thxzapomoc utworzono 1 kwietnia 2010 utworzono 1 kwietnia 2010 (edytowane) Witam jestem nowym userem WinXP Byłem zadowolony z niego do czasu.. Instalowałem potrzebne programy takie jak A-wirus itp I mój problem: Gdy chce zmienić tapete wyskakuje błąd: rundll32.exe - Nie można znaleźć składnika Uruchomienie tej aplikacji nie powiodło się, ponieważ nie znaleziono dot3api.dll Ponowne zainstalowanie aplikacji może naprawić ten problem I taki sam gdy chce zmienić ,,Skin" tylko że uxtheme.dll I taka sprawa że nie rozumiem o co chodzi, i jakby ktoś mógłby mnie nakierować do downloadu tych plików byłoby wspaniale Pozdro:) [color="#FF0000"]// Przenoszę do Bezpieczeństwa // Cyprian[/color]
raazor90 komentarz 7 kwietnia 2010 komentarz 7 kwietnia 2010 Daj loga z OTL: http://www.forumpc.pl/index.php?showtopic=104338 prawdopodobną przyczyną jest infekcja
thxzapomoc komentarz 7 kwietnia 2010 Autor komentarz 7 kwietnia 2010 (edytowane) takie coś [log]OTL logfile created on: 2010-04-07 19:06:34 - Run 1 OTL by OldTimer - Version 3.2.1.0 Folder = D:\ Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free 3,00 Gb Paging File | 2,00 Gb Available in Paging File | 85,00% Paging File free Paging file location(s): C:\pagefile.sys 1728 3456 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 18,56 Gb Total Space | 10,17 Gb Free Space | 54,80% Space Free | Partition Type: NTFS Drive D: | 18,56 Gb Total Space | 12,71 Gb Free Space | 68,49% Space Free | Partition Type: NTFS E: Drive not present or media not loaded Drive F: | 4,29 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: KSG Current User Name: KSG Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-04-07 18:46:33 | 000,561,664 | ---- | M] (OldTimer Tools) -- D:\OTL.exe PRC - [2010-04-07 07:30:34 | 000,910,296 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-01-28 18:17:42 | 000,365,744 | ---- | M] (PortableApps.com) -- D:\Portable\PortableApps.com\PortableApps\PortableApps.com\PortableAppsPlatform.exe PRC - [2009-11-20 13:14:24 | 000,798,720 | ---- | M] (Lee-Soft.com) -- C:\Program Files\ViStart\ViStart.exe PRC - [2009-11-07 18:56:24 | 000,438,272 | ---- | M] (Lee-Soft.com, Lee Matthew Chantrey) -- C:\Program Files\ViGlance\ViGlance.exe PRC - [2009-10-20 16:21:26 | 000,551,784 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Documents and Settings\KSG\Menu Start\Programy\Autostart\ZoomIt.exe PRC - [2009-03-30 18:44:19 | 000,126,976 | ---- | M] () -- C:\WINDOWS\system32\UAService7.exe PRC - [2008-04-14 19:21:16 | 001,433,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-13 19:39:20 | 000,049,152 | ---- | M] (artArmin) -- C:\Program Files\Vista Drive Icon\DrvIcon.exe PRC - [2007-10-02 14:46:56 | 000,124,832 | ---- | M] () -- d:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe PRC - [2007-07-19 15:23:34 | 000,455,984 | ---- | M] (Panda Software International) -- d:\Program Files\Panda Security\Panda Antivirus 2008\ApVxdWin.exe PRC - [2007-07-16 15:14:22 | 000,148,272 | ---- | M] (Panda Software International) -- d:\Program Files\Panda Security\Panda Antivirus 2008\PAVSRV51.EXE PRC - [2007-07-12 10:08:48 | 000,169,264 | ---- | M] (Panda Software International) -- d:\Program Files\Panda Security\Panda Antivirus 2008\PsCtrlS.exe PRC - [2007-07-06 14:14:10 | 000,096,560 | ---- | M] (Panda Software International) -- d:\Program Files\Panda Security\Panda Antivirus 2008\AVENGINE.EXE PRC - [2007-06-07 16:29:22 | 000,083,504 | ---- | M] (Panda Software International) -- d:\Program Files\Panda Security\Panda Antivirus 2008\WebProxy.exe PRC - [2007-05-24 10:31:26 | 000,108,592 | ---- | M] (Panda Software International) -- d:\Program Files\Panda Security\Panda Antivirus 2008\PsImSvc.exe PRC - [2007-03-06 11:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe PRC - [2007-03-03 14:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-04-07 18:46:33 | 000,561,664 | ---- | M] (OldTimer Tools) -- D:\OTL.exe MOD - [2008-04-26 15:14:22 | 000,042,672 | ---- | M] (Stardock.Net, Inc) -- C:\WINDOWS\system32\wbsys.dll MOD - [2006-08-25 17:51:13 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll MOD - [2006-05-03 22:53:54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\framedyn.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (Hamachi2Svc) SRV - File not found [Disabled | Stopped] -- -- (gusvc) SRV - File not found [Disabled | Stopped] -- -- (gupdate) Usługa Google Update (gupdate) SRV - File not found [Disabled | Stopped] -- -- (avast! Web Scanner) SRV - File not found [Disabled | Stopped] -- -- (avast! Mail Scanner) SRV - File not found [Disabled | Stopped] -- -- (avast! Antivirus) SRV - [2060-04-02 10:28:43 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2009-03-30 18:44:19 | 000,126,976 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\UAService7.exe -- (UserAccess7) SecuROM User Access Service (V7) SRV - [2007-10-02 14:46:56 | 000,124,832 | ---- | M] () [Auto | Running] -- d:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor6.0) SRV - [2007-07-16 15:14:22 | 000,148,272 | ---- | M] (Panda Software International) [Auto | Running] -- d:\Program Files\Panda Security\Panda Antivirus 2008\pavsrv51.exe -- (PAVSRV) SRV - [2007-07-12 10:08:48 | 000,169,264 | ---- | M] (Panda Software International) [Auto | Running] -- d:\Program Files\Panda Security\Panda Antivirus 2008\PsCtrls.exe -- (Panda Software Controller) SRV - [2007-05-24 10:31:26 | 000,108,592 | ---- | M] (Panda Software International) [Auto | Running] -- d:\Program Files\Panda Security\Panda Antivirus 2008\PsImSvc.exe -- (PSIMSVC) SRV - [2007-03-06 11:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service) SRV - [2007-03-03 14:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-03-09 13:12:54 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi) DRV - [2010-03-09 13:12:33 | 000,162,640 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP) DRV - [2010-03-09 13:09:08 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr) DRV - [2010-03-09 13:08:41 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2) DRV - [2010-03-09 13:08:30 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2010-03-09 13:08:15 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2010-01-20 16:53:06 | 000,013,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\epmntdrv.sys -- (epmntdrv) DRV - [2010-01-20 16:53:04 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\EuGdiDrv.sys -- (EuGdiDrv) DRV - [2009-11-25 18:25:55 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-09-23 10:41:58 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2009-03-18 18:18:02 | 000,114,048 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman) DRV - [2008-02-12 03:42:38 | 000,232,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VMM.sys -- (vmm) DRV - [2008-02-05 01:50:44 | 000,059,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VMNetSrv.sys -- (VPCNetS2) DRV - [2007-10-11 12:24:00 | 000,079,104 | ---- | M] (Softwareentwicklung Remus - ArchiCrypt ) [Driver] [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sleen16.sys -- (SLEE_16_DRIVER) DRV - [2007-06-06 11:43:32 | 000,083,640 | ---- | M] (Panda Software International) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\pavdrv51.sys -- (pavdrv) DRV - [2006-10-22 13:22:00 | 003,994,624 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2006-07-24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen) DRV - [2004-08-04 01:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2004-08-04 00:32:32 | 000,084,480 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ac97via.sys -- (VIAudio) Kontroler VIA AC'97 Audio (WDM) DRV - [2004-08-04 00:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2004-03-24 04:12:34 | 000,017,280 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\nsndis5.sys -- (NSNDIS5) DRV - [2002-09-16 18:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\PQNTDRV.sys -- (PQNTDrv) [color=#E56717]========== Standard Registry (All) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.windowsxlive.net IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.1.0014 FF - prefs.js..extensions.enabledItems: radiobar@toolbar:1.0.0 FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.3 FF - HKLM\software\mozilla\Firefox\Extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-09-28 20:17:25 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2010-04-07 15:12:32 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2009-03-28 12:03:02 | 000,000,000 | --SD | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2009-03-28 12:03:02 | 000,000,000 | --SD | M] FF - HKLM\software\mozilla\Netscape Navigator 9.0.0.6\extensions\\Components: C:\Program Files\Netscape\Navigator 9\components FF - HKLM\software\mozilla\Netscape Navigator 9.0.0.6\extensions\\Plugins: C:\Program Files\Netscape\Navigator 9\plugins FF - HKLM\software\mozilla\SeaMonkey 2.0.3\extensions\\Components: d:\Program Files\SeaMonkey\components FF - HKLM\software\mozilla\SeaMonkey 2.0.3\extensions\\Plugins: d:\Program Files\SeaMonkey\plugins [2009-03-19 10:26:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\KSG\Dane aplikacji\Mozilla\Extensions [2010-02-01 16:33:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\KSG\Dane aplikacji\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} [2009-03-19 10:26:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\KSG\Dane aplikacji\Mozilla\Extensions\{92650c4d-4b8e-4d2a-b7eb-24ecf4f6b63a} [2009-03-16 21:49:19 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\KSG\Dane aplikacji\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2010-04-07 15:28:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\KSG\Dane aplikacji\Mozilla\Firefox\Profiles\lly8iveu.default\extensions [2075-03-19 16:37:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\KSG\Dane aplikacji\Mozilla\Firefox\Profiles\lly8iveu.default\extensions\DTToolbar@toolbarnet.com [2060-04-02 08:45:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\KSG\Dane aplikacji\Mozilla\Firefox\Profiles\lly8iveu.default\extensions\radiobar@toolbar [2009-03-19 10:26:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\KSG\Dane aplikacji\Mozilla\SeaMonkey\Profiles\kacqzqvg.default\extensions O1 HOSTS File: ([2009-02-11 21:26:39 | 000,378,509 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 67.215.65.132 www.goowno.pl O1 - Hosts: 67.215.65.132 goowno.pl O1 - Hosts: 127.0.0.1 www.007guard.com O1 - Hosts: 127.0.0.1 007guard.com O1 - Hosts: 127.0.0.1 008i.com O1 - Hosts: 127.0.0.1 www.008k.com O1 - Hosts: 127.0.0.1 008k.com O1 - Hosts: 127.0.0.1 www.00hq.com O1 - Hosts: 127.0.0.1 00hq.com O1 - Hosts: 127.0.0.1 010402.com O1 - Hosts: 127.0.0.1 www.032439.com O1 - Hosts: 127.0.0.1 032439.com O1 - Hosts: 127.0.0.1 www.0scan.com O1 - Hosts: 127.0.0.1 0scan.com O1 - Hosts: 127.0.0.1 www.1000gratisproben.com O1 - Hosts: 127.0.0.1 1000gratisproben.com O1 - Hosts: 127.0.0.1 www.1001namen.com O1 - Hosts: 127.0.0.1 1001namen.com O1 - Hosts: 127.0.0.1 www.100888290cs.com O1 - Hosts: 127.0.0.1 100888290cs.com O1 - Hosts: 127.0.0.1 www.100sexlinks.com O1 - Hosts: 127.0.0.1 100sexlinks.com O1 - Hosts: 127.0.0.1 10sek.com O1 - Hosts: 127.0.0.1 www.10sek.com O1 - Hosts: 13044 more lines... O2 - BHO: (no name) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - No CLSID value found. O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found. O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - d:\PROGRA~1\SPYBOT~1\SDHelper.dll File not found O2 - BHO: (no name) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - No CLSID value found. O2 - BHO: (no name) - {AE90C38C-97CF-4696-B290-C7973DC9675E} - No CLSID value found. O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O2 - BHO: (no name) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - No CLSID value found. O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll File not found O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll File not found O3 - HKLM\..\Toolbar: (no name) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {C3CD744D-2FAE-4640-8297-16B5DA423104} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKCU\..