Forum
Archiwum
Archiwum

Gry nie działają

Utwórz nowy wątekOdpowiedz
bananmaciek
#1
Wczoraj pożyczyłem Gta 4. Chciałem zainstalować na kompie i kulturalnie wgrać cracka. Więc instalacja się zaczęła. Zainstalowałem Rockstar Social Club i zacząłem instalować gta 4. Wyskoczyło mi, że mam za mało miejsca na twardzielu. Chciałem więc pousuwać stare gry. Klikam Start, ustawienia, panel sterowania i komp się zawiesza(nie mogę ruszyć myszką itd.). Pojawiło się tylko okno panelu sterowania bez ikonek. Resetuje komputer i jeszcze raz włączam panel sterowania, to samo. Za 3 razem znowu. Zacząłem usuwać gry ręcznie. Gdy zwolniłem wystarczającą ilość miejsca, gra zaczęła się instalować. Postanowiłem zapuścić sobie Eminema. Windows Media Player włącza się, muzyka leci, ale komp znowu się zacina. Już ostro wkurzony następny raz restartuje kompa i instaluje gta 4 do końca. Czekając, aż ściągnie mi się patch, włączam gta SA. Klikam dwa razy na ikonę i znowu zwiecha. Sprawdziłem to jeszcze z kilkoma grami. Cały czas to samo. Przez program Everest sprawdziłem temperaturę. Jest podobna jak teraz:
-płyta główna 44 stopnie
-procesor skacze i maleje, ale tak średnio między 20, a 35 stopni (teraz nawet poniżej 20 stopni)
-aux 41stopni
-grafika 60 stopni
-dysk 47 stopni
I tutaj proszę was o pomoc. Od razu mówię, że nie chcę robić formata. Liczę na waszą wiedzę i doświadczenie :)
Obrazek
Grisha
#2
- Jakieś programy mogą się gryźć
- Sterowniki do grafiki
- Mogłeś poprzez piracką wersję napsuć sobie w rejestrze (z GTA 4 cyrki były)
- na płycie mógł być wirus
- jeżeli masz deamona tools odinstaluj go i spróbuj zagrać w grę.
Obrazek
bananmaciek
#3
Gra jest oryginalna. Sorki zapomniałem napisać

Sterowniki do karty zmieniałem na początku roku i nie przeszkadzały, wręcz przeciwnie

Gta 4 i te wszystkie zas...ane Rockstar kluby usunąłem, ale nie poprzez odinstalowanie, lecz w program files usunąłem po prostu folder z gta 4 i resztą.
Obrazek
Maf
#4
Ściągnij sobie CCleaner, zainstaluj, sprawdź nim błędy w rejestrze i je napraw. Nie zepsuje Ci to systemu, wręcz przeciwnie. Jeśli Cię to uspokoi to używam go na co dzień (dosłownie) ;-)
bananmaciek
#5
Dzięki. Już sprawdzam, a potem znowu instaluje gta 4 8-)
Obrazek
bananmaciek
#6
Sorki za double posta, ale byście nie zauważyli

Mafioso niestety nic nie pomogło. Chociaż komputer się chyba trochę szybciej włącza. Ale gry dalej nie działają

Jeśli to coś wam pomoże skanowałem Avastem całego twardziela i tylko dwa trojany były, czyli to raczej nie wirus.
Obrazek
Maf
#7
Avast wbrew pozorom jest dziurawy. Czasami potrafi przepuszczać wirusy (w przypadku ochrony w czasie rzeczywistym) i nie wykrywa rootkitów. Rootkity to prościej mówiąc wirusy zaszyte w systemie, których nie widać na pierwszy rzut oka.

W takim przypadku warto wykorzystać darmowy program ComboFix. Jeśli zdecydujesz się go użyć, zapisz plik na pulpicie i uruchom. Po zakończeniu pracy programu (lub po ewentualnym restarcie) pokaże się log w Notatniku. Przedstaw go tutaj w tagach [CODE][/CODE].

Powodzenia ;-)
bananmaciek
#8
Kod:
ComboFix 09-08-04.04 - Maciek 2009-08-06 14:15.1.2 - NTFSx86
Microsoft Windows XP Home Edition  5.1.2600.3.1250.48.1045.18.2558.2000 [GMT 2:00]
Uruchomiony z: c:\documents and settings\Maciek\Pulpit\ComboFix.exe
AV: avast! antivirus 4.8.1335 [VPS 090805-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\All Users\Dane aplikacji\Microsoft\Network\Downloader\qmgr0.dat
c:\documents and settings\All Users\Dane aplikacji\Microsoft\Network\Downloader\qmgr1.dat
c:\documents and settings\Maciek\Dane aplikacji\inst.exe
c:\documents and settings\Maciek\Menu Start\WinPC Defender.LNK
c:\recycler\S-1-5-21-918390841-859874272-1915767214-1003
c:\windows\hosts
c:\windows\Installer\7c4088.msi
c:\windows\Installer\f9c9c.msi

----- BITS: Możliwe zainfekowane strony -----

hxxp://tubeloyaln.com
.
(((((((((((((((((((((((((   Pliki utworzone od 2009-07-06 do 2009-08-06  )))))))))))))))))))))))))))))))
.

2009-08-06 11:44 . 2009-08-06 11:44   --------   d-----w-   c:\program files\CCleaner
2009-08-05 19:26 . 2009-03-26 23:16   12672   ----a-w-   c:\windows\system32\drivers\cpuz132_x32.sys
2009-08-05 19:26 . 2009-08-05 19:26   --------   d-----w-   c:\program files\CPUID
2009-08-05 17:43 . 2009-08-05 17:43   --------   d-----w-   c:\windows\system32\xlive
2009-08-05 16:56 . 2009-08-05 16:56   16720   ----a-w-   c:\windows\system32\ealregsnapshot1.reg
2009-08-05 16:56 . 2009-08-05 16:56   --------   d-----w-   c:\documents and settings\Maciek\Ustawienia lokalne\Dane aplikacji\Downloaded Installations
2009-08-05 16:39 . 2009-08-05 16:39   121320   ----a-w-   c:\documents and settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
2009-08-05 16:35 . 2009-08-05 16:35   --------   d-----w-   c:\windows\system32\XPSViewer
2009-08-05 16:34 . 2006-06-29 11:07   14048   ------w-   c:\windows\system32\spmsg2.dll
2009-08-04 16:21 . 2009-08-04 16:21   --------   d--h--r-   c:\documents and settings\Maciek\Dane aplikacji\SecuROM
2009-08-03 08:21 . 2009-08-03 08:26   --------   d-----w-   c:\program files\Kodak
2009-07-16 19:59 . 2009-07-16 19:59   --------   d-----w-   c:\program files\Microsoft ActiveSync
2009-07-16 19:53 . 2006-11-06 16:04   28672   -c--a-w-   c:\windows\system32\dllcache\wceusbsh.sys
2009-07-16 19:53 . 2006-11-06 16:04   28672   ----a-w-   c:\windows\system32\drivers\wceusbsh.sys

.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-08-06 12:05 . 2006-12-25 13:50   --------   d-----w-   c:\program files\Mozilla Thunderbird
2009-08-06 11:56 . 2009-05-22 14:43   --------   d-----w-   c:\program files\Steam
2009-08-05 19:00 . 2007-03-08 12:14   --------   d-----w-   c:\program files\Rockstar Games
2009-08-05 17:46 . 2006-10-23 16:49   107888   ----a-w-   c:\windows\system32\CmdLineExt.dll
2009-08-05 17:10 . 2006-09-06 10:00   --------   d--h--w-   c:\program files\InstallShield Installation Information
2009-08-05 17:07 . 2008-11-29 16:32   --------   d-----w-   c:\program files\Far Cry
2009-08-05 17:03 . 2006-10-06 16:06   --------   d-----w-   c:\program files\EA GAMES
2009-08-05 16:47 . 2006-10-03 17:12   47264   ----a-w-   c:\documents and settings\Maciek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2009-08-05 16:40 . 2006-09-06 17:59   88224   ----a-w-   c:\windows\system32\perfc015.dat
2009-08-05 16:40 . 2006-09-06 17:59   497524   ----a-w-   c:\windows\system32\perfh015.dat
2009-08-03 14:11 . 2006-11-11 15:56   --------   d-----w-   c:\program files\Electronic Arts
2009-06-27 12:09 . 2006-10-18 17:52   --------   d-----w-   c:\documents and settings\Maciek\Dane aplikacji\Tlen.pl
2009-06-25 19:27 . 2009-06-25 19:25   --------   d-----w-   c:\documents and settings\Maciek\Dane aplikacji\Ventrilo
2009-06-25 19:24 . 2009-06-25 19:24   --------   d-----w-   c:\program files\Ventrilo
2009-06-25 19:24 . 2009-06-25 19:24   --------   d-----w-   c:\program files\Common Files\Wise Installation Wizard
2009-06-24 19:27 . 2009-01-17 11:09   --------   d-----w-   c:\documents and settings\Maciek\Dane aplikacji\teamspeak2
2009-06-19 14:09 . 2009-06-19 14:03   --------   d-----w-   c:\documents and settings\All Users\Dane aplikacji\Kodak
2009-06-19 14:07 . 2009-06-19 14:07   --------   d-----w-   c:\program files\Common Files\Kodak
2009-06-19 14:05 . 2009-06-19 14:05   77824   ----a-w-   c:\documents and settings\All Users\Dane aplikacji\Kodak\EasyShareSetup\ess\bindbins\BindBins.exe
2009-06-19 14:03 . 2009-06-19 14:03   1179648   ----a-w-   c:\documents and settings\All Users\Dane aplikacji\Kodak\EasyShareSetup\$SETUP_140002_67c4b2\EasyShrx.Dll
2009-06-19 14:03 . 2009-06-19 14:03   114688   ----a-w-   c:\documents and settings\All Users\Dane aplikacji\Kodak\EasyShareSetup\$Registration\KodakCameraAPI_7.5.20.2.dll
2009-06-13 20:08 . 2009-06-13 20:08   --------   d-----w-   c:\program files\HoboSoccer
2009-06-12 15:04 . 2008-04-05 16:03   138184   ----a-w-   c:\windows\system32\drivers\PnkBstrK.sys
2009-06-12 15:04 . 2008-04-05 16:02   183112   ----a-w-   c:\windows\system32\PnkBstrB.exe
2009-06-11 18:40 . 2009-06-11 18:40   --------   d-----w-   c:\program files\Aspyr
2009-06-02 19:03 . 2009-06-02 19:03   249856   ------w-   c:\windows\Setup1.exe
2009-06-02 19:03 . 2009-06-02 19:03   73216   ----a-w-   c:\windows\ST6UNST.EXE
2009-05-22 14:43 . 2009-05-22 14:43   15872   ----a-r-   c:\documents and settings\Maciek\Dane aplikacji\Microsoft\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C9.exe
2006-10-22 12:54 . 2006-10-22 12:54   20072184   ----a-w-   c:\program files\quicktime703.exe
2008-11-11 18:17 . 2008-11-11 18:17   24   --sh--w-   c:\windows\S92698B33.tmp
2007-05-12 10:32 . 2007-05-12 10:32   88   --sh--r-   c:\windows\system32\0A08C1D172.sys
2006-12-17 19:58 . 2006-10-03 17:47   88   --sh--r-   c:\windows\system32\78BC8FC560.sys
2008-06-20 14:50 . 2006-10-03 17:47   6736   --sha-w-   c:\windows\system32\KGyGaAvL.sys
.

