAGEM Wi-Fi 11g USB adapter LAN Utility\WLANUTL.exe ( ) # O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 # O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 # O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = # O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = # O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 # O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 # O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 # O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 # O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 # O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 # O7 - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 # O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) # O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) # O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. # O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) # O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) # O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) # O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) # O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 # O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) # O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) # O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) # O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) # O18 - Protocol\Handler\ipp - No CLSID value found # O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) # O18 - Protocol\Handler\msdaipp - No CLSID value found # O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) # O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) # O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation) # O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home # O31 - SafeBoot: AlternateShell - cmd.exe # O32 - HKLM CDRom: AutoRun - 1 # O32 - AutoRun File - [2009-08-07 19:15:14 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] # O34 - HKLM BootExecute: (autocheck) - File not found # O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation) # O34 - HKLM BootExecute: (*) - File not found # O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe () # O35 - comfile [open] -- "%1" %* File not found # O35 - exefile [open] -- "%1" %* File not found # # [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] # # [1 C:\WINDOWS\System32\*.tmp files] # [4 C:\WINDOWS\*.tmp files] # [2009-10-17 12:16:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Dane aplikacji\VSO # [2009-09-19 13:27:59 | 00,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard # [2009-10-17 12:21:05 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro # [2009-10-17 12:15:49 | 00,000,000 | ---D | C] -- C:\Program Files\VSO # [2009-10-17 12:36:45 | 00,000,000 | ---D | C] -- C:\rsit # [2009-10-17 12:16:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\Zmiejszone # [2009-10-16 15:24:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\Nowy folder (3) # [2009-10-16 13:22:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\Egipt # [2009-09-29 22:15:39 | 00,000,000 | ---D | C] -- C:\CtJbFW # [2009-09-26 14:12:21 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpns.dll # [2009-09-22 14:21:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\101NCD40 # [2009-09-22 14:20:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\100NCD40 # [2009-09-19 13:44:27 | 00,090,112 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpocon09.exe # [2009-09-19 13:44:27 | 00,022,139 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\hpocoi08.dll # [2009-09-19 13:43:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\AiOTemp # [2009-09-19 13:41:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData # [2009-09-19 13:27:39 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hh.exe # [2009-09-18 20:03:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\Nowy folder (2) # [2009-09-18 