\Toolbar\ShellBrowser: (&Adres) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll File not found O4 - HKLM..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe (artArmin) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [OSSelectorReinstall] C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe () O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [vilaunch] C:\WINDOWS\system32\vilaunch.exe () O4 - HKCU..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation) O4 - HKCU..\Run: [MSMSGS] C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O4 - HKCU..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe () O4 - HKCU..\Run: [viwc] C:\WINDOWS\system32\viwc.exe () O4 - Startup: C:\Documents and Settings\KSG\Menu Start\Programy\Autostart\PortableApps.lnk = D:\Portable\PortableApps.com\StartPortableApps.exe (PortableApps.com) O4 - Startup: C:\Documents and Settings\KSG\Menu Start\Programy\Autostart\ZoomIt.exe (Sysinternals - www.sysinternals.com) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - d:\PROGRA~1\SPYBOT~1\SDHelper.dll File not found O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation) O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - d:\Program Files\Panda Security\Panda Antivirus 2008\pavlsp.dll (Panda Software International) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - d:\Program Files\Panda Security\Panda Antivirus 2008\pavlsp.dll (Panda Software International) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - d:\Program Files\Panda Security\Panda Antivirus 2008\pavlsp.dll (Panda Software International) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - d:\Program Files\Panda Security\Panda Antivirus 2008\pavlsp.dll (Panda Software International) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1263581264920 (WUWebControl Class) O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation) O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\ipp - No CLSID value found O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation) O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation) O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp - No CLSID value found O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation) O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation) O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation) O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) O20 - AppInit_DLLs: (wbsys.dll) - C:\WINDOWS\System32\wbsys.dll (Stardock.Net, Inc) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation) O20 - Winlogon\Notify\avldr: DllName - avldr.dll - C:\WINDOWS\System32\avldr.dll (Panda Software International) O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation) O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation) O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation) O20 - Winlogon\Notify\dimsntfy: DllName - Reg Error: Value error. - Reg Error: Value error. File not found O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation) O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation) O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation) O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation) O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation) O20 - Winlogon\Notify\WBSrv: DllName - d:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll - d:\Program Files\Stardock\Object Desktop\WindowBlinds\WbSrv.dll (Stardock Corporation) O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation) O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation) O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll (Microsoft Corporation) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation) O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation) O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Moduł wstępnego ładowania interfejsu Browseui - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Demon buforu kategorii składników - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) O24 - Desktop Components:0 () - C:\Documents and Settings\KSG\Pulpit\bez tytułu.bmp O24 - Desktop Components:1 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\KSG\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\KSG\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation) O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation) O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation) O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation) O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation) O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation) O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation) O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation) O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation) O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation) O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-10-08 18:38:36 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2007-11-30 11:04:34 | 000,000,053 | R--- | M] () - F:\autorun.inf -- [ CDFS ] O33 - MountPoints2\{4d201c90-1df2-11de-a9f3-002127f01102}\Shell\AutoRun\command - "" = t8s2x.exe O33 - MountPoints2\{4d201c90-1df2-11de-a9f3-002127f01102}\Shell\open\Command - "" = t8s2x.exe O33 - MountPoints2\{e16fbaf2-792f-11d9-b119-806d6172696f}\Shell - "" = AutoRun O33 - MountPoints2\{e16fbaf2-792f-11d9-b119-806d6172696f}\Shell\AutoRun\command - "" = F:\startuj.exe -- [2007-11-29 17:50:36 | 000,035,123 | R--- | M] () O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2060-04-02 11:08:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\KSG\Dane aplikacji\DAEMON Tools Pro [2060-04-02 11:08:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\KSG\Dane aplikacji\DAEMON Tools [2060-04-02 10:30:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\FLEXnet [2060-04-02 10:28:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared [2060-04-02 10:21:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2060-04-02 10:21:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Adobe [2060-04-02 10:21:18 | 000,118,520 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe [2060-04-02 10:21:18 | 000,116,472 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe [2060-04-01 19:31:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\KSG\WINDOWS [2060-04-01 16:41:10 | 000,042,672 | ---- | C] (Stardock.Net, Inc) -- C:\WINDOWS\System32\wbsys(2)(2).dll [2060-04-01 12:51:15 | 007,077,888 | ---- | C] () -- C:\Documents and Settings\KSG\ntuser.dat [2060-04-01 12:44:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dokumenty\Stardock [2060-04-01 12:44:21 | 000,042,672 | ---- | C] (Stardock.Net, Inc) -- C:\WINDOWS\System32\wbsys.dll [2010-04-07 18:22:04 | 002,870,624 | -H-- | C] () -- C:\Documents and Settings\KSG\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-04-07 16:42:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\KSG\Dane aplikacji\ViGlance [2010-04-07 16:37:14 | 000,000,000 | ---D | C] -- C:\Program Files\ViSplore [2010-04-07 16:37:14 | 000,000,000 | ---D | C] -- C:\Program Files\TrueTransparency [2010-04-07 16:37:13 | 000,000,000 | ---D | C] -- C:\Program Files\WinFlip [2010-04-07 16:37:12 | 000,000,000 | ---D | C] -- C:\Program Files\ViStart [2010-04-07 16:37:12 | 000,000,000 | ---D | C] -- C:\Program Files\Vista Rainbar [2010-04-07 16:37:12 | 000,000,000 | ---D | C] -- C:\Program Files\Vista Drive Icon [2010-04-07 16:37:12 | 000,000,000 | ---D | C] -- C:\Program Files\ViGlance [2010-04-07 16:37:11 | 000,498,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logon.scr [2010-04-07 15:11:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2010-04-07 15:11:02 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010-04-07 15:10:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2010-04-07 15:10:47 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2010-04-07 15:10:05 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll [2010-04-07 15:10:05 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll [2010-04-07 15:10:05 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe [2010-04-07 15:10:05 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll [2010-04-07 15:10:05 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll [2010-04-07 15:10:05 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll [2010-04-07 14:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\KSG\Dane aplikacji\ViStart [2010-04-07 08:26:43 | 000,025,992 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS\System32\pgdfgsvc.exe [2010-04-06 22:15:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\VIRepair [2010-04-06 22:01:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\VITrans [2010-04-06 22:01:46 | 000,094,208 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS\System32\pskill.exe [2010-04-06 22:01:46 | 000,019,968 | ---- | C] (Dead Knight) -- C:\WINDOWS\System32\reico.exe [2010-04-06 22:01:46 | 000,000,000 | ---D | C] -- C:\VTPFiles [2010-04-06 22:00:28 | 000,020,480 | ---- | C] (Windows X) -- C:\WINDOWS\System32\scrnrdr.exe [2010-04-02 12:09:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\KSG\Ustawienia lokalne\Dane aplikacji\Adobe [2010-01-25 18:05:54 | 000,042,800 | ---- | C] () -- C:\Documents and Settings\KSG\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-01-23 17:56:40 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\KSG\ntuser.ini [2010-01-23 17:56:39 | 000,020,480 | -H-- | C] () -- C:\Documents and Settings\KSG\ntuser.dat.LOG [2010-01-23 17:56:39 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\KSG\Dane aplikacji\desktop.ini [2009-04-07 18:35:59 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\LauncherAccess.dt [2009-02-13 18:50:42 | 000,007,680 | ---- | C] () -- C:\Documents and Settings\KSG\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-10-08 20:17:47 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\desktop.ini [2008-04-02 21:37:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Ashampoo Antivirus [2007-08-15 20:55:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2006-06-29 14:58:52 | 000,030,808 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont [2006-06-29 14:53:56 | 000,026,489 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont [2006-04-18 15:39:28 | 000,029,779 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont [2006-04-18 15:39:28 | 000,026,040 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont [2006-02-18 01:21:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Symantec [2005-02-07 20:36:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2005-02-07 20:36:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2005-02-07 19:55:20 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2075-03-20 10:15:11 | 000,000,478 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{ABC84229-CFA9-40A7-B053-1321591F636B}.job [2075-03-19 20:24:14 | 000,000,527 | ---- | M] () -- C:\Documents and Settings\KSG\Menu Start\Programy\Autostart\PortableApps.lnk [2060-04-02 10:20:58 | 000,116,472 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe [2060-04-02 10:20:57 | 000,118,520 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe [2060-04-02 10:20:26 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2060-04-02 10:07:53 | 000,007,680 | ---- | M] () -- C:\Documents and Settings\KSG\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2060-04-02 09:31:31 | 000,000,059 | ---- | M] () -- C:\WINDOWS\mgwin.ini [2060-04-01 12:50:05 | 000,000,000 | ---- | M] () -- C:\WINDOWS\WB.ini [2010-04-07 19:01:00 | 000,000,234 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job [2010-04-07 18:53:00 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1c999c45ee51b60.job [2010-04-07 18:44:00 | 000,001,132 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1682526488-1957994488-1004UA.job [2010-04-07 18:32:47 | 000,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-04-07 18:32:37 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1c999c45e740780.job [2010-04-07 18:32:33 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-04-07 