(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane 
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{0162f5a2-2b4b-4fc3-9708-e3c37cb06bbb}"= "c:\program files\worldtvradio\tbwor1.dll" [2009-06-13 2094616]

[HKEY_CLASSES_ROOT\clsid\{0162f5a2-2b4b-4fc3-9708-e3c37cb06bbb}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0162f5a2-2b4b-4fc3-9708-e3c37cb06bbb}]
2009-06-13 20:24   2094616   ----a-w-   c:\program files\worldtvradio\tbwor1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{0162f5a2-2b4b-4fc3-9708-e3c37cb06bbb}"= "c:\program files\worldtvradio\tbwor1.dll" [2009-06-13 2094616]

[HKEY_CLASSES_ROOT\clsid\{0162f5a2-2b4b-4fc3-9708-e3c37cb06bbb}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{0162F5A2-2B4B-4FC3-9708-E3C37CB06BBB}"= "c:\program files\worldtvradio\tbwor1.dll" [2009-06-13 2094616]

[HKEY_CLASSES_ROOT\clsid\{0162f5a2-2b4b-4fc3-9708-e3c37cb06bbb}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232]
"SsAAD.exe"="c:\progra~1\Sony\SONICS~1\SsAAD.exe" [2006-11-02 472632]
"Steam"="c:\program files\steam\steam.exe" [2009-06-10 1217784]
"H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\Wcescomm.exe" [2006-11-13 1289000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Java\jre1.5.0_16\bin\jusched.exe" [2008-05-28 75256]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2005-05-20 925696]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2005-01-12 32768]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"WireLessKeyboard"="c:\program files\Multimedia Keyboard Driver\StartAutorun.exe" [2005-11-30 94208]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"Symantec PIF AlertEng"="c:\program files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2007-03-12 517768]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2006-02-19 49152]
"VaCtrl"="c:\program files\VoiceAge\Common\VaCtrl.exe" [2003-08-28 90112]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2005-10-26 159744]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-12-02 13680640]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-12-02 86016]
"QuickTime Task"="c:\program files\QuickTime Alternative\QTTask.exe" [2009-01-05 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-03-12 342312]
"High Definition Audio Property Page Shortcut"="HDAShCut.exe" - c:\windows\system32\HdAShCut.exe [2004-10-27 61952]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2008-12-02 1657376]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users\Menu Start\Programy\Autostart\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2006-2-19 288472]
HP Image Zone - szybkie uruchamianie.lnk - c:\program files\HP\Digital Imaging\bin\hpqthb08.exe [2004-11-4 53248]
Oprogramowanie Kodak EasyShare.lnk - c:\program files\Kodak\Kodak EasyShare software\bin\EasyShare.exe [2007-9-19 282624]
Program sieciowy dla SAGEM Wi-Fi 11g USB adapter.lnk - c:\program files\SAGEM WiFi manager\WLANUTL.exe [2006-12-9 925696]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UpdatesDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Tlen.pl\\tlen.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Soulseek\\slsk.exe"=
"c:\\Program Files\\EA GAMES\\Need for Speed Underground 2\\speed2.exe"=
"c:\\Program Files\\Program Files\\Ubisoft\\Tom Clancy's Splinter Cell Chaos Theory\\System\\SplinterCell3.exe"=
"c:\\Program Files\\EA GAMES\\Need for Speed Most Wanted\\speed.exe"=
"c:\\Program Files\\FlashGet\\flashget.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\Program Files\\Empire Interactive\\FlatOut2\\FlatOut2.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Program Files\\Live for speed\\LFS.exe"=
"c:\\SonyEricsson\\JavaME_SDK_CLDC\\OnDeviceDebug\\bin\\serialproxy.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Steam\\SteamApps\\bananmaciek\\counter-strike\\hl.exe"=
"c:\\Documents and Settings\\Maciek\\Pulpit\\Cs\\Non Steam\\Valve\\hl.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Steam\\SteamApps\\bananmaciek\\ricochet\\hl.exe"=
"c:\\Program Files\\Steam\\SteamApps\\bananmaciek\\deathmatch classic\\hl.exe"=
"c:\\Program Files\\Steam\\SteamApps\\bananmaciek\\condition zero deleted scenes\\hl.exe"=
"c:\\Program Files\\Steam\\SteamApps\\bananmaciek\\condition zero\\hl.exe"=
"c:\\Program Files\\Steam\\SteamApps\\bananmaciek\\day of defeat\\hl.exe"=
"c:\\Program Files\\Steam\\SteamApps\\common\\world of goo demo\\WorldOfGoo.exe"=
"c:\\Program Files\\Steam\\SteamApps\\bananmaciek\\counter-strike beta\\hl.exe"=
"c:\\Program Files\\Aspyr\\Guitar Hero III\\GH3.exe"=
"c:\\Program Files\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe"=
"c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"8461:TCP"= 8461:TCP:GoD High Port
"8462:TCP"= 8462:TCP:GoD Low Port
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service

R0 xfilt;VIA SATA IDE Hot-plug Driver;c:\windows\system32\drivers\xfilt.sys [2006-09-06 11264]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-04-08 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-04-08 20560]
R3 SG762_XP;SAGEM 802.11g XG762 1211B Driver;c:\windows\system32\drivers\WlanBZXP.sys [2006-12-09 402432]
S1 ShldDrv;Panda File Shield Driver; [x]
S2 PavProc;Panda Process Protection Driver;\??\c:\windows\system32\DRIVERS\PavProc.sys --> c:\windows\system32\DRIVERS\PavProc.sys [?]
S3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\system32\drivers\ASPI32.SYS [2007-07-24 16512]
S3 AvFlt;Antivirus Filter Driver;c:\windows\system32\drivers\av5flt.sys --> c:\windows\system32\drivers\av5flt.sys [?]
S3 cpuz132;cpuz132;c:\windows\system32\drivers\cpuz132_x32.sys [2009-08-05 12672]
S3 EraserUtilDrvI1;EraserUtilDrvI1;\??\c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilDrvI1.sys --> c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilDrvI1.sys [?]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [2009-03-06 13224]
S3 k510bus;Sony Ericsson K510 Driver driver (WDM);c:\windows\system32\drivers\k510bus.sys [2007-03-26 58288]
S3 k510mdfl;Sony Ericsson K510 USB WMC Modem Filter;c:\windows\system32\drivers\k510mdfl.sys [2008-09-19 8336]
S3 k510mdm;Sony Ericsson K510 USB WMC Modem Driver;c:\windows\system32\drivers\k510mdm.sys [2008-09-19 94064]
S3 k510mgmt;Sony Ericsson K510 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\k510mgmt.sys [2008-09-19 85408]
S3 k510obex;Sony Ericsson K510 USB WMC OBEX Interface;c:\windows\system32\drivers\k510obex.sys [2008-09-19 83344]
S3 oflpydin;oflpydin;\??\c:\docume~1\Maciek\USTAWI~1\Temp\oflpydin.sys --> c:\docume~1\Maciek\USTAWI~1\Temp\oflpydin.sys [?]
S3 ZDCndis5;ZDCndis5 Protocol Driver;\??\c:\windows\system32\ZDCndis5.SYS --> c:\windows\system32\ZDCndis5.SYS [?]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.wyborcza.pl/0,0.html?p=015
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
IE: &Ściągnij przy pomocy FlashGet'a - c:\program files\FlashGet\jc_link.htm
IE: &Ściągnij wszystko przy pomocy FlashGet'a - c:\program files\FlashGet\jc_all.htm
IE: Add to AMV Converter... - c:\program files\MP3 Player Utilities 4.15\AMVConverter\grab.html
IE: E&ksport do programu Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: MediaManager tool grab multimedia file - c:\program files\MP3 Player Utilities 4.15\MediaManager\grab.html
FF - ProfilePath - c:\documents and settings\Maciek\Dane aplikacji\Mozilla\Firefox\Profiles\mqto77s4.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.pl/firefox
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?ei=utf-8&fr=megaup&p=
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPJava11.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPJava12.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPJava13.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPJava14.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPJava32.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPJPI150_16.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPOJI610.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npganymedenet.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPSNOOKER.dll
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 14:23
Windows 5.1.2600 Dodatek Service Pack 3 NTFS

skanowanie ukrytych procesów ... 

skanowanie ukrytych wpisów autostartu ...

skanowanie ukrytych plików ... 

skanowanie pomyślnie ukończone
ukryte pliki: 0

**************************************************************************
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"
.
Czas ukończenia: 2009-08-06 14:25
ComboFix-quarantined-files.txt  2009-08-06 12:25

Przed: 22 032 117 760 bajtów wolnych
Po: 24 066 461 696 bajtów wolnych

239   --- E O F ---   2008-12-07 14:03


Niestety nie pomogło. Dalej jest to samo
Obrazek
Maf
#9
Tak jak zakładałem, masz rootkita, nawet kilka. Usuń ComboFix i CCleaner (jeśli nie potrzebujesz).

Potrzebne mi będą jeszcze dwa logi z innego programu - wtedy będę mógł Ci pomóc. Ściągnij OTL na Pulpit, uruchom i kliknij na Run Scan. Po zakończeniu skanowania wyskoczą dwa logi. Zapisz je gdzieś na dysku i dodaj je jako załączniki do posta (nie w [CODE][/CODE], bo te są trochę dłuższe).