19:46:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Kris\Pulpit\Nowy folder # # [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] # # [1 C:\WINDOWS\System32\*.tmp files] # [4 C:\WINDOWS\*.tmp files] # [2009-10-17 12:15:52 | 00,000,773 | ---- | M] () -- C:\Documents and Settings\Kris\Pulpit\VSO Image Resizer.lnk # [2009-10-17 10:26:10 | 00,243,457 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml # [2009-10-17 10:25:59 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT # [2009-10-17 10:25:55 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat # [2009-10-16 22:40:55 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK # [2009-10-16 22:39:16 | 07,435,550 | -H-- | M] () -- C:\Documents and Settings\Kris\Ustawienia lokalne\Dane aplikacji\IconCache.db # [2009-10-16 15:32:59 | 00,005,120 | ---- | M] () -- C:\Documents and Settings\Kris\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini # [2009-10-16 13:09:36 | 00,013,676 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl # [2009-10-12 22:45:17 | 00,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job # [2009-10-02 20:01:57 | 25,198,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe # [2009-10-02 18:00:31 | 00,000,231 | ---- | M] () -- C:\WINDOWS\system.ini # [2009-09-25 07:58:06 | 00,664,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wininet.dll # [2009-09-25 07:58:06 | 00,664,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll # [2009-09-25 07:58:06 | 00,625,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\urlmon.dll # [2009-09-25 07:58:06 | 00,625,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll # [2009-09-25 07:58:06 | 00,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shlwapi.dll # [2009-09-25 07:58:06 | 00,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shlwapi.dll # [2009-09-25 07:58:05 | 01,506,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shdocvw.dll # [2009-09-25 07:58:05 | 01,506,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shdocvw.dll # [2009-09-25 07:58:05 | 00,532,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll # [2009-09-25 07:58:05 | 00,532,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll # [2009-09-25 07:58:05 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrating.dll # [2009-09-25 07:58:05 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrating.dll # [2009-09-25 07:58:05 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pngfilt.dll # [2009-09-25 07:58:05 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pngfilt.dll # [2009-09-25 07:58:04 | 03,084,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.dll # [2009-09-25 07:58:04 | 03,084,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll # [2009-09-25 07:58:04 | 00,449,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtmled.dll # [2009-09-25 07:58:04 | 00,449,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll # [2009-09-25 07:58:03 | 01,055,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\danim.dll # [2009-09-25 07:58:03 | 01,055,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\danim.dll # [2009-09-25 07:58:03 | 00,357,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtmsft.dll # [2009-09-25 07:58:03 | 00,357,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtmsft.dll # [2009-09-25 07:58:03 | 00,251,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll # [2009-09-25 07:58:03 | 00,251,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll # [2009-09-25 07:58:03 | 00,205,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtrans.dll # [2009-09-25 07:58:03 | 00,205,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtrans.dll # [2009-09-25 07:58:03 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inseng.dll # [2009-09-25 07:58:03 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inseng.dll # [2009-09-25 07:58:03 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll # [2009-09-25 07:58:03 