18:32:19 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-04-07 18:32:15 | 1207,488,512 | -HS- | M] () -- C:\hiberfil.sys [2010-04-07 18:29:56 | 007,077,888 | ---- | M] () -- C:\Documents and Settings\KSG\ntuser.dat [2010-04-07 18:29:56 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\KSGntuser.ini [2010-04-07 18:29:47 | 002,870,624 | -H-- | M] () -- C:\Documents and Settings\KSG\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-04-07 18:24:45 | 000,000,980 | -H-- | M] () -- C:\WINDOWS\EPMBatch.ept [2010-04-07 16:37:15 | 000,001,420 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Seven Transformation Pack - Welcome Center.lnk [2010-04-07 16:28:50 | 000,025,214 | ---- | M] () -- C:\WINDOWS\Icon_3.ico [2010-04-07 15:46:22 | 001,030,494 | ---- | M] () -- C:\Documents and Settings\KSG\Pulpit\bez tytułu.bmp [2010-04-07 15:25:24 | 000,042,800 | ---- | M] () -- C:\Documents and Settings\KSG\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-04-07 15:23:43 | 000,169,096 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-04-07 15:17:24 | 001,047,166 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-04-07 15:17:24 | 000,492,304 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-04-07 15:17:24 | 000,433,166 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-04-07 15:17:24 | 000,084,596 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-04-07 15:17:24 | 000,068,122 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-04-07 14:56:04 | 000,000,873 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\EASEUS Partition Master 5.0.1 Home Edition.lnk [2010-04-07 14:46:35 | 000,000,586 | ---- | M] () -- C:\Documents and Settings\KSG\Pulpit\solaris.exe.lnk [2010-04-07 14:44:00 | 000,001,080 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1682526488-1957994488-1004Core.job [2010-04-07 14:20:13 | 000,025,214 | ---- | M] () -- C:\WINDOWS\Icon_2.ico [2010-04-07 08:27:53 | 000,000,871 | ---- | M] () -- C:\WINDOWS\mgreg.ini [2010-04-07 08:26:43 | 000,025,992 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS\System32\pgdfgsvc.exe [2010-04-07 07:55:25 | 000,000,658 | ---- | M] () -- C:\WINDOWS\win.ini [2010-04-07 07:55:25 | 000,000,354 | RHS- | M] () -- C:\boot.ini [2010-04-07 07:55:25 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2010-04-06 22:02:14 | 000,078,942 | ---- | M] () -- C:\WINDOWS\Icon_1.ico [2010-04-06 21:28:57 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-04-06 21:18:32 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-04-02 13:33:31 | 000,000,000 | RHS- | M] () -- C:\config.sys [2010-03-09 13:24:05 | 000,153,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe [2010-03-09 13:12:54 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2010-03-09 13:12:33 | 000,162,640 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2010-03-09 13:09:08 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2010-03-09 13:08:41 | 000,100,432 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2010-03-09 13:08:38 | 000,094,800 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2010-03-09 13:08:30 | 000,019,024 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2010-03-09 13:08:15 | 000,028,880 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2075-03-19 20:24:14 | 000,000,527 | ---- | C] () -- C:\Documents and Settings\KSG\Menu Start\Programy\Autostart\PortableApps.lnk [2060-04-02 09:34:34 | 000,000,871 | ---- | C] () -- C:\WINDOWS\mgreg.ini [2060-04-02 09:31:31 | 000,000,059 | ---- | C] () -- C:\WINDOWS\mgwin.ini [2060-04-01 12:50:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\WB.ini [2010-04-07 16:37:12 | 000,110,646 | ---- | C] () -- C:\WINDOWS\System32\vistartup.bmp [2010-04-07 16:28:50 | 000,025,214 | ---- | C] () -- C:\WINDOWS\Icon_3.ico [2010-04-07 16:16:11 | 1207,488,512 | -HS- | C] () -- C:\hiberfil.sys [2010-04-07 15:46:21 | 001,030,494 | ---- | C] () -- C:\Documents and Settings\KSG\Pulpit\bez tytułu.bmp [2010-04-07 14:59:59 | 000,000,980 | -H-- | C] () -- C:\WINDOWS\EPMBatch.ept [2010-04-07 14:56:04 | 000,000,873 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\EASEUS Partition Master 5.0.1 Home Edition.lnk [2010-04-07 14:55:55 | 001,692,288 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe [2010-04-07 14:55:55 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll [2010-04-07 14:55:54 | 000,086,408 | ---- | C] () -- C:\WINDOWS\System32\setupempdrv03.exe [2010-04-07 14:55:54 | 000,013,192 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys [2010-04-07 14:55:54 | 000,008,456 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys [2010-04-07 14:46:35 | 000,000,586 | ---- | C] () -- C:\Documents and Settings\KSG\Pulpit\solaris.exe.lnk [2010-04-07 14:20:13 | 000,025,214 | ---- | C] () -- C:\WINDOWS\Icon_2.ico [2010-04-06 22:10:48 | 000,023,434 | ---- | C] () -- C:\WINDOWS\System32\vilang.sif [2010-04-06 22:10:43 | 000,360,499 | ---- | C] () -- C:\WINDOWS\System32\viwc.exe [2010-04-06 22:10:43 | 000,146,412 | ---- | C] () -- C:\WINDOWS\System32\vilaunch.exe [2010-04-06 22:10:43 | 000,001,420 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Seven Transformation Pack - Welcome Center.lnk [2010-04-06 22:02:14 | 000,078,942 | ---- | C] () -- C:\WINDOWS\Icon_1.ico [2010-04-06 22:01:46 | 000,111,104 | ---- | C] () -- C:\WINDOWS\System32\Uharc.exe [2010-04-06 22:01:46 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\moveex.exe [2010-04-06 22:01:46 | 000,008,636 | ---- | C] () -- C:\WINDOWS\System32\modifype.exe [2010-04-06 21:21:34 | 000,001,355 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010-01-24 21:59:56 | 000,000,041 | ---- | C] () -- C:\WINDOWS\winampa.ini [2010-01-24 21:47:56 | 000,001,065 | ---- | C] () -- C:\WINDOWS\winamp.ini [2009-11-22 17:27:09 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI [2009-10-13 15:13:18 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2009-06-02 18:23:31 | 000,000,058 | ---- | C] () -- C:\WINDOWS\wininit.ini [2009-05-29 19:04:24 | 000,000,030 | ---- | C] () -- C:\WINDOWS\TextSpy.ini [2009-05-29 