// Edit: Właściwie logi i tak będą na Pulpicie ;-)
bananmaciek
#10
Kod:
OTL Extras logfile created on: 2009-08-06 15:03:57 - Run 1
OTL by OldTimer - Version 3.0.10.4     Folder = C:\Documents and Settings\Maciek\Pulpit
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,96 Gb Available Physical Memory | 98,22% Memory free
3,09 Gb Paging File | 2,64 Gb Available in Paging File | 85,42% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 153,38 Gb Total Space | 22,44 Gb Free Space | 14,63% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 673,61 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive F: | 2,56 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: TWOJA-2DFF600F6
Current User Name: Maciek
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
"DisableMonitoring" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
"DisableMonitoring" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"8461:TCP" = 8461:TCP:*:Enabled:GoD High Port
"8462:TCP" = 8462:TCP:*:Enabled:GoD Low Port
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Tlen.pl\tlen.exe" = C:\Program Files\Tlen.pl\tlen.exe:*:Enabled:Komunikator Tlen.pl -- (o2.pl Sp. z o.o.)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Soulseek\slsk.exe" = C:\Program Files\Soulseek\slsk.exe:*:Enabled:SoulSeek -- ()
"C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe" = C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe:*:Enabled:speed2 -- ()
"C:\Program Files\Program Files\Ubisoft\Tom Clancy's Splinter Cell Chaos Theory\System\SplinterCell3.exe" = C:\Program Files\Program Files\Ubisoft\Tom Clancy's Splinter Cell Chaos Theory\System\SplinterCell3.exe:*:Enabled:SplinterCell3 -- ()
"C:\Program Files\EA GAMES\Need for Speed Most Wanted\speed.exe" = C:\Program Files\EA GAMES\Need for Speed Most Wanted\speed.exe:*:Enabled:speed -- ()
"C:\Program Files\FlashGet\flashget.exe" = C:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget -- (FlashGet.com)
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe -- ()
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\Empire Interactive\FlatOut2\FlatOut2.exe" = C:\Program Files\Empire Interactive\FlatOut2\FlatOut2.exe:*:Enabled:FlatOut2 -- ()
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\Program Files\Live for speed\LFS.exe" = C:\Program Files\Live for speed\LFS.exe:*:Enabled:LFS -- ()
"C:\SonyEricsson\JavaME_SDK_CLDC\OnDeviceDebug\bin\serialproxy.exe" = C:\SonyEricsson\JavaME_SDK_CLDC\OnDeviceDebug\bin\serialproxy.exe:*:Enabled:serialproxy -- ()
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Program Files\Sony Ericsson\Update Service\Update Service.exe" = C:\Program Files\Sony Ericsson\Update Service\Update Service.exe:*:Enabled:Update Service -- ()
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\Steam\SteamApps\bananmaciek\counter-strike\hl.exe" = C:\Program Files\Steam\SteamApps\bananmaciek\counter-strike\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Documents and Settings\Maciek\Pulpit\Cs\Non Steam\Valve\hl.exe" = C:\Documents and Settings\Maciek\Pulpit\Cs\Non Steam\Valve\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Steam\SteamApps\bananmaciek\ricochet\hl.exe" = C:\Program Files\Steam\SteamApps\bananmaciek\ricochet\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Steam\SteamApps\bananmaciek\deathmatch classic\hl.exe" = C:\Program Files\Steam\SteamApps\bananmaciek\deathmatch classic\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Steam\SteamApps\bananmaciek\condition zero deleted scenes\hl.exe" = C:\Program Files\Steam\SteamApps\bananmaciek\condition zero deleted scenes\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Steam\SteamApps\bananmaciek\condition zero\hl.exe" = C:\Program Files\Steam\SteamApps\bananmaciek\condition zero\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Steam\SteamApps\bananmaciek\day of defeat\hl.exe" = C:\Program Files\Steam\SteamApps\bananmaciek\day of defeat\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Steam\SteamApps\common\world of goo demo\WorldOfGoo.exe" = C:\Program Files\Steam\SteamApps\common\world of goo demo\WorldOfGoo.exe:*:Enabled:World of Goo Demo -- ()
"C:\Program Files\Steam\SteamApps\bananmaciek\counter-strike beta\hl.exe" = C:\Program Files\Steam\SteamApps\bananmaciek\counter-strike beta\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Aspyr\Guitar Hero III\GH3.exe" = C:\Program Files\Aspyr\Guitar Hero III\GH3.exe:*:Enabled:Guitar Hero III -- (Aspyr Media, Inc.)
"C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe" = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe:*:Enabled:EasyShare -- (Eastman Kodak Company)
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)
 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
""SubEdit-Player"" = "SubEdit-Player"
"{0297C87B-CC40-446F-865A-031B4FC0CF22}" = ToCA Race Driver 3
"{03EDED24-8375-407D-A721-4643D9768BE1}" = kgchlwn
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM)
"{05C56753-F144-44BC-BA67-83CC5DBF395C}" = F300
"{06E742E0-DF42-4685-A210-B26445939248}" = Xtreme Desktop
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{073F22CE-9A5B-4A40-A604-C7270AC6BF34}" = ESSSONIC
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{0A2A5039-B37F-489D-B1DC-A5258DF9E697}" = FIFA 08
"{0CE1A6C0-F3F7-49E6-8F9D-2431F9827441}" = Guitar Hero III
"{0D994CC5-819F-4657-84DD-397B8FE1EA80}" = Star Wars Jedi Knight Jedi Academy
"{1064CABD-7390-4336-94E4-8A53DFBCB636}_is1" = GT Legends 1.0.0.0
"{108FAA6F-DEEE-48EA-B3A9-1C5EB2605A6B}" = PL
"{11F3F858-4131-4FFA-A560-3FE282933B6E}" = kgchday
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{14D4ED84-6A9A-45A0-96F6-1753768C3CB5}" = ESSPCD
"{15095BF3-A3D7-4DDF-B193-3A496881E003}" = Microsoft .NET Framework 3.0
"{162B71B8-8464-4680-A086-601D555B331D}" = Apple Mobile Device Support
"{1898B8E5-43E2-4BCA-AD6A-B9FBE0C93F84}" = Heroes of Might and Magic V Demo
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{19B72AA9-985A-11D4-9C8A-00D0B75D1498}" = Colin McRae Rally 2
"{1AD5F465-8282-4DAD-B957-E09C0B783D18}" = InstantShare
"{1BD1BBE0-95F7-4273-ABDE-2077EC84E35B}" = SPOT xde(R) Player DLL
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{20EA84D4-6CB0-4FEA-8B6C-DC816CA7385F}" = Harry Potter and the Half-Blood Prince™ Demo
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{2376813B-2E5A-4641-B7B3-A0D5ADB55229}" = HPPhotoSmartExpress
"{2965C062-FBC0-4505-9EB8-4497252BB41F}" = Gothic II
"{2D03B6F8-DF36-4980-B7B6-5B93D5BA3A8F}" = essvatgt
"{2ED60C17-4568-4CD5-830A-03C4688B09A1}" = Sagem Wi-Fi 11g USB adapter (driver)
"{31C63A8A-D9AB-4300-828B-86B41F59FAE1}" = Multimedia Keyboard Driver
"{31CB0D80-1866-462A-9455-88614410971F}" = Driver: Parallel Lines
"{3248F0A8-6813-11D6-A77B-00B0D0150070}" = J2SE Runtime Environment 5.0 Update 7
"{3248F0A8-6813-11D6-A77B-00B0D0150160}" = J2SE Runtime Environment 5.0 Update 16
"{32A3A4F4-B792-11D6-A78A-00B0D0150160}" = J2SE Development Kit 5.0 Update 16
"{343737F4-C04D-49F4-BE58-C7EAA8EBA57A}" = Need for Speed™ ProStreet
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3762DB2D-71BD-421F-9E55-C74DA7DF4D07}" = CueTour
"{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03}" = Skype Plugin Manager
"{3D79DB6E-73DA-46C9-B8FA-DAE52108246F}" = OpenMG Secure Module 4.6.01
"{3F9411FC-F7D9-47EB-9430-044CD565C752}_is1" = MP3 Converter 4.2.32
"{42938595-0D83-404D-9F73-F8177FDD531A}" = ESScore
"{43DCF766-6838-4F9A-8C91-D92DA586DFA7}" = Microsoft Windows Journal Viewer
"{4537EA4B-F603-4181-89FB-2953FC695AB1}" = netbrdg
"{45B8A76B-57EC-4242-B019-066400CD8428}" = BufferChm
"{491DD792-AD81-429C-9EB4-86DD3D22E333}" = Windows Communication Foundation
"{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}" = SAGEM F@st 800-840
"{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}" = SpPhones
"{4E98F23B-1328-4322-A6EC-2EDC8FC3A4FE}" = FontNav
"{4EA684E9-5C81-4033-A696-3019EC57AC3A}" = HPProductAssistant
"{4EB106F5-110F-4E96-BCBA-1687AE57A04E}" = FlatOut2
"{5316DFC9-CE99-4458-9AB3-E8726EDE0210}" = skin0001
"{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}" = Sp5
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{590D4F8F-98FE-47FA-AC2B-3F22FDCF7C09}" = ShareIns
"{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable
"{605A4E39-613C-4A12-B56F-DEFBE6757237}" = SHASTA
"{608D2A3C-6889-4C11-9B54-A42F45ACBFDB}" = fflink
"{63218538-4A69-497F-8455-904261B0E9E4}" = CorelDRAW Graphics Suite X3
"{63A6E9A9-A190-46D4-9430-2DB28654AFD8}" = Norton 360
"{643EAE81-920C-4931-9F0B-4B343B225CA6}" = ESSBrwr
"{644D04A2-C682-4FD5-977D-03B804C4B9C5}" = CreativeProjects
"{646A65DD-23FC-418E-B9F0-E0500FB42CB1}" = PhotoGallery
"{64CB2553-C109-4132-AA51-1F421B515FD1}" = Microsoft .NET Framework 1.1 Polish Language Pack
"{66910000-8B30-4973-A159-6371345AFFA5}" = WebReg
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{68763C27-235D-4165-A961-FDEA228CE504}" = AiOSoftwareNPI
"{6909F917-5499-482e-9AA1-FAD06A99F231}" = Toolbox
"{693C08A7-9E76-43FF-B11E-9A58175474C4}" = kgckids
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6994491D-D491-48F1-AE1F-E179C1FFFC2F}" = HP Photosmart Essential
"{6AAF923E-077E-4543-BA1C-42A75BB03677}" = Sąsiedzi z Piekła Rodem 1 i 2
"{6C3959C6-943E-44B3-BAAD-570B04B134E5}" = SpCommon
"{6DE39343-0C7E-4b3a-8BDC-A846B7A8CAFE}" = CameraDrivers
"{6E384346-CD1C-4A00-9885-BC8E6A50ECB5}" = Need for Speed™ ProStreet Demo
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{7148F0A8-6813-11D6-A77B-00B0D0142050}" = Java 2 Runtime Environment, SE v1.4.2_05
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{736C803C-DD3B-4015-BC51-AFB9E67B9076}" = Readme
"{750B9AD1-4C63-4143-94C5-6FB304199BAD}" = Opera 9.10
"{76725988-9085-485C-B277-2D3D0C3D57E0}" = YP-U2
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.1.3.40
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo
"{78FD2974-C98B-4b84-9E9F-1AEE16AE0029}" = HP Aparaty fotograficzne Photosmart 4.5
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}" = Windows Workflow Foundation
"{7E7B7865-6C80-4373-8BC1-C2EB9431F9DE}" = ProductContextNPI
"{8331C3EA-0C91-43AA-A4D4-27221C631139}" = Status
"{84CDF5A8-1D57-4B69-BAB6-1F11D8923375}" = SkinsHP1
"{8883F1F2-1819-42EF-8549-C225F6156046}" = World Racing 2
"{8943CE61-53BD-475E-90E1-A580869E98A2}" = staticcr
"{8A502E38-29C9-49FA-BCFA-D727CA062589}" = ESSTOOLS
"{8A8664E1-84C8-4936-891C-BC1F07797549}" = kgcvday
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}" = MP3 Player Utilities 4.15
"{8E92D746-CD9F-4B90-9668-42B74C14F765}" = ESSini
"{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{909F8EBC-EC7F-48FF-0085-475D818F0F31}" = Need for Speed Underground 2
"{91517631-A9F3-4B7C-B482-43E0068FD55A}" = ESSgui
"{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync
"{996512CF-F35B-48DE-9291-557FA5316967}" = ScannerCopy
"{999D43F4-9709-4887-9B1A-83EBB15A8370}" = VPRINTOL
"{9AB97F52-512B-43EF-AAEC-4825C17B32ED}" = EA.com Update
"{9BD54685-1496-46A5-AB62-357CD140ED8B}" = kgcinvt
"{A0EB195B-5876-48E6-879D-33D4B2102610}" = SonicStage 4.2
"{A157DF9D-462F-4BF9-8C5E-3854BC9CC08F}" = HP Digital Photo Advisor
"{A1588373-1D86-4D44-86C9-78ABD190F9CC}" = kgcmove
"{A92A4DB0-CD37-42D1-BE1D-603D53C24328}" = Intel(R) Processor ID Utility
"{AAFD22B6-A6C7-4134-AF4E-080BCBCD3493}" = Sagem Wi-Fi 11g USB adapter (utility)
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1045-7B44-A70000000000}" = Adobe Reader 7.0 - Polish
"{ADE91A13-434D-4229-00BC-182BAD607303}" = Need for Speed™ Most Wanted
"{AE1FA02D-E6A4-4EA0-8E58-6483CAC016DD}" = ESSCDBK
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B162D0A6-9A1D-4B7C-91A5-88FB48113C45}" = OfotoXMI
"{B4B44FE7-41FF-4DAD-8C0A-E406DDA72992}" = CCScore
"{B62D7BE7-9D17-4F5C-8DD2-368B002EDFEC}" = Race Driver 3 Singleplayer Demo
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}" = HP Software Update
"{BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C}" = HP Photosmart, Officejet and Deskjet 7.0.A
"{C26B06A9-27BB-45B0-9873-9C623EC2BA38}" = iTunes
"{C3C9EB3D-24FA-4462-B784-0EC6AAFCD2DD}" = Fable - The Lost Chapters
"{C5ADA65A-7828-4D85-B071-ECC52B51F794}" = Sony Ericsson PC Suite 1.20.173
"{C640CAE0-8024-11D4-0090-B700902724B3}" = FIFA 2001
"{C7F54CF8-D6FB-4E0A-93A3-E68AE0D6C476}" = SolutionCenter
"{C8753E28-2680-49BF-BD48-DD38FD086EFE}" = AiO_Scan_CDA
"{C94E45B0-6AA6-4FB9-9AAE-22085F631880}" = VBA
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D32470A1-B10C-4059-BA53-CF0486F68EBC}" = Oprogramowanie Kodak EasyShare
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D8F372BF-6845-4ED7-9804-A7A9C51250CD}" = True Crime® New York City
"{DB02F716-6275-42E9-B8D2-83BA2BF5100B}" = SFR
"{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)
"{DBC20735-34E6-4E97-A9E5-2066B66B243D}" = TrayApp
"{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}" = Counter-Strike(TM)
"{E0F07676-2C60-4465-A727-20DE3BFCABAC}" = Tony Hawks Pro Skater 4
"{E18B549C-5D15-45DA-8D8F-8FD2BD946344}" = kgcbaby
"{E1B80DEE-A795-4258-8445-074C06AE3AB8}" = MarketResearch
"{E415C943-37E5-473F-8BAE-043C56734124}" = Sp5TTInt
"{E5966E4C-0A93-4F59-A981-BD3173D4799F}" = F300_Help
"{E6D22FE1-AB5F-42CA-9480-6F70B96DDD88}" = Need for Speed™ Undercover
"{E77DF3B1-D561-4219-AB65-793AA079DC41}" = GT Legends - Aktualizacja  v1.1
"{E79987F0-0E34-42CC-B8FF-6C860AEEB26A}" = tooltips
"{E914A24F-2412-4374-B420-86D21D6D444A}" = LEGO Star Wars
"{EBE7050B-7988-4BC3-BBFD-5C6828859483}" = Game Cam v1.4
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F138762F-5A1F-4CF0-A5E1-1588EF6088A4}" = Wiedźmin
"{F157460F-720E-482f-8625-AD7843891E5F}" = InstantShareDevicesMFC
"{F22C222C-3CE2-4A4B-A83F-AF4681371ABE}" = kgcbase
"{F3760724-B29D-465B-BC53-E5D72095BCC4}" = Scan
"{F4A2E7CC-60CA-4AFA-B67F-AD5E58173C3F}" = SKINXSDK
"{F6076EF9-08E1-442F-B6A2-BFB61B295A14}" = Fax_CDA
"{F9593CFB-D836-49BC-BFF1-0E669A411D9F}" = WIRELESS
"{FA200000-0001-0000-0000-074957833700}" = ABBYY PDF Transformer 2.0
"{FB132F09-DCF1-46EA-AE92-F8B42AB7BAD4}" = Stunt GP
"{FB15E224-67C3-491F-9F5C-F257BC418412}" = Destinations
"{FBB980B0-63F8-4B48-8D65-90F1D9F81D9F}" = NewCopy_CDA
"{FC22D020-3005-4715-8DF9-F3EDE81DEB3D}" = CreativeProjectsTemplates
"{FC7DDAAE-7F2B-4270-9BFD-5A130B667E9E}" = livebox tp
"{FCDB1C92-03C6-4C76-8625-371224256091}" = ESSPDock
"{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}" = Rozszerzenie HighMAT do Kreatora zapisywania dysku CD w systemie Microsoft Windows XP
"{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}" = Sp5Intl
"4Musics OGG to MP3 Converter 4.1 Shareware_is1" = 4Musics OGG to MP3 Converter 4.1
"4U WMA MP3 Converter_is1" = 4U WMA MP3 Converter 6.0.2
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"Alcohol Toolbar" = Alcohol Toolbar
"AnyDVD" = AnyDVD
"Audacity_is1" = Audacity 1.2.6
"Audio Converter" = River Past Audio Converter
"avast!" = avast! Antivirus
"AviScreen Classic (Freeware)_is1" = AviScreen Classic Version 1.3
"CCleaner" = CCleaner (remove only)
"ClonyXXL_2.0.1.5_PL" = ClonyXXL_2.0.1.5_PL
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.52.1
"dBpoweramp Music Converter" = dBpoweramp Music Converter
"DXTXTRA" = Microsoft DirectX Transform optional components
"Egzamin gimnazjalny 2009" = Egzamin gimnazjalny 2009 1.0
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"FlashGet" = FlashGet 1.9.6.1073
"Fraps" = Fraps
"GameDesire-Pool & Snooker" = GameDesire-Pool & Snooker
"GameSpy Arcade" = GameSpy Arcade
"GoD_is1" = GoD 1.95
"GTA San Andreas" = GTA San Andreas
"HoboSoccer_is1" = HoboSoccer v1.2
"HP Imaging Device Functions" = HP Imaging Device Functions 7.0
"HP Photo & Imaging" = HP Image Zone 4.5
"HP Solution Center & Imaging Support Tools" = HP Solution Center 7.0
"HPExtendedCapabilities" = HP Customer Participation Program 7.0
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{31C63A8A-D9AB-4300-828B-86B41F59FAE1}" = Multimedia Keyboard Driver
"InstallShield_{3D79DB6E-73DA-46C9-B8FA-DAE52108246F}" = OpenMG Secure Module 4.6.01
"InstallShield_{C3C9EB3D-24FA-4462-B784-0EC6AAFCD2DD}" = Fable - The Lost Chapters
"InstallShield_{E914A24F-2412-4374-B420-86D21D6D444A}" = LEGO Star Wars
"InstallShield_{F7D1D93A-B17A-41F8-9070-0B2A544C6165}" = LEGO Star Wars Demo Disc
"IVONA - syntezator mowy, wersja rehabilitacyjna" = IVONA - syntezator mowy, wersja rehabilitacyjna
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.8.0 Full
"LiveUpdate" = LiveUpdate 3.2 (Symantec Corporation)
"Mafia_is1" = Mafia
"MafiaDataXTractor_is1" = MafiaDataXTractor
"McFunSoft Video Solution_is1" = McFunSoft Video Solution Trial Version (English) 8.0.5.18
"MegauploadToolbar" = Megaupload Toolbar
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Microsoft .NET Framework 3.0" = Microsoft .NET Framework 3.0
"Moje Gimnazjum 2009 Język Angielski1.0" = Moje Gimnazjum 2009 Język Angielski
"Mozilla Firefox (3.0.13)" = Mozilla Firefox (3.0.13)
"Mozilla Thunderbird (2.0.0.22)" = Mozilla Thunderbird (2.0.0.22)
"Mp3 Knife_is1" = Mp3 Knife 3.2
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"nbi-nb-base-6.1.0.1.200805300101" = NetBeans IDE 6.1
"NeroMultiInstaller!UninstallKey" = Nero Suite
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"QuicktimeAlt_is1" = QuickTime Alternative 2.7.0
"RawShooter essentials 2005" = RawShooter essentials 2005
"RealAlt_is1" = Real Alternative 1.60
"RM Converter_is1" = RM Converter 4.12
"San Andreas Mod Installer1.1" = San Andreas Mod Installer
"SCCT_is1" = Tom Clancy's Splinter Cell Chaos Theory
"SDK for the Java(TM) ME Platform" = Sony Ericsson SDK 2.2.4 for the Java(TM) ME Platform
"Skype_is1" = Skype 3.0
"Slownik PWN-OXFORD" = Słownik PWN-OXFORD
"Słownik angielsko-polski i polsko-angielski" = Słownik angielsko-polski i polsko-angielski
"Sony Ericsson Themes Creator" = Sony Ericsson Themes Creator 3.19
"Soulseek" = SoulSeek Client 156c
"ST5UNST #1" = STYed
"ST6UNST #1" = HLTooLz
"Steam App 10" = Counter-Strike
"Steam App 100" = Condition Zero Deleted Scenes
"Steam App 150" = Counter-Strike Steamworks Beta
"Steam App 22010" = World of Goo Demo
"Steam App 30" = Day of Defeat
"Steam App 40" = Deathmatch Classic
"Steam App 60" = Ricochet
"Steam App 80" = Condition Zero
"Steam App 8730" = GTR Evolution Demo Dedicated Server
"SystemRequirementsLab" = System Requirements Lab
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"Tlen.pl" = Tlen.pl
"ToolBand.SkypeIEToolbarToolbar" = Skype add-on for IE
"Total Video Converter 3.11_is1" = Total Video Converter 3.11 070908
"TV" = TV
"Update Service" = Update Service
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Winamp PL" = Winamp 5.33 PL
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = Archiwizator WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"world TVRT Toolbar Edition" = world TVRT Toolbar Edition 5.56t
"worldtvradio Toolbar" = worldtvradio Toolbar
"WorldUnlock Codes Calculator" = WorldUnlock Codes Calculator
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xbox_360_CC_Driver" = Xbox 360 Controller for Windows
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"Żulionerzy NG_is1" = Żulionerzy NewGeneration
 
