marek9494 utworzono 30 sierpnia 2010 utworzono 30 sierpnia 2010 (edytowane) Witam, udało mi się kompa(notebooka MSI) odpalić dzięki OTLPE.Co może być nie tak? Bo nie działa awaryjny tryb, a przy normalnym rozruchu restartuje się (tuż po wyświetleniu loga Windows XP). Po wyłączeniu restartu po błędzie bluescreen się wyświetla. Pozdrawiam. Podaję logi: [log]OTL logfile created on: 8/30/2010 7:24:54 PM - Run OTLPE by OldTimer - Version 3.1.40.0 Folder = X:\Programs\OTLPE Microsoft Windows XP Dodatek Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,015.00 Mb Total Physical Memory | 827.00 Mb Available Physical Memory | 81.00% Memory free 903.00 Mb Paging File | 845.00 Mb Available in Paging File | 94.00% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 111.78 Gb Total Space | 58.16 Gb Free Space | 52.03% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Drive X: | 433.24 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Computer Name: REATOGO Current User Name: SYSTEM Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard Using ControlSet: ControlSet001 [color="#e56717"]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt) SRV - [2010/04/19 11:15:00 | 000,238,824 | ---- | M] (Systweak Inc., (www.systweak.com)) [Auto] -- C:\Program Files\Advanced System Optimizer 3\ASO3DefragSrv.exe -- (ASO3DiskOptimizer) SRV - [2009/06/22 13:57:12 | 000,618,944 | ---- | M] (Acronis) [Auto] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc) SRV - [2008/03/18 07:27:12 | 000,013,312 | ---- | M] (Agere Systems) [Auto] -- C:\WINDOWS\system32\agrsmsvc.exe -- (AgereModemAudio) SRV - [2008/01/22 13:35:52 | 000,103,808 | ---- | M] () [Auto] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC) [color="#e56717"]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand] -- -- (WDICA) DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP) DRV - File not found [Kernel | System] -- -- (PCIDump) DRV - File not found [Kernel | System] -- -- (lbrtfdc) DRV - File not found [Kernel | System] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand] -- D:\INSTALL\GMSIPCI.SYS -- (GMSIPCI) DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\EagleNT.sys -- (EagleNT) DRV - File not found [Kernel | System] -- -- (Changer) DRV - [2010/01/30 09:00:22 | 000,006,656 | ---- | M] () [Kernel | On_Demand] -- C:\Program Files\Advanced System Optimizer 3\adasprot32.sys -- (ADASPROT) DRV - [2010/01/13 06:18:34 | 001,730,272 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm) DRV - [2010/01/04 08:45:37 | 000,902,592 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\tdrpm228.sys -- (tdrpman228) Acronis Try&Decide and Restore Points filter (build 228) DRV - [2010/01/04 08:45:34 | 000,540,000 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter) DRV - [2010/01/04 08:45:34 | 000,044,704 | ---- | M] (Acronis) [File_System | Auto] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter) DRV - [2010/01/04 08:45:29 | 000,138,208 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman) DRV - [2009/11/06 16:55:08 | 001,590,528 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416) DRV - [2009/09/28 06:55:28 | 000,018,432 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\KMWDFILTER.sys -- (KMWDFILTERx86) DRV - [2008/12/10 06:04:52 | 000,052,128 | ---- | M] (O2Micro ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\o2media.sys -- (O2MDRDR) DRV - [2008/04/13 17:06:06 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2008/03/21 07:13:00 | 001,203,776 | ---- | M] (Agere Systems) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2008/01/29 23:28:36 | 004,725,760 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008/01/24 10:09:34 | 000,048,904 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore) DRV - [2008/01/24 10:09:24 | 000,014,728 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid) DRV - [2008/01/24 10:09:14 | 000,029,192 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\WmHidLo.sys -- (WmHidLo) DRV - [2008/01/24 10:09:04 | 000,028,168 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter) DRV - [2008/01/24 10:08:54 | 000,019,336 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum) DRV - [2008/01/03 10:10:16 | 000,105,856 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) [color="#e56717"]========== Standard Registry (SafeList) ==========[/color] [color="#e56717"]========== Internet Explorer ==========[/color] IE - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} IE - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\Administrator_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\MikolajMB_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://search.conduit.com?SearchSource=10&ctid=CT2530240"]http://search.condui...