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieencode.dll # [2009-09-25 07:58:03 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\extmgr.dll # [2009-09-25 07:58:03 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\extmgr.dll # [2009-09-25 07:58:03 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll # [2009-09-25 07:58:03 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll # [2009-09-25 07:58:02 | 01,023,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browseui.dll # [2009-09-25 07:58:02 | 01,023,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browseui.dll # [2009-09-25 07:58:02 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdfview.dll # [2009-09-25 07:58:02 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdfview.dll # [2009-09-25 07:45:02 | 00,370,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec # [2009-09-21 17:24:14 | 00,273,690 | ---- | M] () -- C:\Documents and Settings\Kris\Pulpit\Obraz 005.jpg # [2009-09-21 17:23:17 | 00,324,745 | ---- | M] () -- C:\Documents and Settings\Kris\Pulpit\Obraz 004.jpg # [2009-09-21 12:22:36 | 01,422,886 | ---- | M] () -- C:\Documents and Settings\Kris\Pulpit\DSC02498.JPG # [2009-09-21 12:22:04 | 01,448,108 | ---- | M] () -- C:\Documents and Settings\Kris\Pulpit\DSC02497.JPG # [2009-09-19 13:47:45 | 00,002,727 | ---- | M] () -- C:\WINDOWS\DevMgr.ini # [2009-09-19 13:47:21 | 00,001,201 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HPAiODevice(hp officejet g series) - 1.lnk # [2009-09-19 13:47:21 | 00,001,048 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\hp officejet g series.lnk # [2009-09-19 13:44:26 | 00,000,020 | ---- | M] () -- C:\WINDOWS\Hposcv07.INI # [2009-09-18 16:29:29 | 00,000,219 | ---- | M] () -- C:\Documents and Settings\Kris\Pulpit\Nowy Dokument WordPad.doc # [2009-09-18 12:05:18 | 00,370,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll # [2009-09-18 11:56:10 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe # # [color=#E56717]========== Files - No Company Name ==========[/color] # [2009-10-17 12:15:52 | 00,000,773 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\VSO Image Resizer.lnk # [2009-09-26 14:27:07 | 73,089,4336 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\Prison.Break.The.Final.Break.WS.PDTV.XviD-iLM.avi # [2009-09-26 14:10:45 | 36,580,7616 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\Prison.Break.S04E22.HDTV.XviD-LOL.avi # [2009-09-26 14:10:21 | 00,005,120 | ---- | C] () -- C:\Documents and Settings\Kris\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini # [2009-09-21 17:33:23 | 01,422,886 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\DSC02498.JPG # [2009-09-21 17:33:22 | 01,448,108 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\DSC02497.JPG # [2009-09-21 17:23:59 | 00,273,690 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\Obraz 005.jpg # [2009-09-21 17:23:01 | 00,324,745 | ---- | C] () -- C:\Documents and Settings\Kris\Pulpit\Obraz 004.jpg # [2009-09-19 13:47:21 | 00,001,201 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HPAiODevice(hp officejet g series) - 1.lnk # [2009-09-19 13:47:21 | 00,001,048 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\hp officejet g series.lnk # [2009-09-19 13:47:12 | 00,002,727 | ---- | C] () -- C:\WINDOWS\DevMgr.ini # [2009-09-19 13:28:17 | 00,000,020 | ---- | C] () -- C:\WINDOWS\Hposcv07.INI # [2009-09-19 13:27:21 | 00,015,688 | ---- | C] () -- C:\WINDOWS\System32\lsdelete.exe # [2009-09-14 14:47:38 | 00,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI # [2009-08-07 23:19:14 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys # [2009-08-07 23:19:11 | 00,013,263 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini # [2009-08-07 23:18:54 | 00,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS # [2009-08-07 22:44:36 | 00,152,064 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll # [2009-08-07 22:44:36 | 