[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SiemensJava.pl - Emulacja Gier" = SiemensJava.pl - Emulacja Gier
 
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
 
[ Antivirus Events ]
Error - 2007-01-01 07:36:29 | Computer Name = TWOJA-2DFF600F6 | Source = avast! | ID = 33554522
Description = AAVM - initialization error: Instant Messaging provider: cannot start
 because 'Norton Antivirus / Symantec Antivirus' is active!, 00000000. 
 
Error - 2007-01-01 07:36:30 | Computer Name = TWOJA-2DFF600F6 | Source = avast! | ID = 33554522
Description = AAVM - initialization error: P2P provider: cannot start because 'Norton
 Antivirus / Symantec Antivirus' is active!, 00000000. 
 
Error - 2007-01-01 07:36:30 | Computer Name = TWOJA-2DFF600F6 | Source = avast! | ID = 33554522
Description = AAVM - initialization error: Standard Shield provider: cannot start
 because 'Norton Antivirus / Symantec Antivirus' is active!, 00000000. 
 
Error - 2007-10-23 11:45:21 | Computer Name = TWOJA-2DFF600F6 | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
 D:\install\setup.exe failed, 0000001E. 
 
Error - 2008-02-23 10:58:28 | Computer Name = TWOJA-2DFF600F6 | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
 D:\setup.exe failed, 0000001E. 
 
Error - 2008-03-02 10:40:32 | Computer Name = TWOJA-2DFF600F6 | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
 D:\ral.exe failed, 0000001E. 
 