&ctid=CT2530240[/url] IE - HKU\MikolajMB_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\misza_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\TEMP_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} IE - HKU\TEMP_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://search.conduit.com?SearchSource=10&ctid=CT2086743"]http://search.condui...&ctid=CT2086743[/url] IE - HKU\TEMP_ON_C\..\URLSearchHook: {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files\PHPNukeEN\tbPHPN.dll (Conduit Ltd.) IE - HKU\TEMP_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2010\bdaphffext\ [2010/06/04 05:25:53 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/06/01 07:46:48 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/06 14:11:26 | 000,000,000 | ---D | M] [2010/01/18 10:46:29 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/02/10 16:17:15 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010/03/28 05:04:34 | 000,002,476 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\BearShareWebSearch.xml [2010/02/10 16:17:15 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010/02/10 16:17:15 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010/02/10 16:17:15 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010/02/10 16:17:15 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010/02/10 16:17:15 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2004/08/04 08:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O2 - BHO: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\tbSoft.dll (Conduit Ltd.) O2 - BHO: (PHPNukeEN Toolbar) - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files\PHPNukeEN\tbPHPN.dll (Conduit Ltd.) O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.) O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found. O3 - HKLM\..\Toolbar: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\tbSoft.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (PHPNukeEN Toolbar) - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files\PHPNukeEN\tbPHPN.dll (Conduit Ltd.) O3 - HKU\misza_ON_C\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O3 - HKU\misza_ON_C\..\Toolbar\WebBrowser: (Softonic-Polska Toolbar) - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - C:\Program Files\Softonic-Polska\tbSoft.dll (Conduit Ltd.) O3 - HKU\TEMP_ON_C\..\Toolbar\WebBrowser: (Softonic-Polska Toolbar) - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - C:\Program Files\Softonic-Polska\tbSoft.dll (Conduit Ltd.) O3 - HKU\TEMP_ON_C\..\Toolbar\WebBrowser: (PHPNukeEN Toolbar) - {DD02A4EB-4AFD-4D60-99D8-E67F964CA813} - C:\Program Files\PHPNukeEN\tbPHPN.dll (Conduit Ltd.) O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis) O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe (Acronis) O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.) O4 - HKLM..\Run: [DataMngr] C:\Program Files\BearShare Applications\MediaBar\DataMngr\DataMngrUI.exe (iMesh, Inc) O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [KMCONFIG] C:\Program Files\Silvercrest OM1008 driver\StartAutorun.exe KMConfig.exe File not found O4 - HKLM..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.) O4 - HKLM..\Run: [SystemProtector] C:\Program Files\Advanced System Optimizer 3\SystemProtector.exe (Systweak Inc., (www.systweak.com)) O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis) O4 - HKU\TEMP_ON_C..\Run: [ASO3SPCDone] C:\Program Files\Advanced System Optimizer 3\ASO3.exe (Systweak Inc., (www.systweak.com)) O4 - HKU\TEMP_ON_C..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKU\TEMP_ON_C..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.) O4 - Startup: C:\Documents and Settings\MikolajMB\Menu Start\Programy\Autostart\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\MikolajMB\Menu Start\Programy\Autostart\YoWindow.lnk = C:\Program Files\YoWindow\yowindow.exe File not found O4 - Startup: C:\Documents and Settings\TEMP\Menu Start\Programy\Autostart\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\MikolajMB_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\misza_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\TEMP_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} [url="http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab"]http://download.micr...78f/wvc1dmo.cab[/url] (Reg Error: Key error.) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [url="http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab"]http://fpdownload2.m...ash/swflash.cab[/url] (Shockwave Flash Object) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop BackupWallPaper: O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010/01/02 14:33:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (sasnative32) - C:\WINDOWS\System32\sasnative32.exe () O34 - HKLM BootExecute: (Execute settings...) - File not found O34 - HKLM BootExecute: (on\Explore) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color="#e56717"]========== Files/Folders - Created Within 30 Days ==========[/color] [2010/01/29 10:18:00 | 000,630,784 | ---- | C] ( ) -- C:\WINDOWS\System32\softcoin.dll [2010/01/29 10:18:00 | 000,425,984 | ---- | C] ( ) -- C:\WINDOWS\System32\gencoin.dll [8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [42 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ] [color="#e56717"]========== Files - Modified Within 30 Days ==========[/color] [2010/08/30 12:08:45 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010/08/25 07:13:11 | 000,294,912 | ---- | M] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT [2010/08/25 07:13:00 | 000,786,432 | -H-- | M] () -- C:\Documents and Settings\Administrator\NTUSER.DAT [2010/08/25 07:13:00 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Administrator\ntuser.ini [2010/08/25 07:12:04 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [42 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ] [color="#e56717"]========== Files Created - No Company Name ==========[/color] [2010/06/27 03:13:25 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\Administrator\ntuser.ini [2010/06/27 03:13:19 | 000,786,432 | -H-- | C] () -- C:\Documents and Settings\Administrator\NTUSER.DAT [2010/06/27 03:13:19 | 000,225,280 | -H-- | C] () -- C:\Documents and Settings\Administrator\NTUSER.DAT.LOG [2010/06/27 03:05:39 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\TEMP\NTUSER.DAT.sav.LOG [2010/06/27 03:05:32 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\LocalService\NTUSER.DAT.sav.LOG [2010/06/27 03:05:25 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT.sav.LOG [2010/06/25 10:01:20 | 000,002,079 | ---- | C] () -- C:\WINDOWS\compedia.ini [2010/06/01 07:30:18 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\misza\ntuser.ini [2010/06/01 07:30:09 | 001,048,576 | -H-- | C] () -- C:\Documents and Settings\misza\NTUSER.DAT [2010/06/01 07:30:09 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\misza\NTUSER.DAT.LOG [2010/05/15 08:36:23 | 000,000,075 | ---- | C] () -- C:\Documents and Settings\TEMP\Dane aplikacji\AVSDVDPlayer.m3u [2010/05/11 10:47:36 | 000,000,376 | ---- | C] () -- C:\Documents and Settings\TEMP\Dane aplikacjiprivacy.xml [2010/05/10 10:52:06 | 000,000,139 | ---- | C] () -- C:\WINDOWS\mta.ini [2010/03/31 15:31:20 | 000,000,025 | ---- | C] () -- C:\Documents and Settings\TEMP\Dane aplikacji\bdfvconp.ini [2010/03/31 15:31:19 | 000,000,850 | ---- | C] () -- C:\Documents and Settings\TEMP\Dane aplikacjiProductTweaks.xml [2010/03/31 15:31:19 | 000,000,385 | ---- | C] () -- C:\Documents and Settings\TEMP\Dane aplikacjiuser_gensett.xml [2010/03/31 01:36:38 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\TEMP\ntuser.ini [2010/03/31 01:36:33 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\TEMP\NTUSER.DAT.LOG [2010/03/31 01:36:32 | 003,145,728 | ---- | C] () -- C:\Documents and Settings\TEMP\NTUSER.DAT [2010/03/31 01:36:32 | 002,883,584 | ---- | C] () -- C:\Documents and Settings\TEMP\NTUSER.DAT.bak [2010/03/31 01:35:03 | 000,000,121 | ---- | C] () -- C:\WINDOWS\bdagent.INI [2010/03/24 17:22:51 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\MikolajMB\Dane aplikacji\AVSDVDPlayer.m3u [2010/03/24 17:20:38 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010/03/24 17:20:38 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010/03/09 06:30:13 | 000,000,289 | ---- | C] () -- C:\Documents and Settings\MikolajMB\server_log.txt [2010/02/13 04:59:32 | 000,000,376 | ---- | C] () -- C:\Documents and Settings\MikolajMB\Dane aplikacjiprivacy.xml [2010/01/22 10:33:37 | 000,000,025 | ---- | C] () -- C:\Documents and Settings\MikolajMB\Dane aplikacji\bdfvconp.ini [2010/01/21 03:27:54 | 000,000,126 | ---- | C] () -- C:\Documents and Settings\MikolajMB\intlname.ols [2010/01/20 16:21:47 | 000,000,134 | ---- | C] () -- C:\Documents and Settings\MikolajMB\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2010/01/20 15:54:43 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2010/01/19 03:52:12 | 000,000,850 | ---- | C] () -- C:\Documents and Settings\MikolajMB\Dane aplikacjiProductTweaks.xml [2010/01/19 03:52:11 | 000,000,385 | ---- | C] () -- C:\Documents and Settings\MikolajMB\Dane aplikacjiuser_gensett.xml [2010/01/04 11:12:59 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2010/01/04 08:31:16 | 000,000,092 | ---- | C] () -- C:\WINDOWS\BackupManager.INI [2010/01/02 14:39:04 | 000,000,292 | -HS- | C] () -- C:\Documents and Settings\MikolajMB\ntuser.ini [2010/01/02 14:39:03 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\MikolajMB\ntuser.dat.LOG [2010/01/02 14:39:02 | 002,756,608 | ---- | C] () -- C:\Documents and Settings\MikolajMB\NTUSER.DAT [2010/01/02 14:37:10 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\LocalService\ntuser.ini [2010/01/02 14:37:09 | 000,233,472 | ---- | C] () -- C:\Documents and Settings\LocalService\NTUSER.DAT.bak [2010/01/02 14:37:09 | 000,233,472 | ---- | C] () -- C:\Documents and Settings\LocalService\NTUSER.DAT [2010/01/02 14:37:09 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService\ntuser.dat.LOG [2010/01/02 14:36:52 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\NetworkService\ntuser.ini [2010/01/02 14:36:51 | 000,294,912 | ---- | C] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT.bak [2010/01/02 14:36:51 | 000,294,912 | ---- | C] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT [2010/01/02 14:36:51 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService\ntuser.dat.LOG [color="#e56717"]========== LOP Check ==========[/color] [2010/06/06 03:04:11 | 000,000,000 | ---D | M] -- C:\WINDOWS\System32\config\systemprofile\Dane aplikacji\SoftGrid Client [2010/07/13 04:51:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Systweak [2010/01/04 09:42:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\Acronis [2010/01/04 08:31:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\Backup Manager [2010/06/04 05:24:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\BitDefender [2010/03/25 14:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\Canon [2010/03/08 09:04:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\NVD [2010/03/27 14:49:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\SoftGrid Client [2010/03/24 16:23:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\Systweak [2010/03/08 09:02:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\TP [2010/03/25 10:41:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\XnView [2010/03/24 17:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\YoWindow [2010/06/04 05:24:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\misza\Dane aplikacji\BitDefender [2010/06/01 07:32:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\misza\Dane aplikacji\Systweak [2010/06/01 09:03:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\misza\Dane aplikacji\XnView [2010/05/31 11:34:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Acronis [2010/03/31 11:51:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Canon [2010/05/15 07:15:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Gadu-Gadu 10 [2010/06/27 02:01:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\ipla [2010/05/15 03:51:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\OpenFM [2010/06/06 03:03:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\SoftGrid Client [2010/03/31 03:57:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Systweak [2010/01/03 13:50:57 | 000,000,226 | ---- | M] () -- C:\WINDOWS\Tasks\Advanced System Optimizer Scheduler.job [2010/06/27 02:49:28 | 000,000,470 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{14C904DD-7B08-47C4-B370-9659081723FC}.job [2010/06/27 03:03:00 | 000,000,468 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{4B2852B2-2613-4F7E-8570-95EA76A4A80E}.job [color="#e56717"]========== Purity Check ==========[/color] < End of report >[/log] Muszę dzisiaj to zrobić.. Proszę o zainteresowanie! [color="#ff0000"] //przenoszę do Bezpieczeństwa //dan[/color]
Sohei komentarz 31 sierpnia 2010 komentarz 31 sierpnia 2010 Używając OTLPE pokaż obróbkę pliku minidump. czy to ty instalowałeś Advanced System Optimizer 3? [code]:Processes Explorer.exe :OTL O34 - HKLM BootExecute: (sasnative32) - C:\WINDOWS\System32\sasnative32.exe () O4 - HKLM..\Run: [KernelFaultCheck] File not found :files :Commands [emptytemp] [start explorer] [reboot][/code] Wklejasz to do OTL w białe okienko i klikasz run fix. Wykonaj pełny skan [url=http://dobreprogramy.pl/index.php?dz=2&id=1998][b]DR WEB CureIt[/b][/url] Wykonaj pełny skan[url=http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html][b]MBAM[/b][/url] Co znajda usun po czym daj logi z usuwania + nowy log OTL