18:50:12 | 000,000,000 | ---- | C] () -- C:\WINDOWS\SETUP32.INI [2009-04-07 18:32:02 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2009-03-30 18:44:11 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt.dll [2009-03-23 14:43:07 | 000,000,635 | ---- | C] () -- C:\WINDOWS\BeatBox.INI [2009-03-23 14:37:03 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\mgxasio2.dll [2009-03-23 14:35:13 | 000,120,200 | ---- | C] () -- C:\WINDOWS\System32\DLLDEV32i.dll [2009-03-23 14:34:21 | 000,005,937 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini [2009-03-17 20:16:37 | 001,589,248 | ---- | C] () -- C:\WINDOWS\System32\libmysql_d.dll [2009-02-12 21:47:43 | 000,138,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2009-02-11 16:22:41 | 000,210,456 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll [2009-02-11 16:22:41 | 000,206,360 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll [2009-02-11 16:22:41 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll [2009-02-11 16:22:41 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll [2009-02-11 16:22:41 | 000,194,072 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll [2009-02-11 16:22:41 | 000,026,136 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll [2008-10-22 09:29:26 | 000,000,023 | ---- | C] () -- C:\WINDOWS\FxLoader.INI [2006-10-22 13:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2006-10-22 13:22:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2006-10-22 13:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2006-10-22 13:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2006-10-22 13:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2006-10-22 13:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2006-10-22 13:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [2002-03-19 18:30:00 | 000,141,824 | ---- | C] () -- C:\WINDOWS\System32\msvdm.dll [2002-03-17 02:00:00 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000088.DLL [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\TEMP:671329E4 < End of report > [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2004-08-04 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys [2008-04-13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2004-08-04 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys [2008-04-13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\atapi.sys [2004-08-04 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2004-08-04 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2004-08-04 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2008-04-13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\cdrom.sys [2004-08-04 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2004-08-04 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\eventlog.dll [2008-04-14 19:20:31 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\ndis.sys [2004-08-04 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2004-08-04 14:00:00 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\winlogon.exe [2008-04-14 19:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\winlogon.exe < End of report > i takie OTL Extras logfile created on: 2010-04-07 19:06:34 - Run 1 OTL by OldTimer - Version 3.2.1.0 Folder = D:\ Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free 3,00 Gb Paging File | 2,00 Gb Available in Paging File | 85,00% Paging File free Paging file location(s): C:\pagefile.sys 1728 3456 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 18,56 Gb Total Space | 10,17 Gb Free Space | 54,80% Space Free | Partition Type: NTFS Drive D: | 18,56 Gb Total Space | 12,71 Gb Free Space | 68,49% Space Free | Partition Type: NTFS E: Drive not present or media not loaded Drive F: | 4,29 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: KSG Current User Name: KSG Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "50000:TCP" = 50000:TCP:*:Enabled:ArcaVir CommunicationPort (A) "50001:TCP" = 50001:TCP:*:Enabled:ArcaVir CommunicationPort (S) "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\PowerDVD9.exe" = D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\PowerDVD9.exe:*:Enabled:CyberLink PowerDVD 9.0 -- File not found [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "D:\Program Files\City Interactive\The Heat of War\System\Iwo.exe" = D:\Program Files\City Interactive\The Heat of War\System\Iwo.exe:*:Enabled:Iwo -- File not found "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "C:\Documents and Settings\KSG\Ustawienia lokalne\Temp\Rar$EX00.951\CounterStrike2D.exe" = C:\Documents and Settings\KSG\Ustawienia lokalne\Temp\Rar$EX00.951\CounterStrike2D.exe:*:Disabled:CounterStrike2D -- File not found "C:\Program Files\City Interactive\The Heat of War\System\Iwo.exe" = C:\Program Files\City Interactive\The Heat of War\System\Iwo.exe:*:Enabled:Iwo -- File not found "C:\Program Files\Ares\Ares.exe" = C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows -- File not found "D:\Program Files\Nowe Gadu-Gadu\gg.exe" = D:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Enabled:Nowe Gadu-Gadu -- File not found "D:\Program Files\eMule\eMule.exe" = D:\Program Files\eMule\eMule.exe:*:Enabled:eMule -- File not found "D:\Do cd\LF2 V 2.20\LF2_v2.0\lf2.exe" = D:\Do cd\LF2 V 2.20\LF2_v2.0\lf2.exe:*:Enabled:lf2 -- File not found "C:\Program Files\Winamp Remote\bin\Orb.exe" = C:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:Orb -- File not found "C:\Program Files\Winamp Remote\bin\OrbTray.exe" = C:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray -- File not found "C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe" = C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client -- File not found "D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\PowerDVD9.exe" = D:\Program Files\CyberLink\PowerDVD9\PowerDVD9\PowerDVD9.exe:*:Enabled:CyberLink PowerDVD 9.0 -- File not found [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{01F6C6F6-0D5A-45D0-83DB-38AB421D0BF5}" = Steganos Safe One "{067EC517-9731-43FD-B4D5-296EE0027BBB}" = LogMeIn