00,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll # [2009-08-07 22:44:35 | 00,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll # [2009-08-07 22:15:50 | 00,012,328 | ---- | C] () -- C:\Documents and Settings\Kris\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT # [2009-08-07 21:06:01 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini # [2009-08-07 19:21:04 | 07,435,550 | -H-- | C] () -- C:\Documents and Settings\Kris\Ustawienia lokalne\Dane aplikacji\IconCache.db # [2009-08-07 19:20:06 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Kris\Dane aplikacji\desktop.ini # [2006-03-02 14:00:00 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys # [2006-03-02 14:00:00 | 00,000,556 | ---- | C] () -- C:\WINDOWS\win.ini # [2006-03-02 14:00:00 | 00,000,231 | ---- | C] () -- C:\WINDOWS\system.ini # [2002-11-20 18:51:34 | 00,159,744 | ---- | C] () -- C:\WINDOWS\System32\win2000.dll # # [color=#E56717]========== LOP Check ==========[/color] # # [2009-10-11 21:06:08 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji # [2009-08-07 22:43:46 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{EF63305C-BAD7-4144-9208-D65528260864} # [2009-08-18 19:37:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TrackMania # [2009-08-07 21:06:01 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Default User\Dane aplikacji # [2009-10-17 12:16:05 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Kris\Dane aplikacji # [2009-08-15 14:59:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Kris\Dane aplikacji\GanymedeNet # [2009-09-05 23:45:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Kris\Dane aplikacji\Nowe Gadu-Gadu # [2009-10-17 12:51:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Kris\Dane aplikacji\VSO # [2009-10-11 21:05:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji # [2009-08-07 19:18:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji # [2009-10-12 22:45:17 | 00,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job # [2006-03-02 14:00:00 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini # [2009-10-17 10:25:59 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT # # [color=#E56717]========== Purity Check ==========[/color] # # # < End of report > [/log] Logi z DDS: [log] DDS (Ver_09-10-13.01) - NTFSx86 Run by Kris at 13:06:43,84 on 2009-10-17 Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_15 Microsoft Windows XP Home Edition 5.1.2600.2.1250.48.1045.18.2047.1397 [GMT 2:00] AV: avast! antivirus 4.8.1335 [VPS 091016-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} ============== Running Processes =============== C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Hewlett-Packard\AiO\hp officejet g series\Bin\hpoavn07.exe C:\Program Files\SAGEM Wi-Fi 11g USB adapter LAN Utility\WLANUTL.exe C:\PROGRA~1\HEWLET~1\AiO\Shared\Bin\hpoevm07.exe C:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOSTS07.exe C:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOFXM07.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Kris\Pulpit\dds.scr ============== Pseudo HJT Report =============== uStart Page = hxxp://home.gamingharbor.com BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Media Access Startup: {25b8d58c-b0cb-46b0-ba64-05b3804e4e86} - c:\program files\media access startup\2.0.0.1050\HPIEAddOn.dll BHO: NP Helper Class: {35b8d58c-b0cb-46b0-ba64-05b3804e4e86} - c:\program files\internet saving optimizer\3.7.2.4650\NPIEAddOn.dll BHO: System Search Dispatcher: {cdbfb47b-58a8-4111-bf95-06178dce326d} - c:\program files\system search dispatcher\1.4.1.1010\ssd.dll BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll TB: {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - No File uRunOnce: [WiseStubReboot] MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I "c:\program files\common files\wise installation wizard\wisb83fc356b7c0441f8a4dd71e088e7974_9_09_0428.msi" transforms="c:\program