marek9494 komentarz 31 sierpnia 2010 Autor komentarz 31 sierpnia 2010 Nie to nie ja instalowałem. Dzięki za zainteresowanie sprawą Link do plików .dmp: http://www.sendspace.pl/file/1f44f7903c12bb8685fb1c6 Kod został wklejony. MBM nie mogę skanować, bo jakieś błędy przy instalacji. DR.Web znalazł mi dwa wirusy ale w grze, zdazylem usunac je, potem program mi się wylaczyl i wlaczylem na nowo skanowanie, ale juz nic nie znalazło. Dla mnie liczy się to aby móc odpalić kompa trybie normalnym, lub chociaż w trybie awaryjnym. Błąd który się wyświetla to: 0x00000050 (0xFFFFFFFF, 0x000000008, 0xFFFFFFFF, 0x00000000) Zalączam logi OTL: [log]OTL logfile created on: 8/31/2010 9:34:15 PM - Run OTLPE by OldTimer - Version 3.1.40.0 Folder = X:\Programs\OTLPE Microsoft Windows XP Dodatek Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,015.00 Mb Total Physical Memory | 749.00 Mb Available Physical Memory | 74.00% Memory free 903.00 Mb Paging File | 828.00 Mb Available in Paging File | 92.00% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 111.78 Gb Total Space | 59.39 Gb Free Space | 53.13% Space Free | Partition Type: NTFS Drive D: | 1.92 Gb Total Space | 0.62 Gb Free Space | 32.03% Space Free | Partition Type: FAT E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Drive X: | 433.24 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Computer Name: REATOGO Current User Name: SYSTEM Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard Using ControlSet: ControlSet001 [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt) SRV - [2010/04/19 11:15:00 | 000,238,824 | ---- | M] (Systweak Inc., (www.systweak.com)) [Auto] -- C:\Program Files\Advanced System Optimizer 3\ASO3DefragSrv.exe -- (ASO3DiskOptimizer) SRV - [2009/06/22 13:57:12 | 000,618,944 | ---- | M] (Acronis) [Auto] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc) SRV - [2008/03/18 07:27:12 | 000,013,312 | ---- | M] (Agere Systems) [Auto] -- C:\WINDOWS\system32\agrsmsvc.exe -- (AgereModemAudio) SRV - [2008/01/22 13:35:52 | 000,103,808 | ---- | M] () [Auto] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand] -- -- (WDICA) DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP) DRV - File not found [Kernel | System] -- -- (PCIDump) DRV - File not found [Kernel | System] -- -- (lbrtfdc) DRV - File not found [Kernel | System] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand] -- D:\INSTALL\GMSIPCI.SYS -- (GMSIPCI) DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\EagleNT.sys -- (EagleNT) DRV - File not found [Kernel | System] -- -- (Changer) DRV - [2010/01/30 09:00:22 | 000,006,656 | ---- | M] () [Kernel | On_Demand] -- C:\Program Files\Advanced System Optimizer 3\adasprot32.sys -- (ADASPROT) DRV - [2010/01/13 06:18:34 | 001,730,272 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm) DRV - [2010/01/04 08:45:37 | 000,902,592 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\tdrpm228.sys -- (tdrpman228) Acronis Try&Decide and Restore Points filter (build 228) DRV - [2010/01/04 08:45:34 | 000,540,000 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter) DRV - [2010/01/04 08:45:34 | 000,044,704 | ---- | M] (Acronis) [File_System | Auto] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter) DRV - [2010/01/04 08:45:29 | 000,138,208 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman) DRV - [2009/11/06 16:55:08 | 001,590,528 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416) DRV - [2009/09/28 06:55:28 | 000,018,432 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\KMWDFILTER.sys -- (KMWDFILTERx86) DRV - [2008/12/10 06:04:52 | 000,052,128 | ---- | M] (O2Micro ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\o2media.sys -- (O2MDRDR) DRV - [2008/04/13 17:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2008/03/21 07:13:00 | 001,203,776 | ---- | M] (Agere Systems) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2008/01/29 23:28:36 | 004,725,760 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008/01/24 10:09:34 | 000,048,904 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore) DRV - [2008/01/24 10:09:24 | 000,014,728 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid) DRV - [2008/01/24 10:09:14 | 000,029,192 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\WmHidLo.sys -- (WmHidLo) DRV - [2008/01/24 10:09:04 | 000,028,168 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter) DRV - [2008/01/24 10:08:54 | 000,019,336 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum) DRV - [2008/01/03 10:10:16 | 000,105,856 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} IE - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\Administrator_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\MikolajMB_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2530240 IE - HKU\MikolajMB_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\misza_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\TEMP_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} IE - HKU\TEMP_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2086743 IE - HKU\TEMP_ON_C\..