Error - 2008-12-18 12:52:32 | Computer Name = TWOJA-2DFF600F6 | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
 http://www.ceneo.pl/ScriptResource.axd?d=D-r4YSrMRyNHb0kGeAnCTm64p_1wDjMntnnsIYH2_agBL9vgeB9O6IePNgXWA7ZyEHfVSg3uf6nRrjVRC_ZxYA2&t=633429076137220134
 failed, 0000A413. 
 
Error - 2008-12-23 13:01:32 | Computer Name = TWOJA-2DFF600F6 | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
 D:\setup.exe failed, 0000001E. 
 
Error - 2009-01-04 06:19:10 | Computer Name = TWOJA-2DFF600F6 | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
 http://www.ceneo.pl/ScriptResource.axd?d=D-r4YSrMRyNHb0kGeAnCTm64p_1wDjMntnnsIYH2_agBL9vgeB9O6IePNgXWA7ZyEHfVSg3uf6nRrjVRC_ZxYA2&t=633429122716050931
 failed, 0000A413. 
 
Error - 2009-01-06 13:39:33 | Computer Name = TWOJA-2DFF600F6 | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
 http://www.ceneo.pl/ScriptResource.axd?d=xnpgsMbpy4AQIYJiKpRA76aOgl5W7PtnPB2JTn5l1RMmz3DK3VbjAneF_438QyInD4iIR23oCTQdCzXa2eFPjQ2&t=633429119942177705
 failed, 0000A413. 
 
[ Application Events ]
Error - 2009-08-03 16:17:16 | Computer Name = TWOJA-2DFF600F6 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd start.exe, wersja 1.0.0.0, moduł powodujący
 błąd ls3df.dll, wersja 0.0.0.0, adres błędu 0x0005ac2e.
 
Error - 2009-08-04 09:52:25 | Computer Name = TWOJA-2DFF600F6 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd start.exe, wersja 1.0.0.0, moduł powodujący
 błąd ls3df.dll, wersja 0.0.0.0, adres błędu 0x0005ac2e.
 
Error - 2009-08-04 14:08:35 | Computer Name = TWOJA-2DFF600F6 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd start.exe, wersja 1.0.0.0, moduł powodujący
 błąd ls3df.dll, wersja 0.0.0.0, adres błędu 0x0005ac2e.
 
Error - 2009-08-05 12:30:36 | Computer Name = TWOJA-2DFF600F6 | Source = MsiInstaller | ID = 11931
Description = Product: MSXML 6.0 Parser (KB925673) -- Error 1931. The Windows Installer
 service cannot update the system file c:\WINDOWS\system32\msxml6r.dll because the
 file is protected by Windows.  You may need to update your operating system for
 this program to work correctly. Package version: 6.0.3883.0, OS Protected version:
 6.0.3883.0
 
Error - 2009-08-05 14:35:40 | Computer Name = TWOJA-2DFF600F6 | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca WinRAR.exe, wersja 3.61.0.0, moduł zawieszenia
 hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.
 
Error - 2009-08-06 04:46:03 | Computer Name = TWOJA-2DFF600F6 | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
 - Failed to compile: C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.IdentityModel.dll
 . Error code = 0x80131047 
 
Error - 2009-08-06 04:46:23 | Computer Name = TWOJA-2DFF600F6 | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
 - Failed to compile: C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.IdentityModel.Selectors.dll
 . Error code = 0x80131047 
 
Error - 2009-08-06 04:46:44 | Computer Name = TWOJA-2DFF600F6 | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
 - Failed to compile: C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.IO.Log.dll
 . Error code = 0x80131047 
 
Error - 2009-08-06 04:47:04 | Computer Name = TWOJA-2DFF600F6 | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
 - Failed to compile: C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
 . Error code = 0x80131047 
 
Error - 2009-08-06 04:47:24 | Computer Name = TWOJA-2DFF600F6 | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
 - Failed to compile: C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.ServiceModel.dll
 . Error code = 0x80131047 
 
[ System Events ]
Error - 2009-08-06 08:23:13 | Computer Name = TWOJA-2DFF600F6 | Source = Service Control Manager | ID = 7009
Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się
 z usługą PEVSystemStart.
 
Error - 2009-08-06 08:23:15 | Computer Name = TWOJA-2DFF600F6 | Source = Service Control Manager | ID = 7009
Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się
 z usługą PEVSystemStart.
 
Error - 2009-08-06 08:28:18 | Computer Name = TWOJA-2DFF600F6 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi General Purpose USB Driver (adildr.sys)
 z powodu następującego błędu:   %%2
 
Error - 2009-08-06 08:28:18 | Computer Name = TWOJA-2DFF600F6 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Panda Process Protection Driver z powodu
 następującego błędu:   %%2
 
Error - 2009-08-06 08:28:18 | Computer Name = TWOJA-2DFF600F6 | Source = Service Control Manager | ID = 7023
Description = Usługa Panda Process Protection Service zakończyła działanie; wystąpił
 następujący błąd:   %%31
 
Error - 2009-08-06 08:28:18 | Computer Name = TWOJA-2DFF600F6 | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego:   ShldDrv
 
Error - 2009-08-06 08:37:02 | Computer Name = TWOJA-2DFF600F6 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi General Purpose USB Driver (adildr.sys)
 z powodu następującego błędu:   %%2
 
Error - 2009-08-06 08:37:02 | Computer Name = TWOJA-2DFF600F6 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Panda Process Protection Driver z powodu
 następującego błędu:   %%2
 
Error - 2009-08-06 08:37:02 | Computer Name = TWOJA-2DFF600F6 | Source = Service Control Manager | ID = 7023
Description = Usługa Panda Process Protection Service zakończyła działanie; wystąpił
 następujący błąd:   %%31
 
Error - 2009-08-06 08:37:02 | Computer Name = TWOJA-2DFF600F6 | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego:   ShldDrv
 