files\common files\wise installation wizard\wisb83fc356b7c0441f8a4dd71e088e7974_9_09_0428.mst" wise_setup_exe_path="c:\nvidia\displaydriver\190.38\international\PhysX_9.09.0428_SystemSoftware.exe" mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /install mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe mRun: [RTHDCPL] RTHDCPL.EXE mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe" mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe" dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE StartupFolder: c:\docume~1\alluse~1\menust~1\programy\autost~1\hpaiod~1.lnk - c:\program files\hewlett-packard\aio\hp officejet g series\bin\hpoavn07.exe StartupFolder: c:\docume~1\alluse~1\menust~1\programy\autost~1\sagemw~1.lnk - c:\program files\sagem wi-fi 11g usb adapter lan utility\WLANUTL.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab ================= FIREFOX =================== FF - ProfilePath - c:\docume~1\kris\daneap~1\mozilla\firefox\profiles\tetleix7.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.theprizeday.com/today.php|http://www.onet.pl/ FF - component: c:\program files\media access startup\2.0.0.1050\ff\components\HPFFAddOn.dll FF - plugin: c:\documents and settings\kris\dane aplikacji\nowe gadu-gadu\_userdata\npgg.1.dll FF - plugin: c:\program files\mozilla firefox\plugins\npganymedenet.dll FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} ============= SERVICES / DRIVERS =============== R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-8-7 64160] R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-8-7 114768] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-8-7 20560] R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2009-7-3 1028432] R3 SG760_XP;SAGEM 802.11g XG760 1211 Driver;c:\windows\system32\drivers\WlanUZXP.sys [2009-8-7 260608] S2 Sukoku Service;Sukoku Service;"c:\documents and settings\all users\dane aplikacji\sukoku\sukoku119.exe" "c:\program files\sukoku\sukoku.dll" service --> c:\documents and settings\all users\dane aplikacji\sukoku\sukoku119.exe [?] S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2009-8-7 1684736] S3 ZDCndis5;ZDCndis5 Protocol Driver;\??\c:\windows\system32\zdcndis5.sys --> c:\windows\system32\ZDCndis5.SYS [?] =============== Created Last 30 ================ 2009-10-17 12:21 <DIR> --d----- c:\program files\Trend Micro 2009-10-17 12:15 <DIR> --d----- c:\program files\VSO 2009-09-29 22:15 <DIR> --d----- C:\CtJbFW 2009-09-26 14:12 221,184 a------- c:\windows\system32\wmpns.dll 2009-09-19 13:47 2,727 a------- c:\windows\DevMgr.ini 2009-09-19 13:44 90,112 a------- c:\windows\system32\hpocon09.exe 2009-09-19 13:44 22,139 a------- c:\windows\system32\hpocoi08.dll 2009-09-19 13:43 <DIR> --d----- c:\windows\AiOTemp 2009-09-19 13:41 <DIR> --d----- c:\windows\system32\NtmsData 2009-09-19 13:28 20 a------- c:\windows\Hposcv07.INI 2009-09-19 13:27 38,912 a------- c:\windows\system32\hh.exe 2009-09-19 13:27 15,688 a------- c:\windows\system32\lsdelete.exe ==================== Find3M ==================== 2009-09-25 07:58 664,576 a------- c:\windows\system32\wininet.dll 2009-09-25 07:58 81,920 a------- c:\windows\system32\ieencode.dll 2009-09-11 16:36 133,632 a------- c:\windows\system32\msv1_0.dll 2009-09-04 22:47 58,880 a------- c:\windows\system32\msasn1.dll 2009-08-26 10:16 247,326 a------- c:\windows\system32\strmdll.dll 2009-08-13 21:31 411,368 a------- c:\windows\system32\deploytk.dll 2009-08-09 11:27 355,830 a------- c:\windows\system32\perfh015.dat 2009-08-09 11:27 49,712 a------- c:\windows\system32\perfc015.dat 2009-08-08 20:09 76,487 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat 2009-08-07 19:12 21,856 a------- c:\windows\system32\emptyregdb.dat 2009-08-05 11:08 205,312 a------- c:\windows\system32\mswebdvd.dll 2009-08-04 19:07 2,137,600 a------- c:\windows\system32\ntoskrnl.exe 2009-08-04 19:07 2,017,280 a------- c:\windows\system32\ntkrnlpa.exe 2009-07-20 