\URLSearchHook: {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files\PHPNukeEN\tbPHPN.dll (Conduit Ltd.) IE - HKU\TEMP_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2010\bdaphffext\ [2010/06/04 05:25:53 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/06/01 07:46:48 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/06 14:11:26 | 000,000,000 | ---D | M] [2010/01/18 10:46:29 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/02/10 16:17:15 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010/03/28 05:04:34 | 000,002,476 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\BearShareWebSearch.xml [2010/02/10 16:17:15 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010/02/10 16:17:15 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010/02/10 16:17:15 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010/02/10 16:17:15 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010/02/10 16:17:15 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2004/08/04 08:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O2 - BHO: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\tbSoft.dll (Conduit Ltd.) O2 - BHO: (PHPNukeEN Toolbar) - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files\PHPNukeEN\tbPHPN.dll (Conduit Ltd.) O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.) O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found. O3 - HKLM\..\Toolbar: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\tbSoft.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (PHPNukeEN Toolbar) - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files\PHPNukeEN\tbPHPN.dll (Conduit Ltd.) O3 - HKU\misza_ON_C\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O3 - HKU\misza_ON_C\..\Toolbar\WebBrowser: (Softonic-Polska Toolbar) - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - C:\Program Files\Softonic-Polska\tbSoft.dll (Conduit Ltd.) O3 - HKU\TEMP_ON_C\..\Toolbar\WebBrowser: (Softonic-Polska Toolbar) - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - C:\Program Files\Softonic-Polska\tbSoft.dll (Conduit Ltd.) O3 - HKU\TEMP_ON_C\..\Toolbar\WebBrowser: (PHPNukeEN Toolbar) - {DD02A4EB-4AFD-4D60-99D8-E67F964CA813} - C:\Program Files\PHPNukeEN\tbPHPN.dll (Conduit Ltd.) O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis) O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe (Acronis) O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.) O4 - HKLM..\Run: [DataMngr] C:\Program Files\BearShare Applications\MediaBar\DataMngr\DataMngrUI.exe (iMesh, Inc) O4 - HKLM..\Run: [KMCONFIG] C:\Program Files\Silvercrest OM1008 driver\StartAutorun.exe KMConfig.exe File not found O4 - HKLM..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.) O4 - HKLM..\Run: [SystemProtector] C:\Program Files\Advanced System Optimizer 3\SystemProtector.exe (Systweak Inc., (www.systweak.com)) O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis) O4 - HKU\TEMP_ON_C..\Run: [ASO3SPCDone] C:\Program Files\Advanced System Optimizer 3\ASO3.exe (Systweak Inc., (www.systweak.com)) O4 - HKU\TEMP_ON_C..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKU\TEMP_ON_C..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.) O4 - Startup: C:\Documents and Settings\MikolajMB\Menu Start\Programy\Autostart\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\MikolajMB\Menu Start\Programy\Autostart\YoWindow.lnk = C:\Program Files\YoWindow\yowindow.exe File not found O4 - Startup: C:\Documents and Settings\TEMP\Menu Start\Programy\Autostart\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\MikolajMB_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\misza_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\TEMP_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop BackupWallPaper: O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010/01/02 14:33:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2006/03/28 08:55:58 | 000,000,025 | ---- | M] () - D:\autorun.inf -- [ FAT ] O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010/08/31 19:50:53 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010/08/31 16:20:29 | 000,552,960 | R--- | C] (OldTimer Tools) -- C:\OTLPE.exe [2010/08/31 16:19:44 | 000,000,000 | ---D | C] -- C:\_OTL [2010/08/30 19:34:23 | 014,424,120 | ---- | C] (Intel Corporation) -- C:\win2k_xp14371_Graphics.exe [2010/07/13 04:57:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Euro Truck Simulator [2010/03/24 17:20:38 | 000,261,632 | ---- | C] (MainConcept) -- C:\WINDOWS\System32\mcdvd_32.dll [2010/01/29 10:18:00 | 000,630,784 | ---- | C] ( ) -- C:\WINDOWS\System32\softcoin.dll [2010/01/29 10:18:00 | 000,425,984 | ---- | C] ( ) -- C:\WINDOWS\System32\gencoin.dll [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010/08/31 16:21:29 | 000,786,432 | -H-- | M] () -- C:\Documents and Settings\Administrator\NTUSER.DAT [2010/08/31 12:39:50 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010/08/30 16:01:57 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010/08/25 07:13:11 | 000,294,912 | ---- | M] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT [2010/08/25 07:13:00 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Administrator\ntuser.ini [2010/07/29 08:09:22 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\TEMP\ntuser.ini [2010/07/29 08:09:21 | 003,145,728 | ---- | M] () -- C:\Documents and Settings\TEMP\NTUSER.DAT [2010/07/29 08:09:18 | 004,240,744 | -H-- | M] () -- C:\Documents and Settings\TEMP\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010/07/29 07:54:00 | 003,712,656 | -H-- | M] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010/07/28 09:36:38 | 000,002,584 | ---- | M] () -- C:\WINDOWS\System32\ASOROSet.bin [2010/07/28 09:36:24 | 000,233,472 | ---- | M] () -- C:\Documents and Settings\LocalService\NTUSER.DAT [2010/07/28 09:34:41 | 000,294,912 | ---- | M] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT.bak [2010/07/28 09:34:41 | 000,233,472 | ---- | M] () -- C:\Documents and Settings\LocalService\NTUSER.DAT.bak [2010/07/28 09:34:33 | 002,883,584 | ---- | M] () -- C:\Documents and Settings\TEMP\NTUSER.DAT.bak [2010/07/18 00:07:56 | 000,552,960 | R--- | M] (OldTimer Tools) -- C:\OTLPE.exe [2010/07/13 04:57:32 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010/06/27 03:13:25 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\Administrator\ntuser.ini [2010/06/27 03:13:19 | 000,786,432 | -H-- | C] () -- C:\Documents and Settings\Administrator\NTUSER.DAT [2010/06/27 03:13:19 | 000,024,576 | -H-- | C] () -- C:\Documents and Settings\Administrator\NTUSER.DAT.LOG [2010/06/27 03:05:39 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\TEMP\NTUSER.DAT.sav.LOG [2010/06/27 03:05:32 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\LocalService\NTUSER.DAT.sav.LOG [2010/06/27 03:05:25 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT.sav.LOG [2010/06/25 10:01:20 | 000,002,079 | ---- | C] () -- C:\WINDOWS\compedia.ini [2010/06/01 07:30:18 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\misza\ntuser.ini [2010/06/01 07:30:09 | 001,048,576 | -H-- | C] () -- C:\Documents and Settings\misza\NTUSER.DAT [2010/06/01 07:30:09 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\misza\NTUSER.DAT.LOG [2010/05/15 08:36:23 | 000,000,075 | ---- | C] () -- C:\Documents and Settings\TEMP\Dane aplikacji\AVSDVDPlayer.m3u [2010/05/11 10:47:36 | 000,000,376 | ---- | C] () -- C:\Documents and Settings\TEMP\Dane aplikacjiprivacy.xml [2010/05/10 10:52:06 | 000,000,139 | ---- | C] () -- C:\WINDOWS\mta.ini [2010/03/31 15:31:20 | 000,000,025 | ---- | C] () -- C:\Documents and Settings\TEMP\Dane aplikacji\bdfvconp.ini [2010/03/31 15:31:19 | 000,000,850 | ---- | C] () -- C:\Documents and Settings\TEMP\Dane aplikacjiProductTweaks.xml [2010/03/31 15:31:19 | 000,000,385 | ---- | C] () -- C:\Documents and Settings\TEMP\Dane aplikacjiuser_gensett.xml [2010/03/31 01:36:38 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\TEMP\ntuser.ini [2010/03/31 01:36:33 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\TEMP\NTUSER.DAT.LOG [2010/03/31 01:36:32 | 003,145,728 | ---- | C] () -- C:\Documents and Settings\TEMP\NTUSER.DAT [2010/03/31 01:36:32 | 002,883,584 | ---- | C] () -- C:\Documents and Settings\TEMP\NTUSER.DAT.bak [2010/03/31 01:35:03 | 000,000,121 | ---- | C] () -- C:\WINDOWS\bdagent.INI [2010/03/24 17:22:51 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\MikolajMB\Dane aplikacji\AVSDVDPlayer.m3u [2010/03/24 17:20:38 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010/03/24 17:20:38 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010/03/09 06:30:13 | 000,000,289 | ---- | C] () -- C:\Documents and Settings\MikolajMB\server_log.txt [2010/02/13 04:59:32 | 000,000,376 | ---- | C] () -- C:\Documents and Settings\MikolajMB\Dane aplikacjiprivacy.xml [2010/01/22 10:33:37 | 000,000,025 | ---- | C] () -- C:\Documents and Settings\MikolajMB\Dane aplikacji\bdfvconp.ini [2010/01/21 03:27:54 | 000,000,126 | ---- | C] () -- C:\Documents and Settings\MikolajMB\intlname.ols [2010/01/20 16:21:47 | 000,000,134 | ---- | C] () -- C:\Documents and Settings\MikolajMB\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2010/01/20 15:54:43 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2010/01/19 03:52:12 | 000,000,850 | ---- | C] () -- C:\Documents and Settings\MikolajMB\Dane aplikacjiProductTweaks.xml [2010/01/19 03:52:11 | 000,000,385 | ---- | C] () -- C:\Documents and Settings\MikolajMB\Dane aplikacjiuser_gensett.xml [2010/01/04 11:12:59 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2010/01/04 08:31:16 | 000,000,092 | ---- | C] () -- C:\WINDOWS\BackupManager.INI [2010/01/02 14:39:04 | 000,000,292 | -HS- | C] () -- C:\Documents and Settings\MikolajMB\ntuser.ini [2010/01/02 