Baltosz utworzono 16 czerwca 2010 utworzono 16 czerwca 2010 Witam! Proszę o pomoc. Od pewnego czasu mam problem z 100% użyciem CPU, ciągle jest komputer przywieszony, czasami nie da się nic zrobić. Myślałem, że to przez proces svchost.exe ale jest tylko ten w system32, więc chyba to nie przez to. Nawet jak proces bezczynności jest w okolicach 70% to komp działa niemrawo. Już nie mam pojęcia co to może być. Proszę o pomoc! Dodaje log z OTL: [log]OTL logfile created on: 2010-06-16 20:03:49 - Run 1 OTL by OldTimer - Version 3.2.6.0 Folder = D:\Documents and Settings\Dzieci\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 511,00 Mb Total Physical Memory | 123,00 Mb Available Physical Memory | 24,00% Memory free 1,00 Gb Paging File | 1,00 Gb Available in Paging File | 44,00% Paging File free Paging file location(s): D:\pagefile.sys 768 1536 [binary data] %SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files Drive C: | 80,00 Gb Total Space | 4,35 Gb Free Space | 5,44% Space Free | Partition Type: NTFS Drive D: | 29,99 Gb Total Space | 9,80 Gb Free Space | 32,67% Space Free | Partition Type: NTFS Drive E: | 122,89 Gb Total Space | 20,25 Gb Free Space | 16,48% Space Free | Partition Type: NTFS F: Drive not present or media not loaded Drive G: | 609,04 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS H: Drive not present or media not loaded I: Drive not present or media not loaded Drive J: | 125,69 Mb Total Space | 125,69 Mb Free Space | 100,00% Space Free | Partition Type: FAT32 Computer Name: IW000206 Current User Name: Dzieci Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-06-16 19:57:58 | 000,572,416 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\Dzieci\Pulpit\OTL.exe PRC - [2010-04-12 17:29:29 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- D:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-04-02 16:08:40 | 000,910,296 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-02-18 11:43:18 | 000,248,040 | ---- | M] (Sun Microsystems, Inc.) -- D:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2010-01-11 19:43:28 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) -- D:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe PRC - [2009-11-05 19:25:42 | 000,238,952 | ---- | M] (Teruten) -- D:\WINDOWS\system32\FsUsbExService.Exe PRC - [2009-11-05 19:25:16 | 000,116,056 | ---- | M] (Samsung Electronics Co., Ltd.) -- D:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe PRC - [2009-08-06 20:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\wuauclt.exe PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\services.exe PRC - [2009-02-06 15:23:36 | 000,727,720 | ---- | M] (ESET) -- D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe PRC - [2009-02-06 15:23:12 | 002,021,400 | ---- | M] (ESET) -- D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe PRC - [2008-04-22 18:37:56 | 001,572,864 | R--- | M] () -- D:\Program Files\UGS\UGSLicensing\ugslmd.exe PRC - [2008-04-22 18:37:30 | 001,372,160 | R--- | M] (Macrovision Corporation) -- D:\Program Files\UGS\UGSLicensing\lmgrd.exe PRC - [2008-04-14 19:21:49 | 000,126,464 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\wbem\wmiapsrv.exe PRC - [2008-04-14 19:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\winlogon.exe PRC - [2008-04-14 19:21:44 | 000,139,776 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\taskmgr.exe PRC - [2008-04-14 19:21:43 | 000,057,856 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-14 19:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 19:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 19:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 19:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 19:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 19:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2008-04-14 19:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 19:21:42 | 000,050,688 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\smss.exe PRC - [2008-04-14 19:21:38 | 000,033,280 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\rundll32.exe PRC - [2008-04-14 19:21:30 | 001,695,232 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Messenger\msmsgs.exe PRC - [2008-04-14 19:21:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\explorer.exe PRC - [2008-04-14 19:21:12 | 000,005,120 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\dllhost.exe PRC - [2008-04-14 19:21:10 | 000,015,360 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-14 19:21:10 | 000,006,144 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\csrss.exe PRC - [2008-04-14 19:21:02 | 000,044,544 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\alg.exe PRC - [2007-09-02 14:58:52 | 000,495,616 | ---- | M] () -- D:\Program Files\RocketDock\RocketDock.exe PRC - [2006-10-27 01:47:42 | 000,031,016 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe PRC - [2006-10-23 00:24:02 | 000,620,152 | ---- | M] (Adobe Systems Inc.) -- D:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe PRC - [2006-02-28 13:42:38 | 000,229,376 | ---- | M] (Apple Computer, Inc.) -- D:\Program Files\Bonjour\mDNSResponder.exe PRC - [2004-10-30 02:50:00 | 000,127,043 | ---- | M] (NVIDIA Corporation) -- D:\WINDOWS\system32\nvsvc32.exe PRC - [2003-10-31 20:42:40 | 000,032,768 | ---- | M] (Cyberlink Corp.) -- D:\Program Files\CyberLink\PowerDVD\PDVDServ.exe PRC - [2002-06-14 11:21:30 | 000,046,592 | ---- | M] (Avance Logic, Inc.) -- D:\WINDOWS\SOUNDMAN.EXE PRC - [2001-10-15 14:30:29 | 000,196,608 | ---- | M] (HP) -- D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-06-16 19:57:58 | 000,572,416 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\Dzieci\Pulpit\OTL.exe MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\secur32.dll MOD - [2009-04-15 16:54:38 | 000,585,216 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\rpcrt4.dll MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 12:53:43 | 000,722,944 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\ntdll.dll MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\gdi32.dll MOD - [2008-06-17 21:03:15 | 008,489,984 