Hamachi "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{2300EE96-0A41-4FAB-BD03-989EC44577A0}" = Acronis Disk Director Suite "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 16 "{2D70C9E6-949F-4D68-92D2-9F8662662718}" = TRAOD Startup Configuration Utility "{2EAF7E61-068E-11DF-953C-005056806466}" = Google Earth "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{36BC3F0C-8777-4DB2-B2F4-7FA5250F34BA}" = GtkRadiant-1.3.8-ET "{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}" = SpPhones "{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}" = InterVideo DeviceService "{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}" = Sp5 "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{5ED20FB0-678F-41EE-9211-DC9C670FD193}" = Battlefield 1942 Multiplayer Demo "{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PartitionMagic "{6C3959C6-943E-44B3-BAAD-570B04B134E5}" = SpCommon "{6F1EC187-3C90-4CC5-A567-ADC4DC31CD61}" = The Spider-Man 2 Demo "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{75773FB3-929A-4B08-A411-04A075071E10}" = Worms Forts - Oblężenie "{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}" = Text-To-Speech-Runtime "{7E20EFE6-E604-48C6-8B39-BA4742F2CDB4}" = Zune Desktop Theme "{7E44C354-10A8-4214-9C56-F3F00775E415}_is1" = Stykz 1.0 for Windows (RC 4) "{80A4C163-89D5-4F59-8B12-95792F68EC08}" = Steganos Safe 2008 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{85EAA9F7-A7D0-4EFB-AF68-816A88604E8B}" = Movie ISO "{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar "{8874FD36-7C9D-4573-8956-E368D6753D90}" = Worms3D "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8A5F34E2-37CF-4AD4-808C-2D413786E31A}" = Microsoft Visual C Runtime "{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable "{A56028FC-1F40-4369-9941-7AAAC6ACE924}" = LastChaosPoland "{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AD483998-2E9A-4405-83FF-6E503AF49CBB}" = Microsoft Virtual PC 2007 SP1 "{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2 "{D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A}" = Panda Antivirus 2008 "{DFC6573E-124D-4026-BFA4-B433C9D3FF21}" = ISO Recorder "{E1BBBAC5-2857-4155-82A6-54492CE88620}" = Opera 9.64 "{E415C943-37E5-473F-8BAE-043C56734124}" = Sp5TTInt "{EFFEAD3F-DE57-4CB4-B3BE-D6507538122D}" = Codename Panzers Faza 2 "{F251B999-08A9-4704-999C-9962F0DFD88E}" = Virtual Desktop Manager Powertoy for Windows XP "{F54AC413-D2C6-4A24-B324-370C223C6250}" = Adobe Photoshop Elements 6.0 "{F665C0D9-D110-4E21-A073-952057C7ADB1}" = PTDD Super Fdisk 1.0 "{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}" = VideoStudio "{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}" = Sp5Intl "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Photoshop Elements 6" = Adobe Photoshop Elements 6.0 "Astroburn Lite" = Astroburn Lite "Astroburn Toolbar" = Astroburn Toolbar "AutoConnect" = AutoConnect v0.1.3.1 "avast5" = avast! Free Antivirus "AviScreen Classic (Freeware)_is1" = AviScreen Classic Version 1.3 "BearShare" = BearShare "CamStudio" = CamStudio "DAEMON Tools Toolbar" = DAEMON Tools Toolbar "Dragon Ball GR v0.9aaa" = Dragon Ball GR v0.9aaa "EASEUS Partition Master Home Edition_is1" = EASEUS Partition Master 5.0.1 Home Edition "EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v4.60 "ie8" = Windows Internet Explorer 8 "InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PowerQuest PartitionMagic 8.0 Demo "InstallShield_{6F1EC187-3C90-4CC5-A567-ADC4DC31CD61}" = The Spider-Man 2 Demo "InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9 "InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}" = Ulead VideoStudio 11 "Kangurek Kao - Tajemnica wulkanu" = Kangurek Kao - Tajemnica wulkanu "Little Fighter 2" = Little Fighter 2 1.9c "LogMeIn Hamachi" = LogMeIn Hamachi "MagicTweak_is1" = MagicTweak Version 4.11 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "mIRC" = mIRC "mIRC 6.03 PL" = mIRC 6.03 PL "Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3) "NARC/EN-English_is1" = NARC "Network Stumbler" = Network Stumbler 0.4.0 (remove only) "NVIDIA Drivers" = NVIDIA Drivers "Odkurzacz 12.2_is1" = Odkurzacz 12.2 "PremiumSoft Navicat Premium 8.2_is1" = PremiumSoft Navicat Premium 8.2 "Rayman2" = Rayman2 "Return to Castle Wolfenstein DEMO" = Return to Castle Wolfenstein DEMO "save2pc Light_is1" = save2pc Light 3.24 "SeaMonkey (2.0.3)" = SeaMonkey (2.0.3) "Seven Transformation Pack" = Seven Transformation Pack 4.0 "SystemRequirementsLab" = System Requirements Lab "Tibia_is1" = Tibia "tomb3.exe" = Tomb Raider III (Demo) "Veoh Web Player Beta" = Veoh Web Player "WindowBlinds" = WindowBlinds "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Windows Media Player 11 "WinRAR archiver" = Archiwizator WinRAR "Wolfenstein - Enemy Territory" = Wolfenstein - Enemy Territory [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "InstallShield_{85EAA9F7-A7D0-4EFB-AF68-816A88604E8B}" = Movie ISO [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2060-04-02 05:35:10 | Computer Name = KSG | Source = crypt32 | ID = 131083 Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>, wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. Error - 2060-04-02 05:35:10 | Computer Name = KSG | Source = crypt32 | ID = 131083 Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>, wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. Error - 2060-04-02 05:35:13 | Computer Name = KSG | Source = crypt32 | ID = 131083 Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>, wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. Error - 2060-04-02 05:37:43 | Computer Name = KSG | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd jusched.exe, wersja 6.0.160.1, moduł powodujący błąd jusched.exe, wersja 6.0.160.1, adres błędu 0x000014c8. Error - 2010-04-02 05:43:25 | Computer Name = KSG | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd tomb3.exe, wersja 0.0.0.0, moduł powodujący błąd tomb3.exe, wersja 0.0.0.0, adres błędu 0x000808d1. Error - 2010-04-07 01:35:47 | Computer Name = KSG | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca rundll32.exe, wersja 5.1.2600.2180, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2010-04-07 02:14:35 | Computer Name = KSG | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd explorer.exe, wersja 6.0.2900.5512, moduł powodujący błąd SHELLTIT.DLL, wersja 7.1.1.0, adres błędu 0x00004490. Error - 2010-04-07 10:26:40 | Computer Name = KSG | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca solaris.exe, wersja 0.0.0.0, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2010-04-07 11:12:40 | Computer Name = KSG | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd vista transformation pack 9.0.1.exe, wersja 9.0.0.0, moduł powodujący błąd glc15.tmp, wersja 0.0.0.0, adres błędu 0x00001f6d. Error - 2010-04-07 11:12:58 | Computer Name = KSG | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd vista transformation pack 9.0.1.exe, wersja 9.0.0.0, moduł powodujący błąd glc1c.tmp, wersja 0.0.0.0, adres błędu 0x00001f6d. [ System Events ] Error - 2010-04-07 12:32:30 | Computer Name = KSG | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . Error - 2010-04-07 12:32:30 | Computer Name = KSG | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . Error - 2010-04-07 12:32:31 | Computer Name = KSG | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . Error - 2010-04-07 12:33:47 | Computer Name = KSG | Source = Service Control Manager | ID = 7023 Description = Usługa Połączenia sieciowe zakończyła działanie; wystąpił następujący błąd: %%126 Error - 2010-04-07 12:33:47 | Computer Name = KSG | Source = Service Control Manager | ID = 7001 Description = Usługa Zapora systemu Windows/Udostępnianie połączenia internetowego zależy od usługi Połączenia sieciowe, której nie można uruchomić z powodu następującego błędu: %%126 Error - 2010-04-07 12:33:47 | Computer Name = KSG | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Menedżer przekazywania z powodu następującego błędu: %%1079 Error - 2010-04-07 12:33:47 | Computer Name = KSG | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Power Control [2010/01/23 16:14:46] z powodu następującego błędu: %%3 Error - 2010-04-07 12:33:47 | Computer Name = KSG | Source = Service Control Manager | ID = 7023 Description = Usługa Centrum zabezpieczeń zakończyła działanie; wystąpił następujący błąd: %%126 Error - 2010-04-07 12:33:47 | Computer Name = KSG | Source = Service Control Manager | ID = 7034 Description = Usługa NVIDIA Display Driver Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-04-07 12:38:04 | Computer Name = KSG | Source = Service Control Manager | ID = 7023 Description = Usługa Przeglądarka komputera zakończyła działanie; wystąpił następujący błąd: %%1460 < End of report >[/log] [color="#FF0000"]// Usuń moje taki i dopiski raz jeszcze i będą warny // Cyp[/color]
asmodeuszz komentarz 7 kwietnia 2010 komentarz 7 kwietnia 2010 Wklej w OTL: [code] Processes: explorer.exe OTL: O1 - Hosts: 67.215.65.132 www.goowno.pl O1 - Hosts: 67.215.65.132 goowno.pl O1 - Hosts: 127.0.0.1 www.007guard.com O1 - Hosts: 127.0.0.1 007guard.com O1 - Hosts: 127.0.0.1 008i.com O1 - Hosts: 127.0.0.1 www.008k.com O1 - Hosts: 127.0.0.1 008k.com O1 - Hosts: 127.0.0.1 www.00hq.com O1 - Hosts: 127.0.0.1 00hq.com O1 - Hosts: 127.0.0.1 010402.com O1 - Hosts: 127.0.0.1 www.032439.com O1 - Hosts: 127.0.0.1 032439.com O1 - Hosts: 127.0.0.1 www.0scan.com O1 - Hosts: 127.0.0.1 0scan.com O1 - Hosts: 127.0.0.1 www.1000gratisproben.com O1 - Hosts: 127.0.0.1 1000gratisproben.com O1 - Hosts: 127.0.0.1 www.1001namen.com O1 - Hosts: 127.0.0.1 1001namen.com O1 - Hosts: 127.0.0.1 www.100888290cs.com O1 - Hosts: 127.0.0.1 100888290cs.com O1 - Hosts: 127.0.0.1 www.100sexlinks.com O1 - Hosts: 127.0.0.1 100sexlinks.com O1 - Hosts: 127.0.0.1 10sek.com O1 - Hosts: 127.0.0.1 www.10sek.com O1 - Hosts: 13044 more lines... O2 - BHO: (no name) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - No CLSID value found. O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found. O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - d:\PROGRA~1\SPYBOT~1\SDHelper.dll File not found O2 - BHO: (no name) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - No CLSID value found. O2 - BHO: (no name) - {AE90C38C-97CF-4696-B290-C7973DC9675E} - No CLSID value found. O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O2 - BHO: (no name) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - No CLSID value found. O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll File not found O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll File not found O3 - HKLM\..\Toolbar: (no name) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {C3CD744D-2FAE-4640-8297-16B5DA423104} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll File not found O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe O4 - HKCU..\Run: [viwc] C:\WINDOWS\system32\viwc.exe O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - d:\PROGRA~1\SPYBOT~1\SDHelper.dll File not found O32 - AutoRun File - [2007-11-30 11:04:34 | 000,000,053 | R--- | M] () - F:\autorun.inf -- [ CDFS ] O33 - MountPoints2\{4d201c90-1df2-11de-a9f3-002127f01102}\Shell\AutoRun\command - "" = t8s2x.exe O33 - MountPoints2\{4d201c90-1df2-11de-a9f3-002127f01102}\Shell\open\Command - "" = t8s2x.exe O33 - MountPoints2\{e16fbaf2-792f-11d9-b119-806d6172696f}\Shell - "" = AutoRun O33 - MountPoints2\{e16fbaf2-792f-11d9-b119-806d6172696f}\Shell\AutoRun\command - "" = F:\startuj.exe -- [2007-11-29 17:50:36 | 000,035,123 | R--- | M] () O34 - HKLM BootExecute: (autocheck autochk *) - File not found Files: C:\WINDOWS\System32\nwiz.exe C:\WINDOWS\system32\viwc.exe :Commands [emptytemp] [Reboot][/code] Klikasz RunFix, operacje się wykonują, po restarcie wklejasz log kontrolny.
Mateusz J. komentarz 7 kwietnia 2010 komentarz 7 kwietnia 2010 Wykonaj dodatkowo skan: kaspersky virus removal tool Jeśli problem będzie się pojawiał będziesz musiał dane biblioteki pobierać z internetu i wstawiać we właściwe miejsca.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.