14:39:03 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\MikolajMB\ntuser.dat.LOG [2010/01/02 14:39:02 | 002,756,608 | ---- | C] () -- C:\Documents and Settings\MikolajMB\NTUSER.DAT [2010/01/02 14:37:10 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\LocalService\ntuser.ini [2010/01/02 14:37:09 | 000,233,472 | ---- | C] () -- C:\Documents and Settings\LocalService\NTUSER.DAT.bak [2010/01/02 14:37:09 | 000,233,472 | ---- | C] () -- C:\Documents and Settings\LocalService\NTUSER.DAT [2010/01/02 14:37:09 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\LocalService\ntuser.dat.LOG [2010/01/02 14:36:52 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\NetworkService\ntuser.ini [2010/01/02 14:36:51 | 000,294,912 | ---- | C] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT.bak [2010/01/02 14:36:51 | 000,294,912 | ---- | C] () -- C:\Documents and Settings\NetworkService\NTUSER.DAT [2010/01/02 14:36:51 | 000,008,192 | -H-- | C] () -- C:\Documents and Settings\NetworkService\ntuser.dat.LOG [color=#E56717]========== LOP Check ==========[/color] [2010/06/06 03:04:11 | 000,000,000 | ---D | M] -- C:\WINDOWS\System32\config\systemprofile\Dane aplikacji\SoftGrid Client [2010/07/13 04:51:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Systweak [2010/01/04 09:42:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\Acronis [2010/01/04 08:31:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\Backup Manager [2010/06/04 05:24:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\BitDefender [2010/03/25 14:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\Canon [2010/03/08 09:04:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\NVD [2010/03/27 14:49:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\SoftGrid Client [2010/03/24 16:23:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\Systweak [2010/03/08 09:02:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\TP [2010/03/25 10:41:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\XnView [2010/03/24 17:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MikolajMB\Dane aplikacji\YoWindow [2010/06/04 05:24:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\misza\Dane aplikacji\BitDefender [2010/06/01 07:32:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\misza\Dane aplikacji\Systweak [2010/06/01 09:03:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\misza\Dane aplikacji\XnView [2010/05/31 11:34:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Acronis [2010/03/31 11:51:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Canon [2010/05/15 07:15:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Gadu-Gadu 10 [2010/06/27 02:01:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\ipla [2010/05/15 03:51:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\OpenFM [2010/06/06 03:03:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\SoftGrid Client [2010/03/31 03:57:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Systweak [2010/01/03 13:50:57 | 000,000,226 | ---- | M] () -- C:\WINDOWS\Tasks\Advanced System Optimizer Scheduler.job [2010/06/27 02:49:28 | 000,000,470 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{14C904DD-7B08-47C4-B370-9659081723FC}.job [2010/06/27 03:03:00 | 000,000,468 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{4B2852B2-2613-4F7E-8570-95EA76A4A80E}.job [color=#E56717]========== Purity Check ==========[/color] < End of report >[/log] [color="#FF0000"]//Logi wklejamy w tagi //Wstawiam //Tom01[/color]
Sohei komentarz 1 września 2010 komentarz 1 września 2010 [code]:Processes Explorer.exe :OTL DRV - [2010/01/30 09:00:22 | 000,006,656 | ---- | M] () [Kernel | On_Demand] -- C:\Program Files\Advanced System Optimizer 3\adasprot32.sys -- (ADASPROT) O4 - HKLM..\Run: [SystemProtector] C:\Program Files\Advanced System Optimizer 3\SystemProtector.exe (Systweak Inc., (www.systweak.com)) O4 - HKU\TEMP_ON_C..\Run: [ASO3SPCDone] C:\Program Files\Advanced System Optimizer 3\ASO3.exe (Systweak Inc., (www.systweak.com)) O4 - HKLM..\Run: [KMCONFIG] C:\Program Files\Silvercrest OM1008 driver\StartAutorun.exe KMConfig.exe File not found :files C:\Program Files\Advanced System Optimizer 3\adasprot32.sys C:\Program Files\Advanced System Optimizer 3\ASO3.exe C:\Program Files\Advanced System Optimizer 3\SystemProtector.exe C:\Program Files\Advanced System Optimizer 3 C:\Documents and Settings\MikolajMB\Dane aplikacji\bdfvconp.ini :Commands [emptytemp] [start explorer] [reboot][/code] Wklejasz to do OTL w białe okienko i klikasz run fix. Plikami minidump zajmą się specjaliści w 2 dziale. O postępie poinformuje jak już wszystko będzie wiadomo; ) http://www.forumpc.pl/index.php?showtopic=174035
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.