 
< End of report >
Obrazek
bananmaciek
#11
Kod:
OTL logfile created on: 2009-08-06 15:03:57 - Run 1
OTL by OldTimer - Version 3.0.10.4     Folder = C:\Documents and Settings\Maciek\Pulpit
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,96 Gb Available Physical Memory | 98,22% Memory free
3,09 Gb Paging File | 2,64 Gb Available in Paging File | 85,42% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 153,38 Gb Total Space | 22,44 Gb Free Space | 14,63% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 673,61 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive F: | 2,56 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: TWOJA-2DFF600F6
Current User Name: Maciek
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2009-02-05 23:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009-02-05 23:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009-03-06 01:04:30 | 00,132,424 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2008-12-12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2007-03-12 19:30:14 | 00,517,768 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
PRC - [2008-12-03 00:11:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe
PRC - [2009-04-19 18:09:13 | 00,066,872 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrA.exe
PRC - [2005-04-02 03:51:48 | 00,217,600 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe
PRC - [2006-10-23 18:49:21 | 00,122,880 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\UAService7.exe
PRC - [2009-02-05 23:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009-02-05 23:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2008-04-14 19:21:16 | 01,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
PRC - [2008-05-28 03:18:44 | 00,075,256 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.5.0_16\bin\jusched.exe
PRC - [2005-05-20 09:11:06 | 00,925,696 | R--- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
PRC - [2005-01-12 03:01:32 | 00,032,768 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
PRC - [2009-02-05 23:08:45 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2007-03-12 19:30:14 | 00,517,768 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
PRC - [2006-05-07 21:09:16 | 00,765,952 | ---- | M] () -- C:\Program Files\Multimedia Keyboard Driver\PS2USBKbdDrv.exe
PRC - [2006-02-19 03:41:10 | 00,049,152 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
PRC - [2005-10-26 16:17:24 | 00,159,744 | R--- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
PRC - [2009-03-12 21:56:58 | 00,342,312 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2005-06-08 16:45:04 | 00,278,528 | ---- | M] (Teleca Software Solutions AB) -- C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
PRC - [2008-04-14 19:21:30 | 01,695,232 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe
PRC - [2006-11-02 13:43:10 | 00,472,632 | ---- | M] () -- C:\Program Files\Sony\SonicStage\SSAAD.exe
PRC - [2006-11-13 15:57:16 | 01,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\Wcescomm.exe
PRC - [2006-02-19 05:21:22 | 00,288,472 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
PRC - [2006-11-13 15:57:06 | 00,199,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe
PRC - [2006-01-19 17:54:34 | 00,925,696 | ---- | M] ( ) -- C:\Program Files\SAGEM WiFi manager\WLANUTL.exe
PRC - [2009-03-12 21:56:52 | 00,656,168 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2006-02-19 06:24:52 | 00,239,320 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
PRC - [2004-11-04 19:36:46 | 00,425,984 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
PRC - [2005-08-10 07:54:34 | 00,385,024 | R--- | M] (Teleca Software Solutions) -- C:\Program Files\Common Files\Teleca Shared\Generic.exe
PRC - [2006-02-24 11:58:14 | 00,868,352 | R--- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Ericsson\Mobile Phone Monitor\epmworker.exe
PRC - [2009-08-04 12:18:10 | 00,307,704 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2006-10-11 11:48:46 | 01,118,720 | ---- | M] (o2.pl Sp. z o.o.) -- C:\Program Files\Tlen.pl\tlen.exe
PRC - [2009-08-06 15:03:09 | 00,514,048 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Maciek\Pulpit\OTL.exe
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2009-03-06 01:04:30 | 00,132,424 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running])
SRV - [2005-09-23 07:28:32 | 00,029,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2009-02-05 23:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])
SRV - [2009-02-05 23:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])
SRV - [2009-02-05 23:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running])
SRV - [2009-02-05 23:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])
SRV - [2008-12-12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2005-09-23 07:28:56 | 00,066,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - File not found --  -- (CLTNetCnService [Auto | Stopped])
SRV - [2006-10-20 21:21:24 | 00,036,864 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2008-04-14 19:20:44 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2005-04-04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
SRV - [2006-10-30 03:33:58 | 00,741,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2009-03-12 21:56:52 | 00,656,168 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Running])
SRV - File not found --  -- (KodakCCS [On_Demand | Stopped])
SRV - [2007-01-31 23:11:41 | 02,975,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE -- (LiveUpdate [On_Demand | Stopped])
SRV - File not found --  -- (LiveUpdate Notice Ex [Auto | Stopped])
SRV - [2007-03-12 19:30:14 | 00,517,768 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service [Auto | Running])
SRV - [2006-10-04 18:25:00 | 00,057,344 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV [On_Demand | Stopped])
SRV - [2006-10-30 03:34:02 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2008-12-03 00:11:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running])
SRV - [2003-07-28 20:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [2006-10-04 18:15:30 | 00,057,344 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR [On_Demand | Stopped])
SRV - [2004-07-08 12:58:28 | 00,032,768 | ---- | M] (Panda Software) -- C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe -- (PavPrSrv [Auto | Stopped])
SRV - [2006-03-03 22:03:10 | 00,069,632 | ---- | M] (HP) -- C:\WINDOWS\System32\HPZipm12.exe -- (Pml Driver HPZ12 [Unknown | Stopped])
SRV - [2009-04-19 18:09:13 | 00,066,872 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrA.exe -- (PnkBstrA [Auto | Running])
SRV - [2006-10-04 18:06:58 | 00,069,632 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV [On_Demand | Stopped])
SRV - [2006-11-02 12:31:14 | 00,069,632 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe -- (SSScsiSV [On_Demand | Stopped])
SRV - [2005-04-02 03:51:48 | 00,217,600 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe -- (StarWindService [Auto | Running])
SRV - [2006-10-23 18:49:21 | 00,122,880 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\UAService7.exe -- (UserAccess7 [Auto | Running])
SRV - [2006-12-01 12:46:28 | 00,918,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2009-02-05 23:05:11 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4 [System | Running])
DRV - [2005-10-05 17:21:10 | 00,141,312 | R--- | M] (Analog Devices, Inc.) -- C:\WINDOWS\System32\drivers\ADIHdAud.sys -- (ADIHdAudAddService [On_Demand | Running])
DRV - [2005-03-04 20:53:00 | 00,127,872 | R--- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\System32\drivers\AEAudio.sys -- (AEAudioService [On_Demand | Running])
DRV - [2007-11-30 17:23:02 | 00,097,216 | ---- | M] (SlySoft, Inc.) -- C:\WINDOWS\System32\Drivers\AnyDVD.sys -- (AnyDVD [On_Demand | Running])
DRV - [2002-07-17 09:05:10 | 00,016,512 | ---- | M] (Adaptec) -- C:\WINDOWS\System32\DRIVERS\ASPI32.sys -- (ASPI [On_Demand | Stopped])
DRV - [2009-02-05 23:07:12 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\DRIVERS\aswFsBlk.sys -- (aswFsBlk [Auto | Running])
DRV - [2009-02-05 23:08:10 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2 [Auto | Running])
DRV - [2009-02-05 23:06:10 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr [On_Demand | Running])
DRV - [2009-02-05 23:07:23 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP [System | Running])
DRV - [2009-02-05 23:06:20 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi [System | Running])
DRV - [2009-04-28 17:59:12 | 00,278,984 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\atksgt.sys -- (atksgt [Auto | Running])
DRV - [2009-03-27 01:16:28 | 00,012,672 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- C:\WINDOWS\System32\drivers\cpuz132_x32.sys -- (cpuz132 [On_Demand | Stopped])
DRV - [2006-11-17 17:59:07 | 00,223,128 | ---- | M] (DT Soft Ltd.) -- C:\WINDOWS\System32\Drivers\dtscsi.sys -- (dtscsi [On_Demand | Stopped])
DRV - [2007-08-07 21:48:33 | 00,025,160 | ---- | M] (Elaborate Bytes AG) -- C:\WINDOWS\System32\Drivers\ElbyCDIO.sys -- (ElbyCDIO [System | Running])
DRV - [2004-01-09 15:23:48 | 00,042,496 | ---- | M] (VIA Technologies, Inc.              ) -- C:\WINDOWS\System32\DRIVERS\fetnd5b.sys -- (FETNDISB [On_Demand | Running])
DRV - [2009-01-15 13:19:36 | 00,023,848 | ---- | M] (GEAR Software Inc.) -- C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Running])
DRV - [2009-03-06 21:59:51 | 00,013,224 | ---- | M] (Sony Ericsson Mobile Communications) -- C:\WINDOWS\System32\DRIVERS\ggflt.sys -- (ggflt [On_Demand | Stopped])
DRV - [2009-03-06 21:59:51 | 00,024,616 | ---- | M] (Sony Ericsson Mobile Communications) -- C:\WINDOWS\System32\DRIVERS\ggsemc.sys -- (ggsemc [On_Demand | Stopped])
DRV - [2007-11-30 21:21:35 | 00,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\DRIVERS\hamachi.sys -- (hamachi [On_Demand | Stopped])
DRV - [2004-10-27 15:21:30 | 00,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\drivers\HdAudio.sys -- (HdAudAddService [On_Demand | Stopped])
DRV - [2008-04-13 18:36:05 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
DRV - [2006-04-12 12:04:39 | 00,049,664 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZid412.sys -- (HPZid412 [On_Demand | Stopped])
DRV - [2006-04-12 12:04:39 | 00,016,496 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZipr12.sys -- (HPZipr12 [On_Demand | Stopped])
DRV - [2006-04-12 12:04:39 | 00,021,568 | ---- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZius12.sys -- (HPZius12 [On_Demand | Stopped])
DRV - [2006-02-08 03:52:58 | 00,006,912 | ---- | M] (JMicron ) -- C:\WINDOWS\system32\DRIVERS\JGOGO.sys -- (JGOGO [Boot | Running])
DRV - [2006-05-20 00:16:14 | 00,042,880 | ---- | M] (JMicron Technology Corp.) -- C:\WINDOWS\system32\DRIVERS\jraid.sys -- (JRAID [Boot | Running])
DRV - [2006-02-17 21:34:10 | 00,058,288 | R--- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k510bus.sys -- (k510bus [On_Demand | Stopped])
DRV - [2008-09-19 22:35:07 | 00,008,336 | ---- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k510mdfl.sys -- (k510mdfl [On_Demand | Stopped])
DRV - [2008-09-19 22:35:08 | 00,094,064 | ---- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k510mdm.sys -- (k510mdm [On_Demand | Stopped])
DRV - [2008-09-19 22:35:08 | 00,085,408 | ---- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k510mgmt.sys -- (k510mgmt [On_Demand | Stopped])
DRV - [2008-09-19 22:35:08 | 00,083,344 | ---- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k510obex.sys -- (k510obex [On_Demand | Stopped])
DRV - [2005-06-03 13:46:52 | 00,055,216 | R--- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k750bus.sys -- (k750bus [On_Demand | Stopped])
DRV - [2005-06-03 13:46:58 | 00,006,576 | R--- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k750mdfl.sys -- (k750mdfl [On_Demand | Stopped])
DRV - [2005-06-03 13:47:00 | 00,089,872 | R--- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k750mdm.sys -- (k750mdm [On_Demand | Stopped])
DRV - [2005-06-03 13:47:04 | 00,081,728 | R--- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k750mgmt.sys -- (k750mgmt [On_Demand | Stopped])
DRV - [2005-06-03 13:47:06 | 00,079,488 | R--- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k750obex.sys -- (k750obex [On_Demand | Stopped])
DRV - [2009-04-28 17:59:12 | 00,025,416 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\lirsgt.sys -- (lirsgt [Auto | Running])
DRV - [2004-08-13 12:56:20 | 00,005,810 | R--- | M] () -- C:\WINDOWS\System32\DRIVERS\ASACPI.sys -- (MTsensor [On_Demand | Running])
DRV - [2008-12-03 00:11:00 | 06,209,536 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])
DRV - [2008-08-05 13:26:49 | 00,047,360 | ---- | M] (VSO Software) -- C:\WINDOWS\System32\Drivers\pcouffin.sys -- (pcouffin [On_Demand | Running])
DRV - [2004-08-04 14:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2007-03-29 03:00:00 | 00,043,528 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2004-08-04 14:00:00 | 00,005,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Drivers\RootMdm.sys -- (ROOTMODEM [On_Demand | Running])
DRV - [2004-04-13 20:14:12 | 00,070,144 | ---- | M] (Realtek Semiconductor Corporation                           ) -- C:\WINDOWS\System32\DRIVERS\Rtlnicxp.sys -- (RTL8023xp [On_Demand | Stopped])
DRV - [2007-11-13 12:25:55 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [Auto | Running])
DRV - [2005-08-11 13:49:28 | 00,393,088 | R--- | M] (Sensaura) -- C:\WINDOWS\System32\drivers\Senfilt.sys -- (SenFiltService [On_Demand | Running])
DRV - [2005-08-10 14:44:04 | 00,050,688 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01 [Boot | Running])
DRV - [2005-05-16 15:20:39 | 00,006,656 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02 [Boot | Running])
DRV - [2005-08-10 16:06:28 | 00,019,968 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02 [Boot | Running])
DRV - [2005-11-03 16:40:07 | 00,063,488 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02 [Boot | Running])
DRV - [2005-12-22 15:45:18 | 00,402,432 | ---- | M] (ZyDAS Technology Corporation) -- C:\WINDOWS\System32\DRIVERS\WlanBZXP.sys -- (SG762_XP [On_Demand | Running])
DRV - [2007-01-14 16:10:13 | 00,639,224 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running])
DRV - [2006-12-11 11:42:36 | 00,071,529 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Drivers\StMp3Rec.sys -- (StMp3Rec [On_Demand | Stopped])
DRV - [2006-02-23 11:38:32 | 00,009,728 | R--- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32 [Boot | Running])
DRV - [2006-11-06 18:04:56 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DRIVERS\wceusbsh.sys -- (wceusbsh [On_Demand | Stopped])
DRV - [2006-02-23 11:39:06 | 00,011,264 | R--- | M] (VIA Technologies,Inc) -- C:\WINDOWS\system32\DRIVERS\xfilt.sys -- (xfilt [Boot | Running])
DRV - [2006-01-18 15:09:40 | 00,017,664 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\Drivers\ZDPSp50.sys -- (ZDPSp50 [On_Demand | Running])
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =  [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = aboutNoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = aboutSecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.wyborcza.pl/0,0.html?p=015
IE - URLSearchHook: {0162f5a2-2b4b-4fc3-9708-e3c37cb06bbb} - C:\Program Files\worldtvradio\tbwor1.dll (Conduit Ltd.)
IE - URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.order.1: "Yahoo"
FF - prefs.js..browser.search.order.2: "Yahoo"
FF - prefs.js..browser.search.param.yahoo-fr: "megaup"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "megaup"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/firefox"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}:5.0.16
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.13
FF - prefs.js..extensions.enabledItems: {e213bb8f-8ebd-11db-96b7-005056c00008}:2.0.0.38
FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?ei=utf-8&fr=megaup&p="
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-08-04 12:18:17 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-08-04 12:18:19 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.22\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2009-08-04 10:05:29 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.22\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
 