11:12 18,670,592 a------- c:\windows\RTHDCPL.EXE ============= FINISH: 13:06:56,06 =============== [/log] [log] UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT DDS (Ver_09-10-13.01) Microsoft Windows XP Home Edition Boot Device: \Device\HarddiskVolume1 Install Date: 2009-08-07 19:16:52 System Uptime: 2009-10-17 10:25:42 (3 hours ago) Motherboard: ASUSTeK Computer INC. | | P5K Processor: Intel(R) Core(TM)2 Duo CPU E4500 @ 2.20GHz | LGA775 | 2207/200mhz Processor: Intel(R) Core(TM)2 Duo CPU E4500 @ 2.20GHz | LGA775 | 2208/200mhz ==== Disk Partitions ========================= A: is Removable C: is FIXED (NTFS) - 40 GiB total, 24,29 GiB free. D: is FIXED (NTFS) - 193 GiB total, 192,797 GiB free. F: is CDROM () ==== Disabled Device Manager Items ============= Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318} Description: Camera Device ID: USB\VID_046D&PID_08A9&MI_00\6&25ED4571&0&0000 Manufacturer: Name: Camera PNP Device ID: USB\VID_046D&PID_08A9&MI_00\6&25ED4571&0&0000 Service: Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318} Description: Kontroler Ethernet Device ID: PCI\VEN_1969&DEV_1048&SUBSYS_82261043&REV_B0\4&625283&0&00E5 Manufacturer: Name: Kontroler Ethernet PNP Device ID: PCI\VEN_1969&DEV_1048&SUBSYS_82261043&REV_B0\4&625283&0&00E5 Service: Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318} Description: Karta sieciowa 1394 Device ID: V1394\NIC1394\189C02711D800 Manufacturer: Microsoft Name: Karta sieciowa 1394 PNP Device ID: V1394\NIC1394\189C02711D800 Service: NIC1394 Class GUID: {4D36E96B-E325-11CE-BFC1-08002BE10318} Description: Standardowa klawiatura 101/102 klawisze lub Microsoft Natural Keyboard PS/2 Device ID: ACPI\PNP0303\4&1400782C&0 Manufacturer: (Klawiatury standardowe) Name: Standardowa klawiatura 101/102 klawisze lub Microsoft Natural Keyboard PS/2 PNP Device ID: ACPI\PNP0303\4&1400782C&0 Service: i8042prt Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318} Description: Kontroler magistrali zarządzania systemem Device ID: PCI\VEN_8086&DEV_2930&SUBSYS_82771043&REV_02\3&11583659&0&FB Manufacturer: Name: Kontroler magistrali zarządzania systemem PNP Device ID: PCI\VEN_8086&DEV_2930&SUBSYS_82771043&REV_02\3&11583659&0&FB Service: ==== System Restore Points =================== RP1: 2009-08-07 19:20:32 - Punkt kontrolny systemu RP2: 2009-08-07 22:10:49 - Installed Gigabyte Raid Configurer RP3: 2009-08-07 22:13:55 - Zainstalowano Windows Installer KB893803v2. RP4: 2009-08-07 22:17:58 - Installed SAGEM Wi-Fi 11g USB adapter LAN Utility RP5: 2009-08-07 22:18:54 - Installed SAGEM Wi-Fi 11g USB adapter RP6: 2009-08-07 22:19:02 - Removed SAGEM Wi-Fi 11g USB adapter RP7: 2009-08-07 22:19:50 - Zainstalowane Livebox RP8: 2009-08-07 22:20:02 - Installed SAGEM Wi-Fi 11g USB adapter RP9: 2009-08-07 23:03:17 - Installed Steam(TM) RP10: 2009-08-07 23:03:47 - Installed Counter-Strike(TM) RP11: 2009-08-07 23:31:01 - Zainstalowane Realtek High Definition Audio Driver RP12: 2009-08-07 23:31:08 - Installed Windows XP KB888111WXPSP2. RP13: 2009-08-08 01:12:21 - Software Distribution Service 3.0 RP14: 2009-08-08 12:28:45 - Software Distribution Service 3.0 RP15: 2009-08-09 03:00:12 - Software Distribution Service 3.0 RP16: 2009-08-10 03:26:14 - Punkt kontrolny systemu RP17: 2009-08-13 00:28:59 - Software Distribution Service 3.0 RP18: 2009-08-13 21:31:21 - Installed Java(TM) 6 Update 15 RP19: 2009-08-14 00:51:34 - Software Distribution Service 3.0 RP20: 2009-08-15 01:40:02 - Punkt kontrolny systemu RP21: 2009-08-16 12:18:08 - Punkt kontrolny systemu RP22: 2009-08-17 14:14:15 - Punkt kontrolny systemu RP23: 2009-08-18 17:53:41 - Punkt kontrolny systemu RP24: 2009-08-20 12:38:08 - Punkt kontrolny systemu RP25: 2009-08-21 13:31:19 - Punkt kontrolny systemu RP26: 2009-08-22 14:08:23 - Punkt kontrolny systemu RP27: 2009-08-23 14:30:54 - Punkt kontrolny systemu RP28: 2009-08-23 18:26:08 - Software Distribution Service 3.0 RP29: 