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\shell32.dll MOD - [2008-04-14 23:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\setupapi.dll MOD - [2008-04-14 19:21:56 | 000,146,432 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 19:20:57 | 000,172,544 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\wldap32.dll MOD - [2008-04-14 19:20:57 | 000,018,944 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\version.dll MOD - [2008-04-14 19:20:56 | 000,732,672 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\userenv.dll MOD - [2008-04-14 19:20:56 | 000,580,096 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\user32.dll MOD - [2008-04-14 19:20:56 | 000,219,648 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\uxtheme.dll MOD - [2008-04-14 19:20:56 | 000,067,584 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\srclient.dll MOD - [2008-04-14 19:20:45 | 000,064,000 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\samlib.dll MOD - [2008-04-14 19:20:44 | 001,287,168 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\ole32.dll MOD - [2008-04-14 19:20:44 | 000,551,936 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-14 19:20:44 | 000,084,992 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 19:20:44 | 000,023,040 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 19:20:41 | 000,119,808 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\ntmarta.dll MOD - [2008-04-14 19:20:39 | 000,343,040 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 19:20:36 | 000,297,984 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\msctf.dll MOD - [2008-04-14 19:20:32 | 000,110,080 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\imm32.dll MOD - [2008-04-14 19:20:31 | 000,185,344 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 19:20:14 | 000,822,272 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\comres.dll MOD - [2008-04-14 19:20:13 | 000,280,064 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-14 19:20:11 | 000,498,688 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-14 19:16:32 | 000,110,592 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\msscript.ocx MOD - [2008-04-14 19:12:58 | 000,177,152 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\msctfime.ime MOD - [2008-04-14 18:59:08 | 001,054,208 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2007-09-02 14:57:36 | 000,069,632 | ---- | M] () -- D:\Program Files\RocketDock\RocketDock.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-01-11 19:43:28 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Running] -- D:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2009-11-05 19:25:42 | 000,238,952 | ---- | M] (Teruten) [Auto | Running] -- D:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService) SRV - [2009-02-06 15:27:06 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- D:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv) SRV - [2009-02-06 15:23:36 | 000,727,720 | ---- | M] (ESET) [Auto | Running] -- D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn) SRV - [2008-04-22 18:37:30 | 001,372,160 | R--- | M] (Macrovision Corporation) [Auto | Stopped] -- D:\Program Files\UGS\UGSLicensing\lmgrd.exe -- (UGS License Server (ugslmd)) UGS License Server (ugslmd) SRV - [2008-04-22 18:37:30 | 001,372,160 | R--- | M] (Macrovision Corporation) [Auto | Running] -- D:\Program Files\UGS\UGSLicensing\lmgrd.exe -- (Flexlm Service 1) SRV - [2001-10-26 21:30:00 | 000,003,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- D:\WINDOWS\System32\regedt32.exe -- (.EsetTrialReset) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Running] -- -- (EagleNT) DRV - [2010-02-01 18:25:20 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri) DRV - [2010-02-01 18:25:15 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc) DRV - [2010-02-01 18:25:14 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt) DRV - [2009-11-02 10:39:30 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2009-09-21 10:55:36 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm) DRV - [2009-09-21 10:55:36 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM) DRV - [2009-09-21 10:55:36 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter) DRV - [2009-02-06 15:24:24 | 000,093,336 | ---- | M] (ESET) [Kernel | System | Running] -- D:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir) DRV - [2009-02-06 15:23:18 | 000,106,208 | ---- | M] (ESET) [Kernel | System | Running] -- D:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2009-02-06 15:19:52 | 000,113,448 | ---- | M] (ESET) [File_System | Auto | Running] -- D:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2008-10-17 10:50:00 | 000,131,072 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\Mkd2kfNT.sys -- (Mkd2kfNt) DRV - [2008-10-17 10:50:00 | 000,079,104 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\Mkd2Nadr.sys -- (Mkd2Nadr) DRV - [2008-04-13 20:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2006-11-04 00:45:48 | 000,178,913 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\V0260Vid.sys -- (V0260VID) DRV - [2005-08-15 13:08:26 | 000,127,488 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- D:\WINDOWS\system32\DRIVERS\imagesrv.sys -- (imagesrv) DRV - [2005-08-15 13:08:26 | 000,005,888 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- D:\WINDOWS\System32\Drivers\imagedrv.sys -- (imagedrv) DRV - [2005-06-03 14:47:06 | 000,079,488 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\k750obex.sys -- (k750obex) DRV - [2005-06-03 14:47:04 | 000,081,728 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\k750mgmt.sys -- (k750mgmt) DRV - [2005-06-03 14:47:00 | 000,089,872 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\k750mdm.sys -- (k750mdm) DRV - [2005-06-03 14:46:58 | 000,006,576 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\k750mdfl.sys -- (k750mdfl) DRV - [2005-06-03 14:46:52 | 000,055,216 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\k750bus.sys -- (k750bus) Sony Ericsson 750 driver (WDM) DRV - [2004-10-30 02:50:00 | 002,826,944 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2004-08-04 00:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2002-06-12 11:42:44 | 000,654,604 | ---- | M] (Avance Logic, Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Avance AC97 Audio (WDM) DRV - [2001-12-18 15:45:04 | 000,003,279 | ---- | M] (VIA Technologies. Inc.) [Kernel | System | Running] -- D:\WINDOWS\System32\Drivers\VIAPFD.SYS -- (VIAPFD) DRV - [2001-10-18 13:00:00 | 000,006,144 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- D:\WINDOWS\system32\DRIVERS\viaidexp.sys -- (ViaIde) DRV - [2001-10-18 05:10:00 | 000,027,648 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- D:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1) DRV - [2001-10-18 05:10:00 | 000,027,648 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- D:\WINDOWS\System32\DRIVERS\viaagp1.sys -- (viaagp) DRV - [2001-06-22 06:39:02 | 000,073,728 | ---- | M] (Rainbow Technologies, Inc.) [Kernel | Auto | Running] -- D:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultthis.engineName: "LockerzTOOL Customized Web Search" FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2539511&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.selectedEngine: "Wikipedia (pl)" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "www.google.pl" FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198 FF - prefs.js..extensions.enabledItems: weatherwatcherlive@singerscreations.com:1.0.13 FF - prefs.js..extensions.enabledItems: flickr@jzlabs.com:1.0.5 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: {07b2a769-ed19-4483-87ce-c643914c81bb}:3.0.0.91 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2010-04-04 21:34:16 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2010-06-09 21:05:58 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: D:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010-01-05 12:40:33 | 000,000,000 | ---D | M] [2010-01-05 22:30:27 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Dzieci\Dane aplikacji\Mozilla\Extensions [2010-06-15 18:13:41 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Dzieci\Dane aplikacji\Mozilla\Firefox\Profiles\1k3otdd2.default\extensions [2010-06-14 20:27:49 | 000,000,000 | ---D | M] (Vista-aero) -- D:\Documents and Settings\Dzieci\Dane aplikacji\Mozilla\Firefox\Profiles\1k3otdd2.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb} [2010-03-31 07:45:01 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Dzieci\Dane aplikacji\Mozilla\Firefox\Profiles\1k3otdd2.default\extensions\flickr@jzlabs.com [2010-02-13 15:48:18 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Dzieci\Dane aplikacji\Mozilla\Firefox\Profiles\1k3otdd2.default\extensions\weatherwatcherlive@singerscreations.com [2010-06-14 20:27:49 | 000,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\Dzieci\Dane aplikacji\Mozilla\Firefox\Profiles\1k3otdd2.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}\chrome\mozapps\extensions [2010-02-20 20:53:50 | 000,000,925 | ---- | M] () -- D:\Documents and Settings\Dzieci\Dane aplikacji\Mozilla\Firefox\Profiles\1k3otdd2.default\searchplugins\conduit.xml [2010-02-13 15:39:33 | 000,001,907 | ---- | M] () -- D:\Documents and Settings\Dzieci\Dane aplikacji\Mozilla\Firefox\Profiles\1k3otdd2.default\searchplugins\flickr-tags.xml [2010-04-20 17:53:50 | 000,001,961 | ---- | M] () -- D:\Documents and Settings\Dzieci\Dane aplikacji\Mozilla\Firefox\Profiles\1k3otdd2.default\searchplugins\flickr.xml [2010-04-02 15:57:21 | 000,001,032 | ---- | M] () -- D:\Documents and Settings\Dzieci\Dane aplikacji\Mozilla\Firefox\Profiles\1k3otdd2.default\searchplugins\wikipedia-eng.xml [2010-06-12 22:24:26 | 000,000,000 | ---D | M] -- D:\Program Files\Mozilla Firefox\extensions [2010-02-19 23:59:43 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- D:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2010-06-09 21:06:01 | 000,000,000 | ---D | M] (Java Console) -- D:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-04-12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-01-07 21:47:02 | 000,238,776 | ---- | M] (Pando Networks) -- D:\Program Files\Mozilla Firefox\plugins\npPandoWebInst.dll [2010-03-13 19:38:28 | 000,002,767 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-03-13 19:38:28 | 000,001,406 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-03-13 19:38:28 | 000,000,917 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-03-13 19:38:28 | 000,000,858 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-03-13 19:38:28 | 000,001,183 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-03-13 19:38:28 | 000,001,683 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - D:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Acrobat Assistant 8.0] D:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.) O4 - HKLM..\Run: [egui] D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) O4 - HKLM..\Run: [HPDJ Taskbar Utility] D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe (HP) O4 - HKLM..\Run: [NPSStartup] File not found O4 - HKLM..\Run: [NvCplDaemon] D:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] D:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] D:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation) O4 - HKLM..\Run: [SoundMan] D:\WINDOWS\SOUNDMAN.EXE (Avance Logic, Inc.) O4 - HKCU..\Run: [AutoStartNPSAgent] D:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.) O4 - HKCU..\Run: [RocketDock] D:\Program Files\RocketDock\RocketDock.