[2008-08-30 21:03:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Maciek\Dane aplikacji\mozilla\Extensions
[2008-08-30 21:03:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Maciek\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009-08-05 17:46:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Maciek\Dane aplikacji\mozilla\Firefox\Profiles\mqto77s4.default\extensions
[2007-09-14 12:27:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Maciek\Dane aplikacji\mozilla\Firefox\Profiles\mqto77s4.default\extensions\{991A772A-BA13-4c1d-A9EF-F897F31DEC7D}
[2008-08-31 21:19:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Maciek\Dane aplikacji\mozilla\Firefox\Profiles\mqto77s4.default\extensions\{e213bb8f-8ebd-11db-96b7-005056c00008}
[2007-08-12 21:12:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Maciek\Dane aplikacji\mozilla\Firefox\Profiles\mqto77s4.default\extensions\[email protected]
[2006-11-25 16:14:33 | 00,002,236 | ---- | M] () -- C:\Documents and Settings\Maciek\Dane aplikacji\Mozilla\FireFox\Profiles\mqto77s4.default\searchplugins\wyszukiwarka-onetpl.xml
[2009-08-05 17:46:22 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009-08-04 12:18:18 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008-09-19 22:16:59 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}
[2009-08-04 12:18:10 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009-08-04 12:18:10 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2008-03-19 19:23:20 | 00,114,688 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll
[2008-10-17 20:29:52 | 01,332,224 | ---- | M] (DivX,Inc.) -- C:\Program Files\mozilla firefox\plugins\npdivx32.dll
[2008-09-19 23:55:20 | 00,098,304 | ---- | M] (DivX, Inc) -- C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll
[2008-01-29 09:33:16 | 00,120,296 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npganymedenet.dll
[2006-12-12 11:48:22 | 01,440,560 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll
[2009-08-04 12:18:13 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2006-10-07 05:18:48 | 00,144,984 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll
[2009-03-27 21:35:07 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009-03-27 21:35:07 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009-03-27 21:35:07 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009-03-27 21:35:07 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009-03-27 21:35:07 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2006-10-07 05:01:00 | 00,081,920 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll
[2006-05-29 11:50:00 | 00,630,784 | ---- | M] (Ganymede Technologies) -- C:\Program Files\mozilla firefox\plugins\NPSNOOKER.dll
[2009-08-03 12:02:44 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2008-09-28 11:16:00 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2008-09-28 11:16:00 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2008-09-28 11:16:00 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2008-09-28 11:16:00 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2008-09-28 11:16:00 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2008-09-28 11:16:00 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: (161317 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 abcsearch.com
O1 - Hosts: 127.0.0.1 admin.abcsearch.com
O1 - Hosts: 127.0.0.1 www3.abcsearch.com #[Browseraid]
O1 - Hosts: 127.0.0.1 www.abcsearch.com
O1 - Hosts: 127.0.0.1 abc517.net #[Trojan.Mitglieder.H]
O1 - Hosts: 127.0.0.1 acestats.com
O1 - Hosts: 127.0.0.1 www.acestats.com
O1 - Hosts: 127.0.0.1 actualnames.com #[Parasite.ActualNames]
O1 - Hosts: 127.0.0.1 www.actualnames.com
O1 - Hosts: 127.0.0.1 ad-up.com
O1 - Hosts: 127.0.0.1 www.ad-up.com
O1 - Hosts: 127.0.0.1 adatom.com
O1 - Hosts: 127.0.0.1 aesp.adatom.com
O1 - Hosts: 127.0.0.1 adbest.com
O1 - Hosts: 127.0.0.1 adserv.adbonus.com
O1 - Hosts: 127.0.0.1 www.adbonus.com
O1 - Hosts: 127.0.0.1 www.adblaster2.info #[Restricted Zone site]
O1 - Hosts: 127.0.0.1 ad2.adcept.net
O1 - Hosts: 127.0.0.1 ad3.adcept.net
O1 - Hosts: 127.0.0.1 www.adcept.net
O1 - Hosts: 127.0.0.1 adcomplete.com
O1 - Hosts: 127.0.0.1 www.adcomplete.com
O1 - Hosts: 127.0.0.1 www.adcopy.info
O1 - Hosts: 127.0.0.1 ads.adcorps.com
O1 - Hosts: 4671 more lines...
O2 - BHO: (worldtvradio Toolbar) - {0162f5a2-2b4b-4fc3-9708-e3c37cb06bbb} - C:\Program Files\worldtvradio\tbwor1.dll (Conduit Ltd.)
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Phone\IEPlugin\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (FGCatchUrl) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll (www.flashget.com)
O2 - BHO: (Megaupload Toolbar) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD                                   )
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_16\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (FlashGet GetFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll (www.flashget.com)
O3 - HKLM\..\Toolbar: (worldtvradio Toolbar) - {0162f5a2-2b4b-4fc3-9708-e3c37cb06bbb} - C:\Program Files\worldtvradio\tbwor1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Megaupload Toolbar) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD                                   )
O3 - HKCU\..\Toolbar\ShellBrowser: (worldtvradio Toolbar) - {0162F5A2-2B4B-4FC3-9708-E3C37CB06BBB} - C:\Program Files\worldtvradio\tbwor1.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (worldtvradio Toolbar) - {0162F5A2-2B4B-4FC3-9708-E3C37CB06BBB} - C:\Program Files\worldtvradio\tbwor1.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Megaupload Toolbar) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD                                   )
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] C:\WINDOWS\System32\HDAShCut.exe (Windows (R) Server 2003 DDK provider)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\System32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime Alternative\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RemoteControl] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe (Sony Ericsson Mobile Communications AB)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_16\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
O4 - HKLM..\Run: [VaCtrl] C:\Program Files\VoiceAge\Common\VaCtrl.exe (VoiceAge Corporation)
O4 - HKLM..\Run: [WireLessKeyboard] C:\Program Files\Multimedia Keyboard Driver\StartAutorun.exe PS2USBKbdDrv.exe File not found
O4 - HKCU..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\Wcescomm.exe (Microsoft Corporation)
O4 - HKCU..\Run: [MSMSGS] C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O4 - HKCU..\Run: [SsAAD.exe] C:\Program Files\Sony\SonicStage\SSAAD.exe ()
O4 - HKCU..\Run: [Steam] c:\program files\steam\steam.exe (Valve Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Development Company, L.P.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Image Zone - szybkie uruchamianie.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Oprogramowanie Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Program sieciowy dla SAGEM Wi-Fi 11g USB adapter.lnk = C:\Program Files\SAGEM WiFi manager\WLANUTL.exe ( )
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &Ściągnij przy pomocy FlashGet'a - C:\Program Files\FlashGet\jc_link.htm ()
O8 - Extra context menu item: &Ściągnij wszystko przy pomocy FlashGet'a - C:\Program Files\FlashGet\jc_all.htm ()
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.15\AMVConverter\grab.html ()
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.15\MediaManager\grab.html ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_16\bin\npjpi150_16.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Phone\IEPlugin\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/fhg.CAB (Reg Error: Key error.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?LinkID=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1157540633109 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1229765849234 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinstall-1_5_0_16-windows-i586.cab (Java Plug-in 1.5.0_16)
O16 - DPF: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Java Plug-in 1.4.2_05)
O16 - DPF: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab (Java Plug-in 1.5.0_07)
O16 - DPF: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_16-windows-i586.cab (Java Plug-in 1.5.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_16-windows-i586.cab (Java Plug-in 1.5.0_16)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter:  - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - AboutHome
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-06 11:16:01 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2005-11-04 07:52:23 | 00,729,088 | R--- | M] (Electronic Arts Inc.) - E:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2005-11-04 07:52:23 | 00,729,088 | R--- | M] (Electronic Arts Inc.) - E:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2005-10-14 10:02:16 | 00,585,728 | R--- | M] (Electronic Arts Inc.) - E:\AutoRunGUI.dll -- [ CDFS ]
O32 - AutoRun File - [2005-11-04 08:22:30 | 00,000,160 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2006-07-03 13:27:59 | 00,000,070 | R--- | M] () - F:\autorun.inf -- [ UDF ]
O34 - HKLM BootExecute: (autocheck) -  File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) -  File not found
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[6 C:\WINDOWS\System32\*.tmp files]
[2 C:\WINDOWS\*.tmp files]
[2009-08-06 15:03:02 | 00,514,048 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Maciek\Pulpit\OTL.exe
[2009-08-06 14:42:58 | 00,000,000 | -HSD | C] -- C:\RECYCLER
[2009-08-06 14:24:17 | 03,593,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\mshtml.dll
[2009-08-06 14:24:17 | 02,146,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ntoskrnl.exe
[2009-08-06 14:24:17 | 02,025,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ntkrnlpa.exe
[2009-08-06 14:24:17 | 01,571,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\sfcfiles.dll
[2009-08-06 14:24:17 | 01,035,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\explorer.exe
[2009-08-06 14:24:17 | 01,018,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\kernel32.dll
[2009-08-06 14:24:17 | 00,927,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\mfc40u.dll
[2009-08-06 14:24:17 | 00,826,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\wininet.dll
[2009-08-06 14:24:17 | 00,822,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\comres.dll
[2009-08-06 14:24:17 | 00,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\comctl32.dll
[2009-08-06 14:24:17 | 00,580,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\user32.dll
[2009-08-06 14:24:17 | 00,574,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ntfs.sys
[2009-08-06 14:24:17 | 00,510,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\winlogon.exe
[2009-08-06 14:24:17 | 00,435,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ntmssvc.dll
[2009-08-06 14:24:17 | 00,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\qmgr.dll
[2009-08-06 14:24:17 | 00,407,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\netlogon.dll
[2009-08-06 14:24:17 | 00,399,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\rpcss.dll
[2009-08-06 14:24:17 | 00,361,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\tcpip.sys
[2009-08-06 14:24:17 | 00,296,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\termsrv.dll
[2009-08-06 14:24:17 | 00,182,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ndis.sys
[2009-08-06 14:24:17 | 00,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\srsvc.dll
[2009-08-06 14:24:17 | 00,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\aec.sys
[2009-08-06 14:24:17 | 00,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\imm32.dll
[2009-08-06 14:24:17 | 00,109,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\services.exe
[2009-08-06 14:24:17 | 00,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\rasauto.dll
[2009-08-06 14:24:17 | 00,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ws2_32.dll
[2009-08-06 14:24:17 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\spoolsv.exe
[2009-08-06 14:24:17 | 00,051,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\wuauclt.exe
[2009-08-06 14:24:17 | 00,036,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ip6fw.sys
[2009-08-06 14:24:17 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\msgsvc.dll
[2009-08-06 14:24:17 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\userinit.exe
[2009-08-06 14:24:17 | 00,024,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\kbdclass.sys
[2009-08-06 14:24:17 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\lpk.dll
[2009-08-06 14:24:17 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\powrprof.dll
[2009-08-06 14:24:17 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ctfmon.exe
[2009-08-06 14:24:17 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\svchost.exe
[2009-08-06 14:24:17 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\asyncmac.sys
[2009-08-06 14:24:17 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\wscntfy.exe
[2009-08-06 14:24:17 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\lsass.exe
[2009-08-06 14:24:17 | 00,012,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\acpiec.sys
[2009-08-06 14:24:17 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\sfc.dll
[2009-08-06 14:24:17 | 00,004,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\beep.sys
[2009-08-06 14:24:17 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\null.sys
[2009-08-06 14:24:17 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache\cache
[2009-08-06 14:12:37 | 00,219,648 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2009-08-06 14:12:37 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2009-08-06 14:12:37 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2009-08-06 14:12:37 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2009-08-06 14:12:37 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2009-08-06 14:12:37 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2009-08-06 14:12:37 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2009-08-06 14:12:37 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2009-08-06 14:12:34 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009-08-06 14:12:33 | 00,000,000 | --SD | C] -- C:\ComboFix
[2009-08-06 14:12:03 | 00,000,000 | ---D | C] -- C:\Qoobox
[2009-08-06 13:46:45 | 01,967,144 | ---- | C] () -- C:\Documents and Settings\Maciek\Moje dokumenty\cc_20090806_134633.reg
[2009-08-06 13:44:55 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2009-08-05 21:28:50 | 00,000,772 | ---- | C] () -- C:\Documents and Settings\Maciek\Pulpit\EVEREST Home Edition.lnk
[2009-08-05 21:26:15 | 00,012,672 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\WINDOWS\System32\drivers\cpuz132_x32.sys
[2009-08-05 21:26:14 | 00,000,000 | ---D | C] -- C:\Program Files\CPUID
[2009-08-05 19:43:05 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\xlive
[2009-08-05 18:56:48 | 00,016,720 | ---- | C] () -- C:\WINDOWS\System32\ealregsnapshot1.reg
[2009-08-05 18:56:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Maciek\Ustawienia lokalne\Dane aplikacji\Downloaded Installations
[2009-08-05 18:35:42 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2009-08-05 18:35:39 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2009-08-05 18:34:33 | 00,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll
[2009-08-04 18:21:18 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Maciek\Dane aplikacji\SecuROM
[2009-08-03 21:52:45 | 06,287,435 | ---- | C] () -- C:\Documents and Settings\Maciek\Pulpit\Eminem - Beautiful.mp3
[2009-08-03 14:18:00 | 62,407,0656 | ---- | C] () -- C:\Documents and Settings\Maciek\Moje dokumenty\HP_HBP_PEGI_DEMO.exe
[2009-08-03 10:21:15 | 00,000,000 | ---D | C] -- C:\Program Files\Kodak
[2009-07-18 15:19:29 | 00,460,024 | ---- | C] () -- C:\Documents and Settings\Maciek\Moje dokumenty\vehicles2.bin
[2009-07-17 21:31:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Maciek\Moje dokumenty\NAWIGACJA
[2009-07-16 22:53:20 | 72,500,852 | ---- | C] () -- C:\Documents and Settings\Maciek\Moje dokumenty\R1.rar
[2009-07-16 22:00:20 | 00,002,528 | ---- | C] () -- C:\Documents and Settings\Maciek\Dane aplikacji\$_hpcst$.hpc
[2009-07-16 21:59:05 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft ActiveSync
[2009-07-16 21:53:33 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wceusbsh.sys
[2009-07-16 21:53:33 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wceusbsh.sys
[2009-04-28 17:59:12 | 00,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009-04-28 17:59:12 | 00,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2008-12-14 17:35:31 | 00,000,000 | ---- | C] () -- C:\WINDOWS\OODCNT.INI
[2008-12-03 00:11:00 | 01,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008-12-03 00:11:00 | 01,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008-12-03 00:11:00 | 01,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008-12-03 00:11:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008-10-22 05:29:06 | 00,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008-09-20 11:06:46 | 00,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2008-09-19 23:57:34 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008-09-19 23:55:10 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2008-09-19 23:55:10 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2008-09-19 23:54:18 | 00,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2008-04-05 18:03:26 | 00,138,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2008-04-04 20:16:47 | 00,000,375 | ---- | C] () -- C:\WINDOWS\wTRTv5.ini
[2008-03-07 18:54:16 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2008-03-07 18:54:05 | 00,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008-03-07 18:54:05 | 00,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008-03-07 18:54:00 | 00,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008-03-07 18:54:00 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2008-03-02 15:34:35 | 00,000,914 | ---- | C] () -- C:\WINDOWS\Lit.INI
[2008-02-21 21:06:37 | 00,120,832 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2007-12-27 13:49:59 | 00,092,160 | ---- | C] () -- C:\WINDOWS\System32\lameEnc.dll
[2007-12-27 13:49:59 | 00,070,018 | ---- | C] () -- C:\WINDOWS\System32\akrip32.dll
[2007-10-01 18:13:31 | 00,000,164 | ---- | C] () -- C:\WINDOWS\ClonyDrives.ini
[2007-07-14 20:40:58 | 00,520,192 | ---- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Sony.dll
[2007-05-12 12:32:40 | 00,000,088 | RHS- | C] () -- C:\WINDOWS\System32\0A08C1D172.sys
[2007-04-06 20:40:48 | 00,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2007-01-23 18:35:41 | 00,000,170 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006-12-25 18:28:29 | 00,001,127 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2006-12-09 12:02:59 | 00,114,688 | ---- | C] () -- C:\WINDOWS\System32\WLANUTL.dll
[2006-11-17 17:56:49 | 00,639,224 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2006-10-31 21:48:18 | 00,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006-10-17 20:02:08 | 00,210,032 | ---- | C] () -- C:\WINDOWS\System32\DBCLIENT.DLL
[2006-10-12 17:53:50 | 00,000,221 | ---- | C] () -- C:\WINDOWS\NCLogConfig.ini
[2006-10-08 12:05:34 | 00,000,526 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006-10-07 18:32:46 | 00,069,632 | ---- | C] () -- C:\WINDOWS\System32\xmltok.dll
[2006-10-07 18:32:46 | 00,036,864 | ---- | C] () -- C:\WINDOWS\System32\xmlparse.dll
[2006-10-03 19:47:19 | 00,006,736 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2006-10-03 19:47:19 | 00,000,088 | RHS- | C] () -- C:\WINDOWS\System32\78BC8FC560.sys
[2006-10-03 19:18:06 | 00,077,824 | R--- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2006-09-26 11:10:22 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006-09-06 19:59:15 | 00,000,732 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2006-09-06 19:59:09 | 00,000,785 | ---- | C] () -- C:\WINDOWS\win.ini
[2006-09-06 19:59:08 | 00,000,318 | ---- | C] () -- C:\WINDOWS\system.ini
[2006-09-03 14:22:03 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2006-03-06 10:41:02 | 00,073,728 | ---- | C] () -- C:\WINDOWS\System32\AMV_DecDLL.dll
[2004-09-16 13:26:40 | 00,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\ADFUUD.SYS
[2004-09-16 13:26:40 | 00,012,634 | ---- | C] () -- C:\WINDOWS\ADFUUD.SYS
[2003-05-01 17:25:59 | 00,000,345 | ---- | C] () -- C:\WINDOWS\Clony2.ini
[2003-04-08 11:40:22 | 00,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001-07-07 03:00:02 | 00,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[6 C:\WINDOWS\System32\*.tmp files]
[2 C:\WINDOWS\*.tmp files]
[2009-08-06 15:03:09 | 00,514,048 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Maciek\Pulpit\OTL.exe
[2009-08-06 14:39:53 | 00,012,613 | ---- | M] () -- C:\logfile
[2009-08-06 14:37:15 | 00,205,985 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2009-08-06 14:37:07 | 00,001,170 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009-08-06 14:36:46 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009-08-06 14:36:40 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009-08-06 14:23:19 | 00,000,318 | ---- | M] () -- C:\WINDOWS\system.ini
[2009-08-06 13:48:11 | 01,967,144 | ---- | M] () -- C:\Documents and Settings\Maciek\Moje dokumenty\cc_20090806_134633.reg
[2009-08-05 21:28:50 | 00,000,772 | ---- | M] () -- C:\Documents and Settings\Maciek\Pulpit\EVEREST Home Edition.lnk
[2009-08-05 19:46:55 | 00,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2009-08-05 18:56:48 | 00,016,720 | ---- | M] () -- C:\WINDOWS\System32\ealregsnapshot1.reg
[2009-08-05 18:47:59 | 00,047,264 | ---- | M] () -- C:\Documents and Settings\Maciek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2009-08-05 18:45:55 | 00,205,712 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009-08-05 18:40:38 | 01,104,646 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009-08-05 18:40:38 | 00,497,524 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2009-08-05 18:40:38 | 00,439,264 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009-08-05 18:40:38 | 00,088,224 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2009-08-05 18:40:38 | 00,070,968 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009-08-03 22:17:22 | 06,287,435 | ---- | M] () -- C:\Documents and Settings\Maciek\Pulpit\Eminem - Beautiful.mp3
[2009-08-03 18:20:08 | 00,002,539 | ---- | M] () -- C:\Documents and Settings\Maciek\Pulpit\Microsoft Office Word 2003.lnk
[2009-08-03 18:19:48 | 01,294,336 | R--- | M] () -- C:\Documents and Settings\All Users\Dokumenty\ESBK.mbb
[2009-08-03 18:19:47 | 00,645,120 | R--- | M] () -- C:\Documents and Settings\All Users\Dokumenty\ESBK.mb
[2009-08-03 16:09:31 | 62,407,0656 | ---- | M] () -- C:\Documents and Settings\Maciek\Moje dokumenty\HP_HBP_PEGI_DEMO.exe
[2009-08-03 10:22:16 | 00,001,842 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Oprogramowanie Kodak EasyShare.lnk
[2009-07-18 15:20:41 | 06,809,886 | ---- | M] () -- C:\Documents and Settings\Maciek\Moje dokumenty\BMW_745_B7_Alpina.zip
[2009-07-16 23:18:35 | 72,500,852 | ---- | M] () -- C:\Documents and Settings\Maciek\Moje dokumenty\R1.rar
[2009-07-16 22:00:20 | 00,002,528 | ---- | M] () -- C:\Documents and Settings\Maciek\Dane aplikacji\$_hpcst$.hpc
[2009-07-13 05:48:54 | 00,219,648 | ---- | M] () -- C:\WINDOWS\PEV.exe
< End of report >