2009-08-24 19:20:07 - Punkt kontrolny systemu RP30: 2009-08-25 20:11:28 - Punkt kontrolny systemu RP31: 2009-08-26 20:13:50 - Installed Adobe Reader 9.1. RP32: 2009-08-26 23:18:27 - Software Distribution Service 3.0 RP33: 2009-08-28 11:07:28 - Punkt kontrolny systemu RP34: 2009-08-29 16:02:02 - Punkt kontrolny systemu RP35: 2009-08-30 22:29:06 - Punkt kontrolny systemu RP36: 2009-09-01 09:43:02 - Punkt kontrolny systemu RP37: 2009-09-02 16:48:00 - Punkt kontrolny systemu RP38: 2009-09-03 17:59:22 - Punkt kontrolny systemu RP39: 2009-09-04 18:21:40 - Punkt kontrolny systemu RP40: 2009-09-06 11:03:54 - Punkt kontrolny systemu RP41: 2009-09-07 11:43:48 - Punkt kontrolny systemu RP42: 2009-09-08 12:14:30 - Punkt kontrolny systemu RP43: 2009-09-09 14:19:34 - Punkt kontrolny systemu RP44: 2009-09-09 22:43:58 - Software Distribution Service 3.0 RP45: 2009-09-11 10:40:26 - Punkt kontrolny systemu RP46: 2009-09-12 10:56:57 - Punkt kontrolny systemu RP47: 2009-09-13 14:08:31 - Punkt kontrolny systemu RP48: 2009-09-14 15:41:43 - Punkt kontrolny systemu RP49: 2009-09-15 16:23:42 - Punkt kontrolny systemu RP50: 2009-09-16 17:41:47 - Punkt kontrolny systemu RP51: 2009-09-17 20:04:16 - Punkt kontrolny systemu RP52: 2009-09-18 23:11:52 - Punkt kontrolny systemu RP53: 2009-09-19 13:27:57 - Installed hp officejet g series RP54: 2009-09-19 13:41:05 - Removed hp officejet g series RP55: 2009-09-19 13:44:12 - Installed hp officejet g series RP56: 2009-09-19 13:47:18 - Zainstalowane sterowniki drukarek: hp officejet g series fax RP57: 2009-09-20 14:48:41 - Punkt kontrolny systemu RP58: 2009-09-21 15:39:01 - Punkt kontrolny systemu RP59: 2009-09-22 16:58:07 - Punkt kontrolny systemu RP60: 2009-09-24 07:25:46 - Punkt kontrolny systemu RP61: 2009-09-25 10:15:02 - Punkt kontrolny systemu RP62: 2009-09-26 11:26:49 - Punkt kontrolny systemu RP63: 2009-09-27 12:25:44 - Punkt kontrolny systemu RP64: 2009-09-29 12:24:34 - Punkt kontrolny systemu RP65: 2009-09-30 12:53:02 - Punkt kontrolny systemu RP66: 2009-10-01 13:46:42 - Punkt kontrolny systemu RP67: 2009-10-02 14:40:40 - Punkt kontrolny systemu RP68: 2009-10-03 14:58:29 - Punkt kontrolny systemu RP69: 2009-10-05 17:31:34 - Punkt kontrolny systemu RP70: 2009-10-06 18:00:52 - Punkt kontrolny systemu RP71: 2009-10-12 13:17:16 - Punkt kontrolny systemu RP72: 2009-10-13 14:06:09 - Punkt kontrolny systemu RP73: 2009-10-16 13:47:10 - Punkt kontrolny systemu RP74: 2009-10-16 22:39:26 - Software Distribution Service 3.0 ==== Installed Programs ====================== ACE Mega CoDecS Pack Ad-Aware Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader 9.1 Aktualizacja dla systemu Windows XP (KB898461) Aktualizacja dla systemu Windows XP (KB911164) Aktualizacja dla systemu Windows XP (KB955839) Aktualizacja dla systemu Windows XP (KB967715) Aktualizacja dla systemu Windows XP (KB968389) Aktualizacja dla systemu Windows XP (KB973815) Aktualizacja zabezpieczeń dla programu Windows Media Player (KB952069) Aktualizacja zabezpieczeń dla programu Windows Media Player (KB954155) Aktualizacja zabezpieczeń dla programu Windows Media Player (KB968816) Aktualizacja zabezpieczeń dla programu Windows Media Player (KB973540) Aktualizacja zabezpieczeń dla systemu Windows XP (KB923561) Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789) Aktualizacja zabezpieczeń dla systemu Windows XP (KB938464-v2) Aktualizacja zabezpieczeń dla systemu Windows XP (KB944338-v2) Aktualizacja zabezpieczeń dla systemu Windows XP (KB946648) Aktualizacja zabezpieczeń dla systemu Windows XP (KB950762) Aktualizacja zabezpieczeń dla systemu Windows XP (KB950974) Aktualizacja zabezpieczeń dla systemu Windows XP (KB951066) Aktualizacja zabezpieczeń dla systemu Windows XP (KB951376-v2) Aktualizacja zabezpieczeń dla systemu Windows XP (KB951748) Aktualizacja zabezpieczeń dla systemu Windows XP (KB952004) Aktualizacja zabezpieczeń dla systemu Windows XP (KB952954) Aktualizacja zabezpieczeń