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Append to existing PDF - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert link target to Adobe PDF - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert link target to existing PDF - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selected links to Adobe PDF - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selected links to existing PDF - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selection to Adobe PDF - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selection to existing PDF - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert to Adobe PDF - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - D:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.172.224.160 80.244.140.241 89.228.6.83 O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - D:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - D:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: D:\Documents and Settings\Dzieci\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: D:\Documents and Settings\Dzieci\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-01-05 11:57:25 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009-07-26 20:54:13 | 000,000,000 | ---D | M] - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-07-26 20:54:13 | 000,000,000 | ---D | M] - E:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2005-05-24 14:03:56 | 000,608,456 | R--- | M] () - G:\autorun.bmp -- [ CDFS ] O32 - AutoRun File - [2006-04-04 12:50:48 | 000,212,992 | R--- | M] (Librus) - G:\autorun.exe -- [ CDFS ] O32 - AutoRun File - [2005-05-24 14:02:54 | 000,016,934 | R--- | M] () - G:\autorun.ico -- [ CDFS ] O32 - AutoRun File - [2005-09-14 11:57:04 | 000,000,216 | R--- | M] () - G:\autorun.inf -- [ CDFS ] O33 - MountPoints2\{1acf47b6-f9e5-11de-8fdd-806d6172696f}\Shell - "" = AutoRun O33 - MountPoints2\{1acf47b6-f9e5-11de-8fdd-806d6172696f}\Shell\AutoRun\command - "" = G:\autorun.exe -- [2006-04-04 12:50:48 | 000,212,992 | R--- | M] (Librus) O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - D:\WINDOWS\system32\ias [2010-01-05 11:56:51 | 000,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpFolder: D:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Kalendarz XP.lnk - D:\Program Files\Kalendarz XP\Kalendarz.exe - () MsConfig - StartUpFolder: D:^Documents and Settings^Dzieci^Menu Start^Programy^Autostart^Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk - D:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE - (Microsoft Corporation) MsConfig - StartUpReg: [b]Google Update[/b] - hkey= - key= - D:\Documents and Settings\Dzieci\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe File not found MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]Pando Media Booster[/b] - hkey= - key= - D:\Program Files\Pando Networks\Media Booster\PMB.exe () MsConfig - StartUpReg: [b]Skype[/b] - hkey= - key= - D:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.) MsConfig - StartUpReg: [b]Sony Ericsson PC Suite[/b] - hkey= - key= - D:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe (Sony Ericsson Mobile Communications AB) SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vds - Service SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-06-16 19:56:16 | 000,572,416 | ---- | C] (OldTimer Tools) -- D:\Documents and Settings\Dzieci\Pulpit\OTL.exe [2010-06-12 10:54:54 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Dzieci\Ustawienia lokalne\Dane aplikacji\Librus Świadectwa [2010-06-12 10:53:42 | 000,000,000 | ---D | C] -- D:\Program Files\Librus [2010-06-12 00:09:32 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Silverlight [2010-06-09 15:41:37 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Dzieci\Dane aplikacji\VSO [2010-06-09 15:40:55 | 000,000,000 | ---D | C] -- D:\Program Files\VSO [2010-06-08 17:40:22 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Dzieci\Pulpit\Broszura [2010-06-02 21:39:29 | 000,000,000 | ---D | C] -- D:\Program Files\IrfanView [2010-05-26 20:29:42 | 000,000,000 | ---D | C] -- D:\Program Files\UGS [2010-05-25 19:18:10 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Dzieci\Moje dokumenty\My Art [2010-05-17 17:19:02 | 000,000,000 | ---D | C] -- D:\Program Files\Kalendarz XP [2010-05-05 11:35:38 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\Dzieci\Recent [2010-04-25 18:56:09 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Dzieci\Ustawienia lokalne\Dane aplikacji\Identities [2010-04-22 07:42:21 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\DirectX [4 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ] [1 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-06-16 19:58:17 | 000,000,006 | -H-- | M] () -- D:\WINDOWS\tasks\SA.DAT [2010-06-16 19:57:58 | 000,572,416 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\Dzieci\Pulpit\OTL.exe [2010-06-16 19:43:21 | 000,017,145 | ---- | M] () -- D:\WINDOWS\System32\nvapps.xml [2010-06-16 19:42:23 | 000,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat [2010-06-16 19:42:22 | 536,399,872 | -HS- | M] () -- D:\hiberfil.sys [2010-06-16 19:22:11 | 000,004,445 | ---- | M] () -- D:\WINDOWS\wincmd.ini [2010-06-16 15:28:27 | 005,505,024 | -H-- | M] () -- D:\Documents and Settings\Dzieci\NTUSER.DAT [2010-06-16 15:28:27 | 000,000,188 | -HS- | M] () -- D:\Documents and Settings\Dzieci\ntuser.ini [2010-06-16 15:28:05 | 001,576,312 | -H-- | M] () -- D:\Documents and Settings\Dzieci\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-06-16 07:45:11 | 001,670,120 | ---- | M] () -- D:\Documents and Settings\Dzieci\Pulpit\UR_orange_engine-1920x1200.jpg [2010-06-15 18:37:55 | 000,028,160 | ---- | M] () -- D:\Documents and Settings\Dzieci\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-06-13 17:25:15 | 000,025,088 | ---- | M] () -- D:\Documents and Settings\Dzieci\Pulpit\dane do pracy mgr.doc [2010-06-12 22:05:55 | 000,132,538 | ---- | M] () -- D:\Documents and Settings\Dzieci\Pulpit\RyanairBoardingPass.pdf [2010-06-12 21:39:11 | 002,363,693 | ---- | M] () -- D:\Documents and Settings\Dzieci\Pulpit\Dla natalii.psd [2010-06-12 19:23:19 | 000,022,528 | ---- | M] () -- D:\Documents and Settings\Dzieci\Pulpit\zaświadczenie.doc [2010-06-12 08:55:28 | 000,074,048 | ---- | M] () -- D:\Documents and Settings\Dzieci\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-06-12 08:54:39 | 001,563,568 | ---- | M] () -- D:\WINDOWS\System32\FNTCACHE.DAT [2010-06-10 21:31:50 | 000,001,374 | ---- | M] () -- D:\WINDOWS\imsins.BAK [2010-06-07 20:56:36 | 000,000,202 | ---- | M] () -- D:\WINDOWS\NeroDigital.ini [2010-06-07 11:27:48 | 000,603,370 | ---- | M] () -- D:\Documents and Settings\Dzieci\Pulpit\4630651778_2606cbe7d2_o.jpg [2010-06-07 08:29:31 | 000,076,799 | ---- | M] () -- D:\Documents and Settings\Dzieci\Pulpit\4101922045_62189c7b7b_b.jpg [2010-06-07 07:46:58 | 000,002,206 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl [2010-05-29 10:30:36 | 000,052,594 | ---- | M] () -- D:\Documents and Settings\Dzieci\Pulpit\Jak wgrać nawigację GPS - Samsung Avila S5230.pdf [2010-05-28 18:57:02 | 000,001,467 | ---- | M] () -- D:\WINDOWS\System32\setacl.bat [2010-05-14 18:13:52 | 000,043,520 | ---- | M] () -- D:\WINDOWS\System32\CmdLineExt03.dll [2010-05-14 18:12:34 | 000,316,640 | ---- | M] () -- D:\WINDOWS\WMSysPr9.prx [2010-05-09 15:23:03 | 000,131,804 | ---- | M] () -- D:\Documents and Settings\Dzieci\Pulpit\Untitled-1.jpg [2010-05-06 20:32:46 | 000,144,815 | ---- | M] () -- D:\Documents and Settings\Dzieci\Pulpit\4Jobinstructors.jpg [2010-05-06 20:30:22 | 000,111,295 | ---- | M] () -- D:\Documents and Settings\Dzieci\Pulpit\relient-k.jpg [4 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ] [1 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-06-16 07:45:08 | 001,670,120 | ---- | C] () -- D:\Documents and Settings\Dzieci\Pulpit\UR_orange_engine-1920x1200.jpg [2010-06-13 17:25:14 | 000,025,088 | ---- | C] () -- D:\Documents and Settings\Dzieci\Pulpit\dane do pracy mgr.doc [2010-06-12 22:05:53 | 000,132,538 | ---- | C] () -- D:\Documents and Settings\Dzieci\Pulpit\RyanairBoardingPass.pdf [2010-06-12 19:23:17 | 000,022,528 | ---- | C] () -- D:\Documents and Settings\Dzieci\Pulpit\zaświadczenie.doc [2010-06-11 23:35:44 | 002,363,693 | ---- | C] () -- D:\Documents and Settings\Dzieci\Pulpit\Dla natalii.psd [2010-06-07 11:27:28 | 000,603,370 | ---- | C] () -- D:\Documents and Settings\Dzieci\Pulpit\4630651778_2606cbe7d2_o.jpg [2010-06-07 08:29:26 | 000,076,799 | ---- | C] () -- D:\Documents and Settings\Dzieci\Pulpit\4101922045_62189c7b7b_b.jpg [2010-05-29 10:30:36 | 000,052,594 | ---- | C] () -- D:\Documents and Settings\Dzieci\Pulpit\Jak wgrać nawigację GPS - Samsung Avila S5230.pdf [2010-05-22 20:42:36 | 000,001,374 | ---- | C] () -- D:\WINDOWS\imsins.BAK [2010-05-09 15:20:32 | 000,131,804 | ---- | C] () -- D:\Documents and Settings\Dzieci\Pulpit\Untitled-1.jpg [2010-05-06 20:32:45 | 000,144,815 | ---- | C] () -- D:\Documents and Settings\Dzieci\Pulpit\4Jobinstructors.jpg [2010-05-06 20:30:21 | 000,111,295 | ---- | C] () -- D:\Documents and Settings\Dzieci\Pulpit\relient-k.jpg [2010-04-22 07:41:05 | 000,043,520 | ---- | C] () -- D:\WINDOWS\System32\CmdLineExt03.dll [2010-02-19 08:35:09 | 000,110,592 | ---- | C] () -- D:\WINDOWS\System32\FsUsbExDevice.Dll [2010-02-19 08:35:09 | 000,036,608 | ---- | C] () -- D:\WINDOWS\System32\FsUsbExDisk.Sys [2010-01-19 10:38:31 | 000,178,176 | ---- | C] () -- D:\WINDOWS\System32\unrar.dll [2010-01-19 10:38:27 | 000,000,038 | ---- | C] () -- D:\WINDOWS\avisplitter.ini [2010-01-19 10:38:07 | 000,881,664 | ---- | C] () -- D:\WINDOWS\System32\xvidcore.dll [2010-01-19 10:38:07 | 000,205,824 | ---- | C] () -- D:\WINDOWS\System32\xvidvfw.dll [2010-01-19 10:37:50 | 000,085,504 | ---- | C] () -- D:\WINDOWS\System32\ff_vfw.dll [2010-01-19 10:37:50 | 000,000,547 | ---- | C] () -- D:\WINDOWS\System32\ff_vfw.dll.manifest [2010-01-19 10:26:18 | 000,000,202 | ---- | C] () -- D:\WINDOWS\NeroDigital.ini [2010-01-11 19:57:03 | 002,463,976 | ---- | C] () -- D:\WINDOWS\System32\NPSWF32.dll [2010-01-07 11:49:43 | 000,004,445 | ---- | C] () -- D:\WINDOWS\wincmd.ini [2010-01-05 12:07:49 | 000,000,164 | ---- | C] () -- D:\WINDOWS\avrack.ini [2008-05-04 18:39:34 | 000,002,560 | ---- | C] () -- D:\WINDOWS\System32\ViaClassCoInstaller.dll [2007-10-25 18:26:10 | 000,005,632 | ---- | C] () -- D:\WINDOWS\System32\drivers\StarOpen.sys [color=#E56717]========== LOP Check ==========[/color] [2010-01-05 12:40:32 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Dane aplikacji\ESET [2010-01-09 13:48:01 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Dane aplikacji\PMB Files [2010-02-19 09:08:08 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Dane aplikacji\Samsung [2010-01-20 08:58:40 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Dane aplikacji\Teleca [2010-02-19 23:46:05 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Dzieci\Dane aplikacji\Gadu-Gadu 10 [2010-04-05 09:40:42 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Dzieci\Dane aplikacji\Mobile Atlas Creator [2010-03-11 09:20:09 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Dzieci\Dane aplikacji\Mp3tag [2010-02-01 18:23:10 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Dzieci\Dane aplikacji\MyPhoneExplorer [2010-02-19 08:34:53 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Dzieci\Dane aplikacji\Samsung [2010-01-20 09:00:04 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Dzieci\Dane aplikacji\Teleca [2010-06-11 17:25:38 | 000,000,000 | ---D | M] -- D:\Documents and Settings\Dzieci\Dane aplikacji\VSO [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-06-16 19:42:22 | 536,399,872 | -HS- | M] () -- D:\hiberfil.sys [2010-06-16 19:42:20 | 805,306,368 | -HS- | M] () -- D:\pagefile.sys [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2004-08-04 02:54:52 | 018,789,127 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys [2010-01-07 19:22:27 | 023,908,281 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [2010-01-07 19:22:27 | 023,908,281 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys [2008-04-13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- D:\WINDOWS\ServicePackFiles\i386\agp440.sys [2008-04-13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- D:\WINDOWS\system32\drivers\agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2004-08-04 02:54:52 | 018,789,127 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys [2010-01-07 19:22:27 | 023,908,281 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2010-01-07 19:22:27 | 023,908,281 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys [2008-04-13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\ServicePackFiles\i386\atapi.sys [2008-04-13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\drivers\atapi.sys [2004-08-04 00:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\WINDOWS\$NtServicePackUninstall$\atapi.sys [2004-08-04 00:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- D:\WINDOWS\system32\dllcache\beep.sys [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- D:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2004-08-04 02:54:52 | 018,789,127 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2010-01-07 19:22:27 | 023,908,281 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2010-01-07 19:22:27 | 023,908,281 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys [2008-04-13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- D:\WINDOWS\ServicePackFiles\i386\cdrom.sys [2008-04-13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- D:\WINDOWS\system32\drivers\cdrom.sys [2004-08-04 00:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- D:\WINDOWS\$NtServicePackUninstall$\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2004-08-04 02:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- D:\WINDOWS\$NtServicePackUninstall$\eventlog.dll [2008-04-14 19:20:31 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- D:\WINDOWS\ServicePackFiles\i386\eventlog.dll [2008-04-14 19:20:31 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- D:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- D:\WINDOWS\ServicePackFiles\i386\ndis.sys [2008-04-13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- D:\WINDOWS\system32\drivers\ndis.sys [2004-08-04 01:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- D:\WINDOWS\$NtServicePackUninstall$\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2004-08-04 02:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- D:\WINDOWS\$NtServicePackUninstall$\winlogon.exe [2008-04-14 19:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- D:\WINDOWS\ServicePackFiles\i386\winlogon.exe [2008-04-14 19:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- D:\WINDOWS\system32\winlogon.exe < End of report > [/log]
Baltosz komentarz 17 czerwca 2010 Autor komentarz 17 czerwca 2010 [log]Logfile of random's system information tool 1.07 (written by random/random) Run by Dzieci at 2010-06-17 17:08:04 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive D: has 10 GB (32%) free of 31 GB Total RAM: 511 MB (40% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:08:26, on 2010-06-17 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: D:\WINDOWS\System32\smss.exe D:\WINDOWS\system32\winlogon.exe D:\WINDOWS\system32\services.exe D:\WINDOWS\system32\savedump.exe D:\WINDOWS\system32\lsass.exe D:\WINDOWS\system32\svchost.exe D:\WINDOWS\System32\svchost.exe D:\WINDOWS\system32\spoolsv.exe D:\Program Files\Bonjour\mDNSResponder.exe D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe D:\Program Files\UGS\UGSLicensing\lmgrd.exe D:\WINDOWS\system32\FsUsbExService.Exe D:\Program Files\UGS\UGSLicensing\lmgrd.exe D:\Program Files\Java\jre6\bin\jqs.exe D:\WINDOWS\system32\nvsvc32.exe D:\WINDOWS\system32\svchost.exe D:\Program Files\UGS\UGSLicensing\Lmgrd.exe D:\Program Files\UGS\UGSLicensing\Lmgrd.exe D:\WINDOWS\system32\wuauclt.exe D:\WINDOWS\Explorer.EXE D:\Program Files\UGS\UGSLicensing\ugslmd.exe D:\WINDOWS\system32\RUNDLL32.EXE D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe D:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe D:\Program Files\CyberLink\PowerDVD\PDVDServ.exe D:\WINDOWS\SOUNDMAN.EXE D:\Program Files\Common Files\Java\Java Update\jusched.exe D:\WINDOWS\system32\ctfmon.exe D:\Program Files\RocketDock\RocketDock.exe D:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe D:\Program Files\Messenger\msmsgs.exe D:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroDist.exe D:\WINDOWS\system32\wbem\wmiapsrv.exe D:\Documents and Settings\Dzieci\Pulpit\RSIT.exe D:\Program Files\Mozilla Firefox\firefox.exe D:\Program Files\trend micro\Dzieci.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file) O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE D:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [egui] "D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [HPDJ Taskbar Utility] D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe O4 - HKLM\..\Run: [GrooveMonitor] "D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "D:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [RemoteControl] "D:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [RocketDock] "D:\Program Files\RocketDock\RocketDock.exe" O4 - HKCU\..\Run: [AutoStartNPSAgent] D:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: Append Link Target to Existing PDF - res://D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Append to existing PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert link target to Adobe PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\system32\browseui.dll O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - D:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - D:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Flexlm Service 1 - Macrovision Corporation - D:\Program Files\UGS\UGSLicensing\lmgrd.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - D:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: FsUsbExService - Teruten - D:\WINDOWS\system32\FsUsbExService.Exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe O23 - Service: UGS License Server (ugslmd) - Macrovision Corporation - D:\Program Files\UGS\UGSLicensing\Lmgrd.exe -- End of file - 9080 bytes ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Adobe PDF Reader Link Helper - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - D:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}] Adobe PDF Conversion Toolbar Helper - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23 321120] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - D:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-03 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-05-03 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23 321120] {E0E899AB-F487-11D5-8D29-0050BA6940E3} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"=D:\WINDOWS\system32\NvCpl.dll [2004-10-30 4620288] "nwiz"=nwiz.exe /install [] "NvMediaCenter"=D:\WINDOWS\system32\NvMcTray.dll [2004-10-30 