Sorki za podwójnego posta (znowu), ale tym razem by się nie zmieściło, a nie mogłem załączyć formatu txt
Obrazek
Maf
#12
Uruchom znowu OTL, ale zamiast klikać Run Scan wklej poniższy kod do pola Custom Scans/Fixes i kliknij Run Fix:

Kod:
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
IE - URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - Reg Error: Key error. File not found
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\System32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime Alternative\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_16\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/fhg.CAB (Reg Error: Key error.)
O32 - AutoRun File - [2006-09-06 11:16:01 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006-07-03 13:27:59 | 00,000,070 | R--- | M] () - F:\autorun.inf -- [ UDF ]

:Files
C:\WINDOWS\PEV.exe
C:\WINDOWS\SWXCACLS.exe
C:\WINDOWS\SWREG.exe
C:\WINDOWS\SWSC.exe
C:\WINDOWS\sed.exe
C:\WINDOWS\grep.exe
C:\WINDOWS\zip.exe
C:\WINDOWS\NIRCMD.exe
C:\ComboFix
C:\Qoobox
C:\RECYCLER
C:\Documents and Settings\Maciek\Dane aplikacji\$_hpcst$.hpc
C:\WINDOWS\System32\0A08C1D172.sys
C:\WINDOWS\System32\78BC8FC560.sys

:Commands
[emptytemp]
[start explorer]
[Reboot]


Z tego co widzę w logach, w systemie masz pliki trzech antywirusów - Avast, Panda i Norton/Symantec. Jeśli je posiadasz, koniecznie odinstaluj dwa z nich.
bananmaciek
#13
Mam tylko Avasta, a reszta to chyba pozostałości.

Zrobiłem to, ale dalej nie mogę włączyć żadnej gry.
Obrazek
Grisha
#14
Te pozostałości mogą sprawiać, że gry nie chcą się uruchamiać. Czyli najnormalniej w świecie programy mogą się gryźć ze sobą. Ręczne usuwanie programów i gier nie sprawia że pozbywasz się ich z rejestru, a jeżeli rejestr nie może odszukać jakiś plików występują błędy. Być może format nieunikniony.
Obrazek
Maf
#15
W takim razie usuniemy to przez OTL. Wiesz, gdzie wkleić poniższy kod.

Kod:
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
SRV - [2007-01-31 23:11:41 | 02,975,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE -- (LiveUpdate [On_Demand | Stopped])
SRV - [2007-03-12 19:30:14 | 00,517,768 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service [Auto | Running])
SRV - [2004-07-08 12:58:28 | 00,032,768 | ---- | M] (Panda Software) -- C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe -- (PavPrSrv [Auto | Stopped])
O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)


:Files
C:\Program Files\Common Files\Symantec Shared
C:\Program Files\Common Files\Panda Software

:Commands
[emptytemp]
[start explorer]
[Reboot]

Klikasz Run Fix. Po ponownym uruchomieniu komputera włączasz jeszcze raz OTL i klikasz Run Scan. Dajesz tu zawartość nowych logów (z czyszczenia + skan).

Dodatkowo po tym powinieneś użyć narzędzia Norton Removal Tool, który całkowicie usuwa każdy produkt Nortona z systemu.
Utwórz nowy wątekOdpowiedz