dla systemu Windows XP (KB954600) Aktualizacja zabezpieczeń dla systemu Windows XP (KB955069) Aktualizacja zabezpieczeń dla systemu Windows XP (KB956572) Aktualizacja zabezpieczeń dla systemu Windows XP (KB956802) Aktualizacja zabezpieczeń dla systemu Windows XP (KB956803) Aktualizacja zabezpieczeń dla systemu Windows XP (KB956844) Aktualizacja zabezpieczeń dla systemu Windows XP (KB957097) Aktualizacja zabezpieczeń dla systemu Windows XP (KB958470) Aktualizacja zabezpieczeń dla systemu Windows XP (KB958644) Aktualizacja zabezpieczeń dla systemu Windows XP (KB958687) Aktualizacja zabezpieczeń dla systemu Windows XP (KB958869) Aktualizacja zabezpieczeń dla systemu Windows XP (KB959426) Aktualizacja zabezpieczeń dla systemu Windows XP (KB960225) Aktualizacja zabezpieczeń dla systemu Windows XP (KB960803) Aktualizacja zabezpieczeń dla systemu Windows XP (KB960859) Aktualizacja zabezpieczeń dla systemu Windows XP (KB961371) Aktualizacja zabezpieczeń dla systemu Windows XP (KB961501) Aktualizacja zabezpieczeń dla systemu Windows XP (KB968537) Aktualizacja zabezpieczeń dla systemu Windows XP (KB969059) Aktualizacja zabezpieczeń dla systemu Windows XP (KB970238) Aktualizacja zabezpieczeń dla systemu Windows XP (KB971486) Aktualizacja zabezpieczeń dla systemu Windows XP (KB971557) Aktualizacja zabezpieczeń dla systemu Windows XP (KB971633) Aktualizacja zabezpieczeń dla systemu Windows XP (KB971657) Aktualizacja zabezpieczeń dla systemu Windows XP (KB971961) Aktualizacja zabezpieczeń dla systemu Windows XP (KB972260) Aktualizacja zabezpieczeń dla systemu Windows XP (KB973346) Aktualizacja zabezpieczeń dla systemu Windows XP (KB973354) Aktualizacja zabezpieczeń dla systemu Windows XP (KB973507) Aktualizacja zabezpieczeń dla systemu Windows XP (KB973525) Aktualizacja zabezpieczeń dla systemu Windows XP (KB973869) Aktualizacja zabezpieczeń dla systemu Windows XP (KB974112) Aktualizacja zabezpieczeń dla systemu Windows XP (KB974455) Aktualizacja zabezpieczeń dla systemu Windows XP (KB974571) Aktualizacja zabezpieczeń dla systemu Windows XP (KB975025) Aktualizacja zabezpieczeń dla systemu Windows XP (KB975467) Archiwizator WinRAR avast! Antivirus Counter-Strike(TM) GameDesire-Pool & Snooker High Definition Audio Driver Package - KB888111 HijackThis 2.0.2 hp officejet g series Java(TM) 6 Update 15 livebox tp Media Access Startup Microsoft Visual C++ 2005 Redistributable Mozilla Firefox (3.5.3) Nowe Gadu-Gadu NVIDIA Drivers NVIDIA nView Desktop Manager Poprawka dla systemu Windows XP (KB935448) Poprawka dla systemu Windows XP (KB952287) Poprawka dla systemu Windows XP (KB970653-v3) Realtek High Definition Audio Driver SAGEM Wi-Fi 11g USB adapter (driver) SAGEM Wi-Fi 11g USB adapter (tool) Steam(TM) TrackMania Nations Forever Visual C++ 2008 x86 Runtime - (v9.0.30729) Visual C++ 2008 x86 Runtime - v9.0.30729.01 VSO Image Resizer 3.0.0.51 WebFldrs XP Windows Installer 3.1 (KB893803) ==== End Of File =========================== [/log]
Psycholandia komentarz 17 października 2009 komentarz 17 października 2009 Nie wiem jak Ty tego loga wkleiłeś, ale strasznie trudno się go z tymi odstępami czyta :/ W okienko OTL wklej poniższy skrypt i klik na Run Fix: [code]:Processes explorer.exe :OTL O2 - BHO: (System Search Dispatcher) - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - C:\Program Files\System Search Dispatcher\1.4.1.1010\ssd.dll File not found O3 - HKU\S-1-5-21-1614895754-1220945662-682003330-1004\..\Toolbar\WebBrowser: (no name) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - No CLSID value found. O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.) :Files C:\CtJbFW C:\WINDOWS\AiOTemp C:\Program Files\mozilla firefox\searchplugins\sukoku119.xml c:\documents and settings\all users\dane aplikacji\sukoku C:\Program Files\System Search Dispatcher :Commands [emptytemp] [start explorer] [Reboot][/code]
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.