86016] "egui"=D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-02-06 2021400] "HPDJ Taskbar Utility"=D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe [2001-10-15 196608] "GrooveMonitor"=D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016] "Acrobat Assistant 8.0"=D:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [2006-10-23 620152] ""= [] "RemoteControl"=D:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2003-10-31 32768] "SoundMan"=D:\WINDOWS\SOUNDMAN.EXE [2002-06-14 46592] "NPSStartup"= [] "SunJavaUpdateSched"=D:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] ""= [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=D:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "RocketDock"=D:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616] "AutoStartNPSAgent"=D:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-11-05 116056] "MSMSGS"=D:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] D:\Documents and Settings\Dzieci\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe /c [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster] D:\Program Files\Pando Networks\Media Booster\PMB.exe [2010-01-07 2935480] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] D:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite] D:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Kalendarz XP.lnk] D:\PROGRA~1\KALEND~1\KALEND~1.EXE [2006-03-04 882176] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^Dzieci^Menu Start^Programy^Autostart^Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk] D:\PROGRA~1\MICROS~2\Office12\ONENOTEM.EXE [2006-10-26 98632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "D:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="D:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook" "D:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="D:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove" "D:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="D:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote" "D:\Program Files\UGS\NX 7.0\UGFLEXLM\lmgrd.exe"="D:\Program Files\UGS\NX 7.0\UGFLEXLM\lmgrd.exe:*:Enabled:lmgrd" "D:\Program Files\UGS\NX 7.0\UGFLEXLM\ugslmd.exe"="D:\Program Files\UGS\NX 7.0\UGFLEXLM\ugslmd.exe:*:Enabled:ugslmd" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "D:\Program Files\Pando Networks\Media Booster\PMB.exe"="D:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster" "D:\Program Files\Gadu-Gadu 10\gg.exe"="D:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "D:\Program Files\Miranda IM\miranda32.exe"="D:\Program Files\Miranda IM\miranda32.exe:*:Enabled:Miranda IM" "D:\Program Files\Bonjour\mDNSResponder.exe"="D:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "D:\Program Files\Opera\opera.exe"="D:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser" "D:\Program Files\Sony Ericsson\Update Service\Update Service.exe"="D:\Program Files\Sony Ericsson\Update Service\Update Service.exe:*:Enabled:Update Service" "D:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe"="D:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server" "D:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe"="D:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server" "D:\Program Files\Skype\Plugin Manager\skypePM.exe"="D:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "D:\Program Files\Skype\Phone\Skype.exe"="D:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" ======List of files/folders created in the last 1 months====== 2010-06-17 17:03:41 ----D---- D:\rsit 2010-06-17 17:03:41 ----D---- D:\Program Files\trend micro 2010-06-12 10:53:42 ----D---- D:\Program Files\Librus 2010-06-12 08:56:49 ----A---- D:\WINDOWS\system32\muweb.dll 2010-06-12 08:56:49 ----A---- D:\WINDOWS\system32\mucltui.dll.mui 2010-06-12 08:56:49 ----A---- D:\WINDOWS\system32\mucltui.dll 2010-06-12 00:09:32 ----D---- D:\Program Files\Microsoft Silverlight 2010-06-10 21:31:58 ----HDC---- D:\WINDOWS\$NtUninstallKB980218$ 2010-06-10 21:31:47 ----HDC---- D:\WINDOWS\$NtUninstallKB980195$ 2010-06-10 21:31:36 ----HDC---- D:\WINDOWS\$NtUninstallKB979559$ 2010-06-10 21:28:49 ----HDC---- D:\WINDOWS\$NtUninstallKB978695_WM9$ 2010-06-10 21:28:41 ----HDC---- D:\WINDOWS\$NtUninstallKB979482$ 2010-06-10 21:28:26 ----HDC---- D:\WINDOWS\$NtUninstallKB975562$ 2010-06-09 21:05:57 ----A---- D:\WINDOWS\system32\javaws.exe 2010-06-09 21:05:57 ----A---- D:\WINDOWS\system32\javaw.exe 2010-06-09 21:05:57 ----A---- D:\WINDOWS\system32\java.exe 2010-06-09 21:05:57 ----A---- D:\WINDOWS\system32\deployJava1.dll 2010-06-09 15:41:37 ----D---- D:\Documents and Settings\Dzieci\Dane aplikacji\VSO 2010-06-09 15:40:55 ----D---- D:\Program Files\VSO 2010-06-02 21:39:29 ----D---- D:\Program Files\IrfanView 2010-05-26 20:29:42 ----D---- D:\Program Files\UGS 2010-05-22 20:42:36 ----A---- D:\WINDOWS\imsins.BAK 2010-05-22 20:42:16 ----HDC---- D:\WINDOWS\$NtUninstallKB978542$ ======List of files/folders modified in the last 1 months====== 2010-06-17 17:08:06 ----D---- D:\WINDOWS\Temp 2010-06-17 17:06:16 ----D---- D:\WINDOWS 2010-06-17 17:04:15 ----D---- D:\WINDOWS\Prefetch 2010-06-17 17:03:41 ----RD---- D:\Program Files 2010-06-17 16:53:49 ----A---- D:\WINDOWS\SchedLgU.Txt 2010-06-17 11:41:55 ----D---- D:\WINDOWS\system32\drivers 2010-06-17 11:41:11 ----D---- D:\WINDOWS\system32 2010-06-16 19:22:11 ----A---- D:\WINDOWS\wincmd.ini 2010-06-13 16:16:10 ----D---- D:\Documents and Settings\Dzieci\Dane aplikacji\Adobe 2010-06-13 14:41:13 ----D---- D:\Documents and Settings\Dzieci\Dane aplikacji\Skype 2010-06-13 10:07:39 ----D---- D:\Documents and Settings\Dzieci\Dane aplikacji\skypePM 2010-06-12 08:56:48 ----HD---- D:\WINDOWS\inf 2010-06-12 08:56:28 ----D---- D:\WINDOWS\system32\CatRoot2 2010-06-12 00:09:47 ----SHD---- D:\WINDOWS\Installer 2010-06-11 23:23:38 ----RSD---- D:\WINDOWS\Fonts 2010-06-10 21:32:00 ----RSHDC---- D:\WINDOWS\system32\dllcache 2010-06-10 21:31:46 ----HD---- D:\WINDOWS\$hf_mig$ 2010-06-10 21:31:15 ----D---- D:\Program Files\Internet Explorer 2010-06-09 21:05:53 ----D---- D:\Program Files\Java 2010-06-07 20:56:36 ----A---- D:\WINDOWS\NeroDigital.ini 2010-06-07 18:30:50 ----D---- D:\Program Files\Mozilla Firefox 2010-05-28 21:37:34 ----A---- D:\WINDOWS\system32\MRT.exe 2010-05-28 18:57:02 ----A---- D:\WINDOWS\system32\setacl.bat 2010-05-27 20:23:21 ----D---- D:\WINDOWS\Minidump 2010-05-23 15:14:43 ----D---- D:\Program Files\Kalendarz XP 2010-05-22 20:43:04 ----D---- D:\WINDOWS\Debug 2010-05-22 20:42:27 ----D---- D:\Program Files\Outlook Express 2010-05-19 16:53:52 ----D---- D:\WINDOWS\pss ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 AmdK7;Sterownik procesora AMD K7; D:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41856] R1 ehdrv;ehdrv; D:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-02-06 106208] R1 epfwtdir;epfwtdir; D:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-02-06 93336] R1 VIAPFD;VIAPFD; D:\WINDOWS\System32\Drivers\VIAPFD.SYS [2001-12-18 3279] R2 eamon;eamon; D:\WINDOWS\system32\DRIVERS\eamon.sys [2009-02-06 113448] R2 Sentinel;Sentinel; D:\WINDOWS\System32\Drivers\SENTINEL.SYS [2001-06-22 73728] R3 ALCXWDM;Service for Avance AC97 Audio (WDM); D:\WINDOWS\system32\drivers\ALCXWDM.SYS [2002-06-12 654604] R3 FsUsbExDisk;FsUsbExDisk; \??\D:\WINDOWS\system32\FsUsbExDisk.SYS [] R3 hidusb;Sterownik Microsoft klasy HID; D:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 mouhid;Sterownik myszy HID; D:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] R3 nv;nv; D:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-10-30 2826944] R3 rtl8139;Sterownik NT karty Realtek RTL8139(A/B/C)-based PCI Fast Ethernet; D:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992] R3 seehcri;Sony Ericsson seehcri Device Driver; D:\WINDOWS\system32\DRIVERS\seehcri.sys [2010-02-01 27632] R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; D:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; D:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Standardowy sterownik koncentratora USB Microsoft; D:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbprint;Klasa PRINTER USB Microsoft; D:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] R3 USBSTOR;Sterownik magazynu masowego USB; D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; D:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] S1 InCDPass;InCDPass; D:\WINDOWS\system32\drivers\InCDPass.sys [] S1 InCDRm;InCD Reader; D:\WINDOWS\system32\drivers\InCDRm.sys [] S3 CCDECODE;Dekoder napisów; D:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 EagleNT;EagleNT; \??\D:\WINDOWS\system32\drivers\EagleNT.sys [] S3 ggflt;SEMC USB Flash Driver Filter; D:\WINDOWS\system32\DRIVERS\ggflt.sys [2010-02-01 13224] S3 ggsemc;SEMC USB Flash Driver; D:\WINDOWS\system32\DRIVERS\ggsemc.sys [2010-02-01 25512] S3 GMSIPCI;GMSIPCI; \??\F:\INSTALL\GMSIPCI.SYS [] S3 k750bus;Sony Ericsson 750 driver (WDM); D:\WINDOWS\system32\DRIVERS\k750bus.sys [2005-06-03 55216] S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; D:\WINDOWS\system32\DRIVERS\k750mdfl.sys [2005-06-03 6576] S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; D:\WINDOWS\system32\DRIVERS\k750mdm.sys [2005-06-03 89872] S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; D:\WINDOWS\system32\DRIVERS\k750mgmt.sys [2005-06-03 81728] S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; D:\WINDOWS\system32\DRIVERS\k750obex.sys [2005-06-03 79488] S3 Mkd2kfNt;Mkd2kfNt; D:\WINDOWS\system32\drivers\Mkd2kfNt.sys [2008-10-17 131072] S3 Mkd2Nadr;Mkd2Nadr; D:\WINDOWS\system32\drivers\Mkd2Nadr.sys [2008-10-17 79104] S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; D:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; D:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Połączenie TV/wideo firmy Microsoft; D:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 NTACCESS;NTACCESS; \??\F:\NTACCESS.sys [] S3 SetupNTGLM7X;SetupNTGLM7X; \??\F:\NTGLM7X.sys [] S3 SLIP;BDA Slip De-Framer; D:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); D:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2009-09-21 90112] S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); D:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2009-09-21 14976] S3 ss_bmdm;SAMSUNG USB Mobile Modem; D:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2009-09-21 121856] S3 streamip;BDA IPSink; D:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 usbscan;Sterownik skanera USB; D:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 V0260VID;Live! Cam Vista IM; D:\WINDOWS\system32\DRIVERS\V0260Vid.sys [2006-11-04 178913] S3 Wdf01000;Kernel Mode Driver Frameworks service; D:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008] S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; D:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S4 InCDFs;InCD File System; D:\WINDOWS\system32\drivers\InCDFs.sys [] S4 IntelIde;IntelIde; D:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; D:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376] R2 ekrn;ESET Service; D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-02-06 727720] R2 Flexlm Service 1;Flexlm Service 1; D:\Program Files\UGS\UGSLicensing\lmgrd.exe [2008-04-22 1372160] R2 FsUsbExService;FsUsbExService; D:\WINDOWS\system32\FsUsbExService.Exe [2009-11-05 238952] R2 JavaQuickStarterService;Java Quick Starter; D:\Program Files\Java\jre6\bin\jqs.exe [2010-04-12 153376] R2 NVSvc;NVIDIA Display Driver Service; D:\WINDOWS\system32\nvsvc32.exe [2004-10-30 127043] R2 UGS License Server (ugslmd);UGS License Server (ugslmd); D:\Program Files\UGS\UGSLicensing\Lmgrd.exe [2008-04-22 1372160] R3 FLEXnet Licensing Service;FLEXnet Licensing Service; D:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-01-11 654848] S2 .EsetTrialReset;Eset Trial Reset; D:\WINDOWS\system32\regedt32.exe [2001-10-26 3584] S3 EhttpSrv;ESET HTTP Server; D:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-02-06 20680] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824] S3 odserv;Microsoft Office Diagnostics Service; D:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136] S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] -----------------EOF----------------- [/log]
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.